Lucene search
K

37 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-28775

Malicious code in bioql PyPI...

6.5CVSS6.8AI score0.01933EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-41767

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Guacamole 1.3.0 and older may incorrectly include a private tunnel identifier in the non-private details of some REST responses. This may allow an...

6.5CVSS6.8AI score0.01933EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:3 p.m.6 views

CVE-2020-15076

Private Tunnel installer for macOS version 3.0.1 and older versions may corrupt system critical files it should not have access via symlinks in /tmp...

7.8CVSS6.9AI score0.00358EPSS
Exploits0
OSV
OSV
added 2024/03/06 10:53 a.m.14 views

BIT-GUACAMOLE-2021-41767

Apache Guacamole 1.3.0 and older may incorrectly include a private tunnel identifier in the non-private details of some REST responses. This may allow an authenticated user who already has permission to access a particular connection to read from or interact with another user's active use of that...

6.5CVSS6.4AI score0.01933EPSS
Exploits0References2
Veracode
Veracode
added 2022/01/12 4:47 a.m.20 views

Information Disclosure

guacamole-common is vulnerable to information disclosure. The vulnerability exists due to the incorrectly included private tunnel identifier in non-private details of some REST responses, allowing an authenticated attacker to interact with another user's active session...

6.5CVSS3.1AI score0.01933EPSS
Exploits0References8Affected Software1
CNVD
CNVD
added 2022/01/12 12:0 a.m.28 views

Apache Guacamole Information Disclosure Vulnerability (CNVD-2022-04988)

Apache Guacamole is a clientless remote desktop gateway from the Apache Foundation in the United States. The product supports protocols such as VNC, RDP, and SSH. A security vulnerability exists in Apache Guacamole 1.3.0, which stems from the fact that Apache Guacamole 1.3.0 and earlier versions...

6.5CVSS3.1AI score0.01933EPSS
Exploits0References1
Prion
Prion
added 2022/01/11 10:15 p.m.17 views

Design/Logic Flaw

Apache Guacamole 1.3.0 and older may incorrectly include a private tunnel identifier in the non-private details of some REST responses. This may allow an authenticated user who already has permission to access a particular connection to read from or interact with another user's active use of that...

4CVSS6.2AI score0.01933EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/01/11 10:15 p.m.2 views

UBUNTU-CVE-2021-41767

Apache Guacamole 1.3.0 and older may incorrectly include a private tunnel identifier in the non-private details of some REST responses. This may allow an authenticated user who already has permission to access a particular connection to read from or interact with another user's active use of that...

6.5CVSS7.2AI score0.01933EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2022/01/11 10:15 p.m.16 views

CVE-2021-41767

Apache Guacamole 1.3.0 and older may incorrectly include a private tunnel identifier in the non-private details of some REST responses. This may allow an authenticated user who already has permission to access a particular connection to read from or interact with another user's active use of that...

6.5CVSS6.8AI score0.01933EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2022/01/11 10:10 p.m.23 views

CVE-2021-41767

Removed by vendor...

6.5CVSS6.8AI score0.01933EPSS
Exploits0
CVE
CVE
added 2022/01/11 10:10 p.m.75 views

CVE-2021-41767

CVE-2021-41767 affects Apache Guacamole 1.3.0 and older. The issue arises when a private tunnel identifier is wrongly included in the non-private details of certain REST responses, enabling an authenticated user who already has access to a connection to read from or interact with another user’s a...

6.5CVSS6.2AI score0.01933EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/01/11 12:0 a.m.7 views

PT-2022-11481 · Apache +1 · Apache Guacamole +1

Name of the Vulnerable Software and Affected Versions: Apache Guacamole versions 1.3.0 and older Description: The issue allows an authenticated user who already has permission to access a particular connection to potentially read from or interact with another user's active use of that same...

8.8CVSS8.4AI score0.0825EPSS
Exploits2References19
NVD
NVD
added 2021/05/26 7:15 p.m.26 views

CVE-2020-15076

Private Tunnel installer for macOS version 3.0.1 and older versions may corrupt system critical files it should not have access via symlinks in /tmp...

7.8CVSS0.00358EPSS
Exploits0References1
OSV
OSV
added 2021/05/26 7:15 p.m.5 views

CVE-2020-15076

Private Tunnel installer for macOS version 3.0.1 and older versions may corrupt system critical files it should not have access via symlinks in /tmp...

7.8CVSS5.8AI score0.00358EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/05/26 7:15 p.m.3 views

CVE-2020-15076

Private Tunnel installer for macOS version 3.0.1 and older versions may corrupt system critical files it should not have access via symlinks in /tmp...

7.8CVSS7.6AI score0.00358EPSS
Exploits0References2
Prion
Prion
added 2021/05/26 7:15 p.m.15 views

Code injection

Private Tunnel installer for macOS version 3.0.1 and older versions may corrupt system critical files it should not have access via symlinks in /tmp...

7.2CVSS7.5AI score0.00358EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/05/26 6:17 p.m.20 views

CVE-2020-15076

Private Tunnel installer for macOS version 3.0.1 and older versions may corrupt system critical files it should not have access via symlinks in /tmp...

7.6AI score0.00358EPSS
Exploits0References1
CVE
CVE
added 2021/05/26 6:17 p.m.108 views

CVE-2020-15076

CVE-2020-15076 affects the OpenVPN Private Tunnel macOS installer (version 3.0.1 and earlier). The root cause is a symbolic link in /tmp via the mp directory used by the installer, which can lead to corruption of system files that should not be accessible. Public exploit details are not provided ...

7.8CVSS7.5AI score0.00358EPSS
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2019/11/01 12:0 a.m.17 views

OpenVPN Private Tunnel 2.8.4 - ovpnagent Unquoted Service Path

OpenVPN Private Tunnel 2.8.4 - ovpnagent Unquoted Service Path Title: OpenVPN Private Tunnel 2.8.4 - 'ovpnagent' Unquoted Service Path Author: Sainadh Jamalpur Date: 2019-10-31 Vendor Homepage: https://openvpn.net/ Software Link:...

0.2AI score
Exploits0
0day.today
0day.today
added 2019/11/01 12:0 a.m.78 views

OpenVPN Private Tunnel 2.8.4 - (ovpnagent) Unquoted Service Path Vulnerability

Title: OpenVPN Private Tunnel 2.8.4 - 'ovpnagent' Unquoted Service Path Author: Sainadh Jamalpur Vendor Homepage: https://openvpn.net/ Software Link: https://swupdate.openvpn.org/privatetunnel/client/privatetunnel-win-2.8.exe Version : PrivateTunnel v2.8.4 Tested on: Windows 10 64bitEN CVE : N/A...

0.3AI score
Exploits0
Rows per page
Query Builder