Lucene search
K

89 matches found

BDU FSTEC
BDU FSTEC
added 2025/02/06 12:0 a.m.5 views

The vulnerability of the application programming interface of the Trellix Enterprise Security Manager (ESM) system, which allows a perpetrator to execute arbitrary commands.

The vulnerability of the application programming interface of the Trellix Enterprise Security Manager ESM system for monitoring, analyzing, and managing security threats is related to the failure to take measures to neutralize special elements used in the operating system’s command set. Exploitin...

10CVSS7.8AI score0.02544EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/31 12:0 a.m.6 views

The vulnerability of the AutoGPT library, related to its failure to take measures to neutralize special elements, allows a violator to bypass the restrictions on shell commands.

The vulnerability of the AutoGPT library is related to the failure to take measures to neutralize certain elements. Exploiting this vulnerability allows a remote attacker to bypass the restrictions in the botnet’s command list...

10CVSS7.8AI score0.00812EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/21 12:0 a.m.8 views

The vulnerability of the Aviatrix Controller software, a cloud infrastructure management tool, arises from the lack of measures to neutralize specific elements, allowing a perpetrator to execute arbitrary code.

The vulnerability of the Aviatrix Controller software for managing cloud infrastructure is related to the failure to take measures to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.5AI score0.98545EPSS
Exploits5References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/25 12:0 a.m.9 views

The vulnerability of the online business analytics service IBM Cognos Analytics lies in the lack of measures taken to neutralize special elements used in the expression language operator. This allows attackers to gain unauthorized access to protected information or cause service failures.

The vulnerability of the online business analytics service IBM Cognos Analytics lies in the lack of measures taken to neutralize special elements used in the expression language operator. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to protected informatio...

9CVSS8AI score0.00586EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.10 views

The vulnerability of Ivanti Connect Secure and Ivanti Policy Secure, which are network access control tools, stems from the failure to take measures to neutralize special elements used in the operating system’s command set. This allows attackers to execute arbitrary code.

The vulnerability of the Ivanti Connect Secure and Ivanti Policy Secure network access control tools is related to the failure to take measures to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability allows a malicious actor to execute arbitrary co...

9.1CVSS8.1AI score0.01652EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/11/22 12:0 a.m.6 views

The vulnerability of the MediaCMS content management system lies in its lack of measures to neutralize special elements used in the operating system’s command set. This allows attackers to execute arbitrary operating system commands, gain control over resources, and penetrate the internal network.

The vulnerability of the MediaCMS content management system is related to the lack of measures taken to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability allows a malicious actor to execute arbitrary operating system commands remotely, gain...

9.9CVSS5.9AI score0.00679EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/22 12:0 a.m.7 views

The vulnerability of the Chamilo LMS electronic learning and content management system lies in the lack of measures to neutralize instructions within the dynamically executed code, allowing a violator to execute arbitrary code.

The vulnerability of the Chamilo LMS electronic learning and content management system lies in the lack of measures taken to neutralize instructions within the dynamically executed code. Exploitation of this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS5.9AI score0.00323EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.11 views

The vulnerability of the Symfony software platform for developing and managing web applications arises from the lack of measures taken to neutralize special elements, allowing attackers to execute arbitrary code.

The vulnerability of the Symfony software platform for developing and managing web applications exists due to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

7.5CVSS6.2AI score0.63422EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.10 views

The vulnerability of the Vinteo video conference software server, related to the failure to take measures to neutralize special elements, allows attackers to enhance their privileges and execute arbitrary code.

The vulnerability of the Vinteo video conference software server relates to the lack of measures taken to neutralize special elements. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary code...

8.1CVSS5.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/18 12:0 a.m.5 views

The vulnerability of Microsoft DeepSpeed’s optimization library, related to the failure to take measures to neutralize special elements used in the operating system’s command set, allows attackers to execute arbitrary code.

The vulnerability of Microsoft DeepSpeed’s optimization library relates to the lack of measures taken to neutralize special elements used in the operating system’s command set. Exploiting this vulnerability can allow attackers to execute arbitrary code...

8.4CVSS5.9AI score0.00671EPSS
Exploits0References3Affected Software1
Redos
Redos
added 2024/10/15 12:0 a.m.20 views

ROS-20241015-11

A vulnerability in the PHP programming language interpreter exists due to a failure to neutralize special elements. special elements. Exploitation of the vulnerability could allow an attacker acting remotely to Affect the confidentiality, integrity, and availability of protected information...

8.8CVSS7.5AI score0.03686EPSS
Exploits68
BDU FSTEC
BDU FSTEC
added 2024/09/02 12:0 a.m.9 views

The vulnerability of the application server for managing Hitachi Tuning Manager storage resources lies in the lack of measures taken to neutralize special elements used in the expression language. This allows attackers to execute arbitrary code.

The vulnerability of the Hitachi Tuning Manager application server regarding resource management in data storage systems is related to the lack of measures taken to neutralize special elements used in the expression language. Exploiting this vulnerability allows a remote attacker to execute...

9CVSS8AI score0.00365EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/08/22 12:0 p.m.51 views

RUSTSEC-2024-0364 gitoxide-core does not neutralize special characters for terminals

Summary The gix and ein commands write pathnames and other metadata literally to terminals, even if they contain characters terminals treat specially, including ANSI escape sequences. This sometimes allows an untrusted repository to misrepresent its contents and to alter or concoct error messages...

2.5CVSS4.8AI score0.00198EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/08/07 12:0 a.m.7 views

The vulnerability of SysAid’s software for supporting and controlling hardware and software systems lies in the lack of measures taken to neutralize special elements used in the operating system commands. This allows attackers to execute arbitrary commands.

The vulnerability of the software used for supporting and controlling hardware and software systems of SysAid is related to the failure to take measures to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrar...

9.1CVSS6.3AI score0.01101EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2024/08/06 12:0 a.m.6 views

DataGear 安全漏洞

DataGear is an open source, free data visualization and analysis platform from DataGear, Inc. A security vulnerability exists in DataGear version 5.0.0 and earlier versions, which originates in the function evaluationVariableExpression in the file ConversionSqlParamValueMapper.java that causes...

8.8CVSS6.5AI score0.0059EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2024/07/17 12:0 a.m.6 views

The vulnerability of the XWiki platform, which is related to the failure to implement measures to neutralize instructions in dynamically executed code, allows a perpetrator to execute arbitrary code.

The vulnerability of the XWiki Platform lies in the lack of measures taken to neutralize instructions within the dynamically executed code. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9.9CVSS5.9AI score0.82996EPSS
Exploits1References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/03/12 12:0 a.m.13 views

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices stems from the lack of measures to neutralize special elements, allowing attackers to execute arbitrary commands.

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices is related to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

5.8CVSS7.5AI score0.01108EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/02/28 12:0 a.m.4 views

The vulnerability of the FontForge font editing software lies in its lack of measures to neutralize special elements used in operating system commands, allowing attackers to execute arbitrary commands.

The vulnerability of the FontForge font editing software exists because measures to neutralize special elements have not been taken. Exploiting this vulnerability allows an attacker to execute arbitrary commands...

4.2CVSS6.9AI score0.0187EPSS
Exploits2References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/02/28 12:0 a.m.6 views

The vulnerability of the CMS system BaserCMS arises from the lack of measures taken to neutralize special elements used in the operating system’s command set, allowing attackers to execute arbitrary commands.

The vulnerability of the CMS system BaserCMS exists due to the lack of measures taken to neutralize special elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

5.6CVSS7AI score0.01455EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/02/14 12:0 a.m.6 views

The vulnerability of the XWiki platform lies in its inability to eliminate special elements, allowing attackers to execute arbitrary code.

The vulnerability of the XWiki platform lies in its inability to neutralize certain special elements. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9CVSS8AI score0.01945EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder