Lucene search
K

294 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2020-0083

Malware in sbrugna...

9.8CVSS9AI score0.01694EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-0159

Malware in sbrugna...

9.8CVSS7.5AI score0.05156EPSS
Exploits1References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2015-5623

Malware in sbrugna...

6.5CVSS6.4AI score0.02454EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-0646

Malware in sbrugna...

7.5CVSS6.4AI score0.09148EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-1999-1449

Malware in sbrugna...

6.2CVSS6.4AI score0.00341EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-1691

Malware in sbrugna...

6.9CVSS6.1AI score0.04638EPSS
Exploits4References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.13 views

EUVD-2024-3357

Malicious code in bioql PyPI...

9.8CVSS6.3AI score0.02273EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-0100

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.0096EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-31727

Malicious code in bioql PyPI...

8.4CVSS8.4AI score0.01321EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-0042

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.01143EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/09/25 2:53 a.m.6 views

CVE-2025-9494

An OS command injection vulnerability has been discovered in the Vitogate 300, which can be exploited by malicious users to compromise affected installations. Specifically, the /cgi-bin/vitogate.cgi endpoint is affected, when the form JSON parameter is set to form-0-2. The vulnerability stems fro...

8.5CVSS8.3AI score0.00693EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/23 12:0 a.m.6 views

PT-2025-39103

Name of the Vulnerable Software and Affected Versions Vitogate 300 affected versions not specified Description An OS command injection issue exists in the Vitogate 300. A malicious user can exploit this to compromise affected installations. The issue is present in the /cgi-bin/vitogate.cgi API...

8.5CVSS7.7AI score0.00693EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/09/03 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-31607

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In SaltStack Salt 2016.9 through 3002.6, a command injection vulnerability exists in the snapper module that allows for local privilege escalation on a minion...

7.8CVSS7AI score0.03808EPSS
Exploits1References2
F5 Networks
F5 Networks
added 2025/08/11 1:0 a.m.13 views

K000152943: PyYAML vulnerability CVE-2019-20477

Security Advisory Description PyYAML 5.1 through 5.1.2 has insufficient restrictions on the load and loadall functions because of a class deserialization issue, e.g., Popen is a class in the subprocess module. NOTE: this issue exists because of an incomplete fix for CVE-2017-18342. CVE-2019-20477...

9.8CVSS7.4AI score0.05156EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/08/10 7:15 p.m.14 views

CVE-2012-10048

Zenoss Core 3.x contains a command injection vulnerability in the showDaemonXMLConfig endpoint. The daemon parameter is passed directly to a Popen call in ZenossInfo.py without proper sanitation, allowing authenticated users to execute arbitrary commands on the server as the zenoss user...

8.7CVSS8AI score0.02598EPSS
Exploits0References1
NVD
NVD
added 2025/08/08 7:15 p.m.8 views

CVE-2012-10048

Zenoss Core 3.x contains a command injection vulnerability in the showDaemonXMLConfig endpoint. The daemon parameter is passed directly to a Popen call in ZenossInfo.py without proper sanitation, allowing authenticated users to execute arbitrary commands on the server as the zenoss user...

8.7CVSS0.02598EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/08/08 6:14 p.m.11 views

CVE-2012-10048 Zenoss 3.x showDaemonXMLConfig Command Execution

Zenoss Core 3.x contains a command injection vulnerability in the showDaemonXMLConfig endpoint. The daemon parameter is passed directly to a Popen call in ZenossInfo.py without proper sanitation, allowing authenticated users to execute arbitrary commands on the server as the zenoss user...

8.7CVSS0.02598EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/08/08 6:14 p.m.6 views

CVE-2012-10048 Zenoss 3.x showDaemonXMLConfig Command Execution

Zenoss Core 3.x contains a command injection vulnerability in the showDaemonXMLConfig endpoint. The daemon parameter is passed directly to a Popen call in ZenossInfo.py without proper sanitation, allowing authenticated users to execute arbitrary commands on the server as the zenoss user...

8.7CVSS7.9AI score0.02598EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2025/08/08 6:14 p.m.5 views

CVE-2012-10048

Zenoss Core 3.x contains a command injection vulnerability in the showDaemonXMLConfig endpoint. The daemon parameter is passed directly to a Popen call in ZenossInfo.py without proper sanitation, allowing authenticated users to execute arbitrary commands on the server as the zenoss user...

8.7CVSS6.1AI score0.02598EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2025/08/08 6:14 p.m.14 views

CVE-2012-10048

CVE-2012-10048 affects Zenoss Core 3.x. The vulnerability is in the showDaemonXMLConfig endpoint where the daemon parameter is passed directly to a Popen() call in ZenossInfo.py without proper sanitization, allowing an authenticated user to execute arbitrary commands on the server as the zenoss u...

8.7CVSS7.6AI score0.02598EPSS
Exploits0References6
Rows per page
Query Builder