Lucene search
K

23 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-47268

Malicious code in bioql PyPI...

7.8CVSS6.2AI score0.00275EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-47269

Malicious code in bioql PyPI...

5.5CVSS6.6AI score0.00239EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:42 a.m.7 views

CVE-2024-6122

An incorrect permission in the installation directory for the shared NI SystemLink Server KeyValueDatabase service may result in information disclosure via local access. This affects NI SystemLink Server 2024 Q1 and prior versions. It also affects NI FlexLogger 2023 Q2 and prior versions which...

5.5CVSS6.4AI score0.00239EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/20 1:36 p.m.12 views

CVE-2025-2449

NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected installations of NI FlexLogger. User interaction is required to exploit this vulnerability in that the target must visit ...

7.8CVSS7.6AI score0.30781EPSS
Exploits0References3
NVD
NVD
added 2025/03/18 2:15 p.m.30 views

CVE-2025-2449

NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected installations of NI FlexLogger. User interaction is required to exploit this vulnerability in that the target must visit ...

8.8CVSS0.30781EPSS
Exploits0References1
CVE
CVE
added 2025/03/18 1:18 p.m.60 views

CVE-2025-2449

CVE-2025-2449 concerns NI FlexLogger, specifically the usiReg URI file parsing component. The vulnerability arises from insufficient validation of a user-supplied path before file operations, enabling a path traversal that can lead to remote code execution in the context of the current user. Expl...

8.8CVSS7.9AI score0.30781EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/03/18 1:18 p.m.12 views

CVE-2025-2449 NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability

NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected installations of NI FlexLogger. User interaction is required to exploit this vulnerability in that the target must visit ...

7.8CVSS7.6AI score0.30781EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/18 1:18 p.m.17 views

CVE-2025-2449 NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability

NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to create arbitrary files on affected installations of NI FlexLogger. User interaction is required to exploit this vulnerability in that the target must visit ...

7.8CVSS0.30781EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/03/17 12:0 a.m.9 views

(0Day) NI FlexLogger usiReg URI File Parsing Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to create arbitrary files on affected installations of NI FlexLogger. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of URI...

7.8CVSS6.6AI score0.30781EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 2:56 a.m.9 views

CVE-2024-6121

An out-of-date version of Redis shipped with NI SystemLink Server is susceptible to multiple vulnerabilities, including CVE-2022-24834. This affects NI SystemLink Server 2024 Q1 and prior versions. It also affects NI FlexLogger 2023 Q2 and prior versions which installed this shared service...

8.8CVSS6.7AI score0.4292EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2024/07/30 12:0 a.m.10 views

NI FlexLogger Redis Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of NI FlexLogger. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the product installer...

7.8CVSS7.2AI score0.00275EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/07/30 12:0 a.m.7 views

NI FlexLogger Redis Server Incorrect Permission Assignment Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of NI FlexLogger. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

5.5CVSS6AI score0.00239EPSS
Exploits0References1
CVE
CVE
added 2024/07/22 7:46 p.m.87 views

CVE-2024-6121

CVE-2024-6121 involves NI SystemLink Server shipping an outdated Redis version (affecting NI SystemLink Server 2024 Q1 and earlier; NI FlexLogger 2023 Q2 and earlier). Connected sources confirm CVE-2022-24834 and other Redis flaws; the security issue arises from Lua scripting in Redis, leading to...

7.8CVSS7.6AI score0.00275EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/22 7:46 p.m.41 views

CVE-2024-6121 NI SystemLink Server Ships Out of Date Redis Version

An out-of-date version of Redis shipped with NI SystemLink Server is susceptible to multiple vulnerabilities, including CVE-2022-24834. This affects NI SystemLink Server 2024 Q1 and prior versions. It also affects NI FlexLogger 2023 Q2 and prior versions which installed this shared service...

7.8CVSS7.1AI score0.00275EPSS
Exploits0References1
NVD
NVD
added 2024/05/14 3:42 p.m.16 views

CVE-2024-4044

A deserialization of untrusted data vulnerability exists in common code used by FlexLogger and InstrumentStudio that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted project file. This vulnerability affects NI FlexLogger...

7.8CVSS7.8AI score0.14692EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/10 2:59 p.m.9 views

CVE-2024-4044 Deserialization of Untrusted Data Vulnerability in FlexLogger and InstrumentStudio

A deserialization of untrusted data vulnerability exists in common code used by FlexLogger and InstrumentStudio that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted project file. This vulnerability affects NI FlexLogger...

7.8CVSS7.5AI score0.14692EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/10 2:59 p.m.100 views

CVE-2024-4044 Deserialization of Untrusted Data Vulnerability in FlexLogger and InstrumentStudio

A deserialization of untrusted data vulnerability exists in common code used by FlexLogger and InstrumentStudio that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted project file. This vulnerability affects NI FlexLogger...

7.8CVSS8AI score0.14692EPSS
Exploits0References1
CVE
CVE
added 2024/05/10 2:59 p.m.26 views

CVE-2024-4044

This CVE describes a deserialization of untrusted data vulnerability in NI FlexLogger and NI InstrumentStudio code paths shared by both applications. The flaw allows remote code execution and requires an attacker to convince a user to open a specially crafted project file (FLXPROJ) to trigger exp...

7.8CVSS7.8AI score0.14692EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/02/28 12:0 a.m.18 views

NI FlexLogger SkylineService Missing Authorization Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of NI FlexLogger. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the SkylineService...

7.8CVSS7.9AI score0.00274EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2024/02/28 12:0 a.m.16 views

NI FlexLogger userservices Missing Authorization Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of NI FlexLogger. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the userservices...

7.8CVSS7.8AI score0.00274EPSS
Exploits1References1
Rows per page
Query Builder