Google Chrome 安全漏洞

Google Chrome is a web browser developed by the American company Google. Versions of Google Chrome prior to 148.0.7778.96 contained a security vulnerability caused by improper implementation in Chromoting. This vulnerability could allow local attackers to gain operating system-level privileges...

CVE-2025-64691

The vulnerability, if exploited, could allow an authenticated miscreant OS standard user to tamper with TCL Macro scripts and escalate privileges to OS system, potentially resulting in complete compromise of the model application server...

CVE-2025-61937 AVEVA Process Optimization Code Injection

The vulnerability, if exploited, could allow an unauthenticated miscreant to achieve remote code execution under OS system privileges of “taoimr” service, potentially resulting in complete compromise of the model application server...

EUVD-2013-0954

Malware in sbrugna...

Telerik JustDecompile 安全漏洞

Telerik JustDecompile is a free .NET decompiler and assembly browser from Telerik Bulgaria. A security vulnerability exists in Telerik JustDecompile versions prior to 2024 R1, which stems from an elevation of privilege vulnerability that allows a less privileged user to elevate their privileges o...

CVE-2023-25185

An issue was discovered on NOKIA Airscale ASIKA Single RAN devices before 21B. A mobile network solution internal fault was found in Nokia Single RAN software releases. Certain software processes in the BTS internal software design have unnecessarily high privileges to BTS embedded operating syst...

CVE-2022-37061

All FLIR AX8 thermal sensor cameras version up to and including 1.46.16 are vulnerable to Remote Command Injection. This can be exploited to inject and execute arbitrary shell commands as the root user through the id HTTP POST parameter in the res.php endpoint. A successful exploit could allow th...

CVE-2019-1774

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of arguments passed to certain CLI commands. An attacker cou...

Code Execution Vulnerability in CIM City Information Aggregation System

CIM is a city information aggregation CMS that is easy to operate, powerful, data standardized, flexible in settings, and can easily realize various website types and style interfaces. A code execution vulnerability exists in CIM City Information Aggregation System, which can be exploited by...

Multiple Siemens Product Access Bypass Vulnerabilities

Siemens IEC 61850 system configurator is a system configurator for intelligent substations; DIGSI is a set of unified configuration software for Siemens protection and measurement and control systems. DIGSI is a set of unified configuration software for Siemens protection and measurement and...

Damon Database Override Access Vulnerability

DM7 is a new-generation database product designed by Damon on the basis of summarizing the R&D and application experience of DM series products, absorbing the advantages of mainstream database products, and adopting JAVA-like virtual machine technology. Damon database has override access...

SAP NetWeaver AS JAVA UMEADMIN Component Directory Traversal Vulnerability

SAP NetWeaver is SAP's integrated technology platform and the technology foundation for all SAP applications since SAP Business Suite. A directory traversal vulnerability exists in the SAP NetWeaver AS JAVA UMEADMIN component, which could allow an attacker to create any directory with the...

IBM Rational Team Concert Injection Vulnerability

IBM Rational Team Concert RTC is the U.S. IBM's set of Jazz-based platform and support decentralized teams for real-time collaboration related to software lifecycle management solutions. An injection vulnerability exists in IBM RTC. An attacker could exploit this vulnerability by sending a...

The vulnerability of the automated system for managing technological processes of SIMATIC WinCC allows a malicious individual to increase their privileges level.

Access rights to system objects allow a local user to obtain limited, enhanced privileges as a user of the operating system...

CVE-2013-0943

EMC NetWorker 7.6.x and 8.x before 8.1 allows local users to obtain sensitive configuration information by leveraging operating-system privileges to perform decryption with nsradmin...

Design/Logic Flaw

EMC NetWorker 7.6.x and 8.x before 8.1 allows local users to obtain sensitive configuration information by leveraging operating-system privileges to perform decryption with nsradmin...

CVE-2013-0943

CVE-2013-0943 affects EMC NetWorker 7.6.x and 8.x prior to 8.1. A privileged local user can leverage the nsradmin utility under OS privileges to decrypt data and obtain sensitive configuration information, yielding a confidential data disclosure vulnerability. The root cause centers on how nsradm...