Lucene search
K

34 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-7317

Malware in sbrugna...

9.8CVSS9.4AI score0.49742EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-6970

Malware in sbrugna...

7.8CVSS7.6AI score0.00341EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 8:42 a.m.9 views

CVE-2019-5509

ONTAP Select Deploy administration utility versions 2.11.2 through 2.12.2 are susceptible to a code injection vulnerability which when successfully exploited could allow an unauthenticated remote attacker to enable and use a privileged user account...

9.8CVSS7.5AI score0.02275EPSS
Exploits0References1
NVD
NVD
added 2025/04/10 3:15 a.m.36 views

CVE-2025-27690

Dell PowerScale OneFS, versions 9.5.0.0 through 9.10.1.0, contains a use of default password vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to the takeover of a high privileged user account...

9.8CVSS0.00472EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/07 8:32 a.m.13 views

CVE-2025-1077 Remote Code Execution vulnerability in IBL Software Engineering Visual Weather and derived products (NAMIS, Aero Weather, Satellite Weather)

A security vulnerability has been identified in the IBL Software Engineering Visual Weather and derived products NAMIS, Aero Weather, Satellite Weather. The vulnerability is present in the Product Delivery Service PDS component in specific server configurations where the PDS pipeline utilizes the...

9.5CVSS7.5AI score0.00843EPSS
Exploits0References1
CVE
CVE
added 2025/02/07 8:32 a.m.87 views

CVE-2025-1077

CVE-2025-1077 affects IBL Software Engineering Visual Weather and derived products (NAMIS, Aero Weather, Satellite Weather) via the Product Delivery Service (PDS) when the PDS pipeline uses the IPDS pipeline with Message Editor Output Filters enabled. The vulnerability allows a remote, unauthenti...

9.5CVSS7.2AI score0.00843EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2023/09/26 5:25 p.m.32 views

CVE-2023-3550

Mediawiki v1.40.0 does not validate namespaces used in XML files. Therefore, if the instance administrator allows XML file uploads, a remote attacker with a low-privileged user account can use this exploit to become an administrator by sending a malicious link to the instance administrator...

7.3CVSS7AI score0.01151EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/07/22 12:0 a.m.14 views

CVE-2023-38195

Datalust Seq before 2023.2.9489 allows insertion of sensitive information into an externally accessible file or directory. This is exploitable only when external SQL Server or PostgreSQL metadata storage is used. Exploitation can only occur from a high-privileged user account...

6.6AI score0.00432EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/11/03 12:0 a.m.24 views

Cisco Secure Email and Web Manager Multiple Vulnerabilities (cisco-sa-esasmawsa-vulns-YRuSW5mD)

According to its self-reported version, Cisco Secure Email and Web Manager is affected by multiple vulnerabilities. - an SQL injection vulnerability that could allow an authenticated, remote attacker to conduct SQL injection attacks as root on an affected system. To exploit this vulnerability, an...

8.8CVSS7.5AI score0.0075EPSS
Exploits0References4
NVD
NVD
added 2019/11/21 4:15 p.m.28 views

CVE-2019-5509

ONTAP Select Deploy administration utility versions 2.11.2 through 2.12.2 are susceptible to a code injection vulnerability which when successfully exploited could allow an unauthenticated remote attacker to enable and use a privileged user account...

9.8CVSS9.5AI score0.02275EPSS
Exploits0References1
OSV
OSV
added 2019/11/21 4:15 p.m.3 views

CVE-2019-5509

ONTAP Select Deploy administration utility versions 2.11.2 through 2.12.2 are susceptible to a code injection vulnerability which when successfully exploited could allow an unauthenticated remote attacker to enable and use a privileged user account...

9.8CVSS7.4AI score0.02275EPSS
Exploits0References1
Prion
Prion
added 2019/11/21 4:15 p.m.22 views

Code injection

ONTAP Select Deploy administration utility versions 2.11.2 through 2.12.2 are susceptible to a code injection vulnerability which when successfully exploited could allow an unauthenticated remote attacker to enable and use a privileged user account...

7.5CVSS9.3AI score0.02275EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/11/21 3:33 p.m.26 views

CVE-2019-5509

ONTAP Select Deploy administration utility versions 2.11.2 through 2.12.2 are susceptible to a code injection vulnerability which when successfully exploited could allow an unauthenticated remote attacker to enable and use a privileged user account...

9.5AI score0.02275EPSS
Exploits0References1
Prion
Prion
added 2019/01/31 7:29 p.m.15 views

Code injection

In Vignette Content Management version 6, it is possible to gain remote access to administrator privileges by discovering the admin password in the vgn/ccb/user/mgmt/user/edit/0,1628,0,00.html?uid=admin HTML source code, and then creating a privileged user account. NOTE: this product is...

5CVSS9.4AI score0.02325EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2019/01/31 7:0 p.m.29 views

CVE-2018-18941

In Vignette Content Management version 6, it is possible to gain remote access to administrator privileges by discovering the admin password in the vgn/ccb/user/mgmt/user/edit/0,1628,0,00.html?uid=admin HTML source code, and then creating a privileged user account. NOTE: this product is...

9.6AI score0.02325EPSS
Exploits3References2
Packet Storm
Packet Storm
added 2018/11/12 12:0 a.m.84 views

Vignette Content Management 6 Security Bypass

...

0.02325EPSS
Exploits3
Vulnrichment
Vulnrichment
added 2018/11/08 5:0 p.m.16 views

CVE-2018-15439 Cisco Small Business Switches Privileged Access Vulnerability

A vulnerability in the Cisco Small Business Switches software could allow an unauthenticated, remote attacker to bypass the user authentication mechanism of an affected device. The vulnerability exists because under specific circumstances, the affected software enables a privileged user account...

9.8CVSS7.3AI score0.49742EPSS
Exploits0References2
Cisco
Cisco
added 2018/11/07 4:0 p.m.633 views

Cisco Small Business Switches Privileged Access Vulnerability

A vulnerability in the Cisco Small Business Switches software could allow an unauthenticated, remote attacker to bypass the user authentication mechanism of an affected device. The vulnerability exists because under specific circumstances, the affected software enables a privileged user account...

9.8CVSS2.1AI score0.49742EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2018/07/17 12:0 a.m.42 views

QNAP Q'Center - 'change_passwd' Command Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "QNAP Q'Center changepasswd Command Execution", 'Description' = %q This module exploits a command injection vulnerability in the changepasswd API...

7.4AI score
Exploits0
0day.today
0day.today
added 2018/04/18 12:0 a.m.59 views

Geist WatchDog Console 3.2.2 - Multiple Vulnerabilities

Exploit for multiple platform in category web applications Exploit Author: bzyo CVE: CVE-2018-10077, CVE-2018-10078, CVE-2018-10079 Twitter: @bzyo Exploit Title: Geist WatchDog Console 3.2.2 - Multiple Vulnerabilities Date: 04-17-18 Vulnerable Software: WatchDog Console - 3.2.2 Vendor Homepage:...

0.08296EPSS
Exploits7
Rows per page
Query Builder