Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-44855

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00056EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/05 11:51 p.m.9 views

CVE-2022-41668

A CWE-704: Incorrect Project Conversion vulnerability exists that allows adversaries with local user privileges to load a project file from an adversary-controlled network share which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal ExpertV3.3 Hotfix 1...

7.8CVSS6.7AI score0.00056EPSS
Exploits0References1
OSV
OSVadded 2023/04/02 9:30 p.m.22 views

GHSA-7C44-M589-36W7 Jenkins Convert To Pipeline Plugin vulnerable to command injection

Jenkins Convert To Pipeline Plugin 1.0 and earlier uses basic string concatenation to convert Freestyle projects' Build Environment, Build Steps, and Post-build Actions to the equivalent Pipeline step invocations. This allows attackers able to configure Freestyle projects to prepare a crafted...

8CVSS9.3AI score0.0196EPSS
Exploits0References3
OSV
OSVadded 2022/11/04 12:15 p.m.1 views

CVE-2022-41668

A CWE-704: Incorrect Project Conversion vulnerability exists that allows adversaries with local user privileges to load a project file from an adversary-controlled network share which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal ExpertV3.3 Hotfix 1...

7.8CVSS5.9AI score0.00056EPSS
Exploits0References1
Cvelist
Cvelistadded 2022/11/04 12:0 a.m.14 views

CVE-2022-41668

A CWE-704: Incorrect Project Conversion vulnerability exists that allows adversaries with local user privileges to load a project file from an adversary-controlled network share which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal ExpertV3.3 Hotfix 1...

7CVSS7.8AI score0.00056EPSS
Exploits0References1
CVE
CVEadded 2022/11/04 12:0 a.m.55 views

CVE-2022-41668

CVE-2022-41668 describes a CWE-704 issue where an adversary with local user privileges can load a project file from an attacker-controlled network share, potentially causing execution of malicious code. Affected products are Schneider Electric EcoStruxure Operator Terminal Expert (versions before...

7.8CVSS7.5AI score0.00056EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichmentadded 2022/11/04 12:0 a.m.9 views

CVE-2022-41668

A CWE-704: Incorrect Project Conversion vulnerability exists that allows adversaries with local user privileges to load a project file from an adversary-controlled network share which could result in execution of malicious code. Affected Products: EcoStruxure Operator Terminal ExpertV3.3 Hotfix 1...

7CVSS7.6AI score0.00056EPSS
Exploits0References1
myhack58
myhack58added 2017/01/18 12:0 a.m.35 views

Apache shiro 1.2.4 version of remote command execution vulnerability details-vulnerability warning-the black bar safety net

Search, I found online about apache shiro 1.2.4 version of the vulnerability consolidation report to write too simple, is perhaps the bigwigs speaking of professional, I this noob can't read the reason, specially in the local do a full show. First from the shiro official get shiro 1.2.4 of the...

7.2AI score
Exploits0
Rows per page
Query Builder