Lucene search
K

227 matches found

Vulnrichment
Vulnrichment
added 2023/04/13 12:0 a.m.12 views

CVE-2023-29084

Zoho ManageEngine ADManager Plus before 7181 allows for authenticated users to exploit command injection via Proxy settings...

7.5AI score0.98388EPSS
Exploits2References3
Cvelist
Cvelist
added 2023/04/13 12:0 a.m.35 views

CVE-2023-29084

Zoho ManageEngine ADManager Plus before 7181 allows for authenticated users to exploit command injection via Proxy settings...

7.4AI score0.98388EPSS
Exploits2References3
CVE
CVE
added 2023/04/13 12:0 a.m.302 views

CVE-2023-29084

CVE-2023-29084 concerns Zoho ManageEngine ADManager Plus. Multiple sources confirm: versions up to build 7181/7180 are vulnerable to authenticated command injection by manipulating the server proxy settings. The underlying issue is insufficient validation of user input when handling proxy configu...

7.2CVSS7.2AI score0.98388EPSS
Exploits2References3Affected Software1
CNNVD
CNNVD
added 2023/03/28 12:0 a.m.6 views

RSA NetWitness Platform 安全漏洞

Dell EMC RSA NetWitness Platform is a suite of network security monitoring platforms from Dell USA. A security vulnerability exists in RSA NetWitness Platform versions prior to 12.2 that originates from allowing local and administrator accounts to modify endpoint proxy service configurations to...

6.7CVSS6.5AI score0.0157EPSS
Exploits5References9
Veracode
Veracode
added 2023/03/12 8:34 p.m.23 views

Same-Origin Policy Bypass

chromium is vulnerable to Same-Origin Policy Bypass. Insufficient policy enforcement in DevTools allows an attacker to bypass same origin policy and proxy settings via a crafted HTML page...

6.5CVSS6.5AI score0.00883EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/03/03 12:0 a.m.50 views

openSUSE 15 Security Update : opera (openSUSE-SU-2023:0063-1)

The remote openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0063-1 advisory. - Type confusion in V8 in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to potentially exploit heap corruption via a crafted HTM...

8.8CVSS8AI score0.00883EPSS
Exploits0References21
OSV
OSV
added 2023/02/21 3:53 p.m.4 views

USN-5881-1 chromium-browser vulnerabilities

It was discovered that Chromium did not properly manage memory. A remote attacker could possibly use these issues to cause a denial of service or execute arbitrary code via a crafted HTML page. CVE-2023-0471, CVE-2023-0472, CVE-2023-0473, CVE-2023-0696, CVE-2023-0698, CVE-2023-0699, CVE-2023-0702...

8.8CVSS7.2AI score0.00883EPSS
Exploits0References14
Ubuntu
Ubuntu
added 2023/02/21 3:53 p.m.72 views

USN-5881-1: Chromium vulnerabilities

It was discovered that Chromium did not properly manage memory. A remote attacker could possibly use these issues to cause a denial of service or execute arbitrary code via a crafted HTML page. CVE-2023-0471, CVE-2023-0472, CVE-2023-0473, CVE-2023-0696, CVE-2023-0698, CVE-2023-0699, CVE-2023-0702...

8.8CVSS7.9AI score0.00883EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:21 a.m.3 views

SUSE CVE-2023-0704

Insufficient policy enforcement in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to bypass same origin policy and proxy settings via a crafted HTML page. Chromium security severity: Low...

6.5CVSS6.8AI score0.00883EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/02/13 12:3 p.m.80 views

Low: Red Hat Security Advisory: RHUI 4.3.0 release - Security Fixes, Bug Fixes, and Enhancements Update

An updated version of Red Hat Update Infrastructure RHUI is now available. RHUI 4.3 fixes a security bug, introduces multiple new features, and upgrades underlying Pulp to a Long Term Support LTS version. Red Hat Update Infrastructure RHUI offers a highly scalable, highly redundant framework that...

7.5CVSS6.8AI score0.0272EPSS
Exploits0References13
OSV
OSV
added 2023/02/07 9:15 p.m.22 views

CVE-2023-0704

Insufficient policy enforcement in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to bypass same origin policy and proxy settings via a crafted HTML page. Chromium security severity: Low...

6.5CVSS5.2AI score
Exploits0References3
OSV
OSV
added 2023/02/07 9:15 p.m.3 views

UBUNTU-CVE-2023-0704

Insufficient policy enforcement in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to bypass same origin policy and proxy settings via a crafted HTML page. Chromium security severity: Low...

6.5CVSS6.8AI score0.00883EPSS
Exploits0References5
Prion
Prion
added 2023/02/07 9:15 p.m.24 views

Design/Logic Flaw

Insufficient policy enforcement in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to bypass same origin policy and proxy settings via a crafted HTML page. Chromium security severity: Low...

4.3CVSS6.3AI score0.00883EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2023/02/07 12:0 a.m.30 views

CVE-2023-0704

Insufficient policy enforcement in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to bypass same origin policy and proxy settings via a crafted HTML page. Chromium security severity: Low...

6.7AI score0.00883EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/02/07 12:0 a.m.7 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, Inc USA. A security vulnerability exists in versions prior to Google Chrome 110.0.5481.77, which stems from insufficient policy enforcement in DevTools. An attacker exploits the vulnerability to bypass the same-origin policy and proxy settings via a...

6.5CVSS7.6AI score0.00883EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2023/02/07 12:0 a.m.27 views

CVE-2023-0704

Insufficient policy enforcement in DevTools in Google Chrome prior to 110.0.5481.77 allowed a remote attacker to bypass same origin policy and proxy settings via a crafted HTML page. Chromium security severity: Low...

6.5CVSS7.3AI score0.00883EPSS
Exploits0
CVE
CVE
added 2023/02/07 12:0 a.m.116 views

CVE-2023-0704

CVE-2023-0704 affects Google Chrome/Chromium DevTools. The issue is an insufficient policy enforcement flaw that allowed a remote attacker to bypass the same-origin policy and proxy settings via a crafted HTML page. Affected versions are prior to 110.0.5481.77. Chrome’s security fixes released in...

6.5CVSS6.3AI score0.00883EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2022/11/18 9:15 p.m.3 views

CVE-2022-42904

Zoho ManageEngine ADManager Plus through 7151 allows authenticated admin users to execute the commands in proxy settings...

7.2CVSS5.9AI score0.0767EPSS
Exploits0References1
NVD
NVD
added 2022/11/18 9:15 p.m.19 views

CVE-2022-42904

Zoho ManageEngine ADManager Plus through 7151 allows authenticated admin users to execute the commands in proxy settings...

7.2CVSS0.0767EPSS
Exploits0References1
Prion
Prion
added 2022/11/18 9:15 p.m.13 views

Command injection

Zoho ManageEngine ADManager Plus through 7151 allows authenticated admin users to execute the commands in proxy settings...

5.8CVSS7AI score0.0767EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder