Lucene search
K

250 matches found

RedhatCVE
RedhatCVE
added 2025/02/13 6:1 p.m.13 views

CVE-2024-27374

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanpublishgetnlparams, there is no input validation check on halreq-servicespecificinfolen coming from userspace, which can lead to a heap overwrite...

7.8CVSS6.8AI score0.00196EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 10:20 a.m.10 views

CVE-2024-12252

The SEO LAT Auto Post plugin for WordPress is vulnerable to file overwrite due to a missing capability check on the remoteupdate AJAX action in all versions up to, and including, 2.2.1. This makes it possible for unauthenticated attackers to overwrite the seo-beginner-auto-post.php file which can...

9.8CVSS7.4AI score0.03117EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 1:25 a.m.11 views

CVE-2024-20401

A vulnerability in the content scanning and message filtering features of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to overwrite arbitrary files on the underlying operating system. This vulnerability is due to improper handling of email attachments when file...

9.8CVSS7.7AI score0.02278EPSS
Exploits0References1
NVD
NVD
added 2025/01/23 6:15 p.m.22 views

CVE-2024-45672

IBM Security Verify Bridge 1.0.0 through 1.0.15 could allow a local privileged user to overwrite files due to excessive privileges granted to the agent. which could also cause a denial of service...

6CVSS0.00142EPSS
Exploits0References1
NVD
NVD
added 2025/01/14 6:16 p.m.9 views

CVE-2025-23051

An authenticated parameter injection vulnerability exists in the web-based management interface of the AOS-8 and AOS-10 Operating Systems. Successful exploitation could allow an authenticated user to leverage parameter injection to overwrite arbitrary system files...

7.2CVSS0.00687EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/12/13 12:0 a.m.13 views

openSUSE Security Advisory (SUSE-SU-2024:4302-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.7AI score0.00794EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/12/12 8:45 a.m.12 views

CVE-2024-47613

A flaw was found in the gdk-pixbuf decoder in the GStreamer library. Processing a specially crafted input file can cause a NULL pointer dereference due to an unchecked return value, resulting in an application crash and a denial of service. Mitigation Do not process untrusted files with the...

6.5CVSS6AI score0.00901EPSS
Exploits0References6
OSV
OSV
added 2024/12/11 2:40 p.m.5 views

SUSE-SU-2024:4295-1 Security update for socat

This update for socat fixes the following issues: - CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory in socat readline.sh bsc1225462...

9.8CVSS9.5AI score0.00794EPSS
Exploits0References3
OSV
OSV
added 2024/12/11 1:6 p.m.5 views

SUSE-SU-2024:4294-1 Security update for socat

This update for socat fixes the following issues: - CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory bsc1225462...

9.8CVSS9.6AI score0.00794EPSS
Exploits0References3
NVD
NVD
added 2024/10/29 1:15 p.m.20 views

CVE-2024-5823

A file overwrite vulnerability exists in gaizhenbiao/chuanhuchatgpt versions = 20240410. This vulnerability allows an attacker to gain unauthorized access to overwrite critical configuration files within the system. Exploiting this vulnerability can lead to unauthorized changes in system behavior...

9.1CVSS0.00527EPSS
Exploits1References2
CVE
CVE
added 2024/10/29 12:48 p.m.65 views

CVE-2024-5823

A CVE-2024-5823 entry concerns a file overwrite vulnerability in gaizhenbiao/chuanhuchatgpt versions <= 20240410. The root cause: an insecure file handling path enables an attacker to overwrite critical configuration files, which can lead to unauthorized changes in system behavior or security ...

9.1CVSS7.1AI score0.00527EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/29 12:48 p.m.14 views

CVE-2024-5823 File Overwrite Vulnerability in gaizhenbiao/chuanhuchatgpt

A file overwrite vulnerability exists in gaizhenbiao/chuanhuchatgpt versions = 20240410. This vulnerability allows an attacker to gain unauthorized access to overwrite critical configuration files within the system. Exploiting this vulnerability can lead to unauthorized changes in system behavior...

6.5CVSS7.3AI score0.00527EPSS
Exploits1References2
OSV
OSV
added 2024/10/29 12:48 p.m.14 views

CVE-2024-5823 File Overwrite Vulnerability in gaizhenbiao/chuanhuchatgpt

A file overwrite vulnerability exists in gaizhenbiao/chuanhuchatgpt versions = 20240410. This vulnerability allows an attacker to gain unauthorized access to overwrite critical configuration files within the system. Exploiting this vulnerability can lead to unauthorized changes in system behavior...

6.5CVSS6.6AI score0.00527EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/09/09 12:0 a.m.6 views

SAMSUNG Mobile Processor 安全漏洞

SAMSUNG Mobile Processor is a family of mobile processors from Samsung South Korea. A security vulnerability exists in SAMSUNG Mobile Processor, which stems from the function slsirxrangedoneind not performing an input validation check on rttid from userspace, resulting in a heap overwrite. The...

7.8CVSS6.8AI score0.00169EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/07/19 7:57 p.m.19 views

CVE-2024-41121 Custom workspace allow to overwrite plugin entrypoint executable in Woodpecker

Woodpecker is a simple yet powerful CI/CD engine with great extensibility. The server allow to create any user who can trigger a pipeline run malicious workflows: 1. Those workflows can either lead to a host takeover that runs the agent executing the workflow. 2. Or allow to extract the secrets w...

8.8CVSS0.00737EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/06/05 6:40 p.m.26 views

CVE-2024-27373

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanconfiggetnlparams, there is no input validation check on discattr-meshidlen coming from userspace, which can lead to a heap overwrite...

6.7CVSS6.9AI score0.00164EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/05 6:39 p.m.34 views

CVE-2024-27374

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanpublishgetnlparams, there is no input validation check on halreq-servicespecificinfolen coming from userspace, which can lead to a heap overwrite...

6.7CVSS6.5AI score0.00196EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/05 6:38 p.m.15 views

CVE-2024-27375

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinanfollowupgetnlparams, there is no input validation check on halreq-sdeaservicespecificinfolen coming from userspace, which can lead to a heap overwrite...

6.7CVSS6.9AI score0.00196EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/05 6:30 p.m.16 views

CVE-2024-27376

An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsinansubscribegetnlparams, there is no input validation check on halreq-rxmatchfilterlen coming from userspace, which can lead to a heap overwrite...

6.7CVSS6.9AI score0.00196EPSS
Exploits0References1
OSV
OSV
added 2024/04/03 2:15 p.m.6 views

CVE-2024-21870

A file write vulnerability exists in the OAS Engine Tags Configuration functionality of Open Automation Software OAS Platform V19.00.0057. A specially crafted series of network requests can lead to arbitrary file creation or overwrite. An attacker can send a sequence of requests to trigger this...

4.9CVSS5.9AI score0.00662EPSS
Exploits1References2
Rows per page
Query Builder