CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

NVD•added 2024/10/15 9:15 p.m.•9 views

CVE-2024-48779

An issue in Wanxing Technology's Yitu project Management Software 3.2.2 allows a remote attacker to execute arbitrary code via the platformpluginpath parameter to specify that the qt plugin loads the directory...

9.8CVSS0.02001EPSS

Exploits0References1

Cvelist•added 2024/10/15 12:0 a.m.•20 views

CVE-2024-48779

0.02001EPSS

Exploits0References1

Vulnrichment•added 2024/10/15 12:0 a.m.•18 views

CVE-2024-48779

7.9AI score0.02001EPSS

Exploits0References1

CNNVD•added 2024/10/15 12:0 a.m.•2 views

WonderShare Yitu 安全漏洞

WonderShare Yitu Yitu is a one-stop office mapping tool from China-based WonderShare. A security vulnerability exists in WonderShare Yitu version 3.2.2, which can be exploited to execute arbitrary code via the platformpluginpath parameter...

9.8CVSS7.7AI score0.02001EPSS

Exploits0References2

SUSE CVE•added 2023/02/15 3:54 a.m.•1 views

SUSE CVE-2020-24972

The Kleopatra component before 3.1.12 and before 20.07.80 for GnuPG allows remote attackers to execute arbitrary code because openpgp4fpr: URLs are supported without safe handling of command-line options. The Qt platformpluginpath command-line option can be used to load an arbitrary DLL...

8.8CVSS9AI score0.21343EPSS

Exploits1References5

NVD•added 2021/02/04 5:15 a.m.•7 views

CVE-2021-3401

Bitcoin Core before 0.19.0 might allow remote attackers to execute arbitrary code when another application unsafely passes the -platformpluginpath argument to the bitcoin-qt program, as demonstrated by an x-scheme-handler/bitcoin handler for a .desktop file or a web browser. NOTE: the discoverer...

9.8CVSS0.01486EPSS

Exploits0References2

OSV•added 2021/02/04 5:15 a.m.•6 views

CVE-2021-3401

9.8CVSS7.9AI score

Exploits0References2

Prion•added 2021/02/04 5:15 a.m.•9 views

Code injection

7.5CVSS9.8AI score0.01486EPSS

Exploits0References2Affected Software1

UbuntuCve•added 2021/02/04 5:15 a.m.•21 views

CVE-2021-3401

9.8CVSS7.3AI score0.01486EPSS

Exploits0References3

Cvelist•added 2021/02/04 4:47 a.m.•13 views

CVE-2021-3401

10AI score0.01486EPSS

Exploits0References2

Debian CVE•added 2021/02/04 4:47 a.m.•13 views

CVE-2021-3401

Removed by vendor...

9.8CVSS9.5AI score0.01486EPSS

Exploits0

CVE•added 2021/02/04 4:47 a.m.•76 views

CVE-2021-3401

CVE-2021-3401 affects Bitcoin Core prior to 0.19.0. The flaw arises when another application unsafely passes the -platformpluginpath argument to bitcoin-qt, which can be triggered by an x-scheme-handler/bitcoin .desktop file or a web browser. The underlying issue is unsafe handling of the platfor...

9.8CVSS9.7AI score0.01486EPSS

Exploits0References2Affected Software1

Mageia•added 2020/11/15 3:45 p.m.•36 views

Updated kleopatra packages fix a security vulnerability

The Kleopatra component before 20.07.80 for GnuPG allows remote attackers to execute arbitrary code because openpgp4fpr: URLs are supported without safe handling of command-line options. The Qt platformpluginpath command-line option can be used to load an arbitrary library. CVE-2020-24972...

8.8CVSS6.2AI score0.21343EPSS

Exploits1References2

Cvelist•added 2020/08/29 8:40 p.m.•18 views

CVE-2020-24972

8.8CVSS8.9AI score0.21343EPSS

Exploits1References6

Positive Technologies•added 2020/08/29 12:0 a.m.•3 views

PT-2020-15872 · Gnupg +1 · Gnupg Kleopatra +1

Name of the Vulnerable Software and Affected Versions: GnuPG Kleopatra versions prior to 3.1.12 GnuPG Kleopatra versions prior to 20.07.80 Description: The issue allows remote attackers to execute arbitrary code due to the unsafe handling of command-line options when supporting openpgp4fpr: URLs...

8.8CVSS8.3AI score0.21343EPSS

Exploits1References24

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by