Lucene search
K

23 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-54801

Malicious code in bioql PyPI...

8.8CVSS7.7AI score0.00127EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-57709

Malicious code in bioql PyPI...

7.4CVSS6.4AI score0.00711EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-43919

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.006EPSS
Exploits0References1
NVD
NVD
added 2025/07/17 7:15 p.m.6 views

CVE-2024-13972

A vulnerability related to registry permissions in the Intercept X for Windows updater prior to Core Agent version 2024.3.2 can lead to a local user gaining SYSTEM level privileges during a product upgrade...

8.8CVSS0.00127EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/17 7:2 p.m.4 views

CVE-2024-13972

A vulnerability related to registry permissions in the Intercept X for Windows updater prior to Core Agent version 2024.3.2 can lead to a local user gaining SYSTEM level privileges during a product upgrade...

8.8CVSS7.4AI score0.00127EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:31 a.m.9 views

CVE-2023-5394

Server receiving a malformed message that where the GCL message hostname may be too large which may cause a stack overflow; resulting in possible remote code execution. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notification for recommendations...

7.4CVSS7.7AI score0.00711EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:31 a.m.6 views

CVE-2023-5392

C300 information leak due to an analysis feature which allows extracting more memory over the network than required by the function. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notification for recommendations on upgrading and versioning...

7.5CVSS6.7AI score0.00476EPSS
Exploits0
Sick AG
Sick AG
added 2024/12/31 12:0 a.m.7 views

Vulnerability in SICK OLM

SICK received a report about a vulnerability in the SICK Support Portal supportportal.sick.com, which was hosted and operated by a third-party service provider. Due to a misconfiguration, the access restriction of a NFS Network File System storage system has failed, which resulted in temporary...

8.8CVSS6.7AI score
Exploits0
Cvelist
Cvelist
added 2024/10/15 2:40 a.m.16 views

CVE-2024-9968 NewType WebEIP v3.0 - SQL injection

WebEIP v3.0 from NewType does not properly validate user input, allowing remote attackers with regular privilege to inject SQL commands to read, modify, and delete data stored in database. The affected product is no longer maintained. It is recommended to upgrade to the new product...

8.8CVSS0.00626EPSS
Exploits0References2
CVE
CVE
added 2024/10/15 2:40 a.m.46 views

CVE-2024-9968

The CVE-2024-9968 entry concerns WebEIP v3.0 from NewType, which reportedly does not properly validate user input. This enables remote attackers with regular privileges to inject SQL commands to read, modify, and delete data in the database. The issue is tied to an unmaintained product; remediati...

8.8CVSS9.1AI score0.00626EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/10/14 12:0 a.m.5 views

PT-2024-39967 · Newtype · Newtype Webeip

Name of the Vulnerable Software and Affected Versions: NewType WebEIP version 3.0 Description: The issue is related to improper validation of user input, allowing a remote attacker with regular privileges to insert JavaScript into specific parameters. This results in a Reflected Cross-site...

5.4CVSS6.3AI score0.00262EPSS
Exploits0References8
ICS
ICS
added 2024/06/27 6:0 a.m.27 views

Johnson Controls Illustra Essentials Gen 4 (Update A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Johnson Controls, Inc. Equipment : Illustra Essentials Gen 4 Vulnerability : Insertion of Sensitive Information into Log File 2. RISK EVALUATION Successful exploitation of this vulnerability...

6.8CVSS7AI score0.00372EPSS
Exploits0References10
Huntr
Huntr
added 2023/06/09 11:33 p.m.11 views

Privilege Escalation Vulnerability in Product Upgrade Module

Description Our product upgrade module contained a privilege escalation vulnerability that would allow an unauthorized user to upgrade to a product they were not authorized to. After an administrator had Product 1 can upgrde as Product2 , but not Product3, a user could use Burpsuite to intercept...

7.1AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/05 2:17 p.m.42 views

Security Bulletin: Vulnerability in Netty affects IBM Process Mining . CVE-2022-41881

Summary There is a vulnerability in Netty that could allow a remote authenticated attacker to execute denial of service on the system. The code is used by IBM Process Mining. This bulletin identifies the security fixes to apply to address the vulnerability. Vulnerability Details...

7.5CVSS7.3AI score0.01466EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/10/25 9:10 p.m.30 views

Security Bulletin: Vulnerability in IBM WebSphere Application Server Liberty

Summary There's a vulnerability in IBM WebSphere Application Server Liberty used by IBM Streams. IBM Streams has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2018-1553 DESCRIPTION: IBM WebSphere Application Server Liberty could allow a remote attacker to obtain sensitive...

7.5CVSS1.2AI score0.02902EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 1:7 p.m.24 views

Security Bulletin: Fix available for a Privilege Escalation Vulnerability in IBM Cúram Social Program Management (CVE-2016-8923)

Summary IBM Cúram Social Program Management is vulnerable to an already authenticated user bypassing the Security Sensitivity controls via a specially crafted URL. This allows an attacker to view information for certain business objects tagged with higher sensitivity than their current sensitivit...

4.3CVSS0.6AI score0.0069EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:21 p.m.255 views

Security Bulletin: Vulnerability in SSLv3 affects IBM Tivoli Access Manager for e-business (CVE-2014-3566)

Summary SSLv3 contains a vulnerability that has been referred to as the Padding Oracle On Downgraded Legacy Encryption POODLE attack. This affects IBM Tivoli Access Manager for e-business components that use SSLv3 including WebSEAL and pdadmin. Vulnerability Details The following vulnerability...

4.3CVSS1.8AI score0.99999EPSS
Exploits7Affected Software1
RedHat Linux
RedHat Linux
added 2016/02/25 12:0 a.m.14 views

(RHSA-2016:0297) Low: Red Hat CloudForms 3.0 - End Of Life Notice

In accordance with the Red Hat CloudForms Support Life Cycle Policy, support will end on February 28, 2017. Red Hat will not provide extended support for this product. Customers are requested to migrate to the newer Red Hat CloudForms product prior to the end of the life cycle for CloudForms 3.0...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2013/12/09 12:0 a.m.121 views

ESA-2013-078: EMC Document Sciences xPression Multiple Vulnerabilities

ESA-2013-078.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-078: EMC Document Sciences xPression Multiple Vulnerabilities EMC Identifier: ESA-2013-078 CVE Identifier: CVE-2013-6173, CVE-2013-6174, CVE-2013-6175, CVE-2013-6176, CVE-2013-6177 Severity Rating: CVSS v2 Base Score: See bel...

6.8CVSS7.4AI score0.02403EPSS
Exploits0
exploitpack
exploitpack
added 2013/08/26 12:0 a.m.9 views

Joomla! Component com_virtuemart 2.0.22a - SQL Injection

Joomla! Component comvirtuemart 2.0.22a - SQL Injection ------------------------------------------------------------ Joomla! VirtueMart component = 2.0.22a - SQL Injection ------------------------------------------------------------ == Description == - Software link: http://www.virtuemart.net/ -...

0.1AI score
Exploits0
Rows per page
Query Builder