CVE-2019-3585 VSE Escalation of Privileges through Alert pop-up window

Privilege Escalation vulnerability in Microsoft Windows client McTray.exe in McAfee VirusScan Enterprise VSE 8.8 prior to Patch 14 may allow local users to interact with the On-Access Scan Messages - Threat Alert Window with elevated privileges via running McAfee Tray with elevated privileges...

McAfee VirusScan Enterprise < 8.8 Patch 14 Hotfix 116778 Privilege Escalation Vulnerability (SB10316)

The version of McAfee VirusScan Enterprise VSE installed on the remote Windows host is prior to 8.8 Patch 14 Hotfix 116778. It is, therefore, affected by a privilege escalation vulnerability. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid136668; scriptversion"1.4";...

CVE-2020-7266

Privilege Escalation vulnerability in McAfee VirusScan Enterprise VSE for Windows prior to 8.8 Patch 14 Hotfix 116778 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is...

Privilege escalation

Privilege Escalation vulnerability in McAfee VirusScan Enterprise VSE for Windows prior to 8.8 Patch 14 Hotfix 116778 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is...

CVE-2020-7266

CVE-2020-7266 affects McAfee VirusScan Enterprise (VSE) for Windows prior to 8.8 Patch 14 Hotfix 116778. A local privilege escalation exists where an attacker can delete restricted files by abusing symbolic links to redirect a McAfee delete action to an unintended file. Root cause: manipulation o...

CVE-2020-7266 Privilege Escalation vulnerability through symbolic links in VSE for Windows

Privilege Escalation vulnerability in McAfee VirusScan Enterprise VSE for Windows prior to 8.8 Patch 14 Hotfix 116778 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is...

CVE-2019-20768

ServiceNow IT Service Management Kingston through Patch 14-1, London through Patch 7, and Madrid before patch 4 allow stored XSS via crafted sysparmitemguid and sysid parameters in an Incident Request to servicecatalog.do...

Security Bulletin: The software contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.

Summary The software contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. Vulnerability Details CVEID: CVE-2018-1650 Description: IBM QRadar Incide...

Security Bulletin: IBM QRadar SIEM is vulnerable to Cross-Site Scripting (CVE-2018-1728)

Summary The product allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality and allowing spoofing attacks. Vulnerability Details CVEID: CVE-2018-1728 Description: IBM QRadar is vulnerable to cross-site scripting. This vulnerability allows users to...

Security Bulletin: The Application framework within IBM QRadar SIEM is vulnerable to Improper Certificate Validation (CVE-2017-1622)

Summary The software does not validate, or incorrectly validates, a certificate.This weakness might allow an attacker to spoof a trusted entity by using a man-in-the-middle MITM attack. The software might connect to a malicious host while believing it is a trusted host, or the software might be...

OpenEMR 4.1.1 Patch 14 - Multiple Vulnerabilities

No description provided by source. Exploit Title: OpenEMR 4.1.1 Patch 14 Multiple Vulnerabilities Date: Sep 17 2013 Exploit Author: xistence xistenceat0x90.nl Vendor Homepage: www.open-emr.org Tested on: CentOS 5.9 32-bit Affected Version : 4.1.1 Patch 14 and lower Fix: Upgrade to OpenEMR 4.1.2...

OpenEMR 4.1.1 Patch 14 - Multiple Vulnerabilities

Exploit Title: OpenEMR 4.1.1 Patch 14 Multiple Vulnerabilities Date: Sep 17 2013 Exploit Author: xistence Vendor Homepage: www.open-emr.org Tested on: CentOS 5.9 32-bit Affected Version : 4.1.1 Patch 14 and lower Fix: Upgrade to OpenEMR 4.1.2 Software details: OpenEMR is a Free and Open Source...

OpenEMR 4.1.1 Patch 14 SQL Injection / Shell Upload

Exploit Title: OpenEMR 4.1.1 Patch 14 Multiple Vulnerabilities Date: Sep 17 2013 Exploit Author: xistence Vendor Homepage: www.open-emr.org Tested on: CentOS 5.9 32-bit Affected Version : 4.1.1 Patch 14 and lower Fix: Upgrade to OpenEMR 4.1.2 Software details: OpenEMR is a Free and Open Source...

OpenEMR 4.1.1 Patch 14 - Multiple Vulnerabilities

OpenEMR 4.1.1 Patch 14 - Multiple Vulnerabilities Exploit Title: OpenEMR 4.1.1 Patch 14 Multiple Vulnerabilities Date: Sep 17 2013 Exploit Author: xistence Vendor Homepage: www.open-emr.org Tested on: CentOS 5.9 32-bit Affected Version : 4.1.1 Patch 14 and lower Fix: Upgrade to OpenEMR 4.1.2...

ESA-2012-023: RSA Authentication Manager Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2012-023: RSA® Authentication Manager Multiple Vulnerabilities EMC Identifier: ESA-2012-023 CVE Identifier: CVE-2012-2278, CVE-2012-2279, CVE-2012-2280 Severity Rating: See below for scores for individual issues Affected Products: RSA Authenticati...

HP-UX PHSS_34202 : s700_800 11.X OV NNM6.4x/ET2.0x Intermediate Patch 14

s700800 11.X OV NNM6.4x/ET2.0x Intermediate Patch 14 : The remote HP-UX host is affected by multiple vulnerabilities : - Potential vulnerabilities have been identified with HP OpenView Network Node Manager OV NNM. These vulnerabilities could be exploited remotely by an unauthorized user to gain...