25 matches found
CVE-2023-49114
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or higher, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL, if some specific pre-conditions are met...
EUVD-2023-53122
Malicious code in bioql PyPI...
CVE-2023-2306
Qognify NiceVision versions 3.1 and prior are vulnerable to exposing sensitive information using hard-coded credentials. With these credentials an attacker can retrieve information about the cameras, user information, and modify database records...
CVE-2020-27868
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Qognify Ocularis 5.9.0.395. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of serialized objects provided to the EventCoordinator endpoint...
Qognify VMS Client Viewer 7.1 DLL Hijacking
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Local Privilege Escalation via DLL Hijacking product: Qognify VMS Client Viewer vulnerable version: =7.1 fixed version: see solution CVE number: CVE-2023-49114 impact:...
CVE-2023-49114
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or higher, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL, if some specific pre-conditions are met...
CVE-2023-49114
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or higher, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL, if some specific pre-conditions are met...
Design/Logic Flaw
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or higher, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL, if some specific pre-conditions are met...
CVE-2023-49114
CVE-2023-49114 affects Qognify VMS Client Viewer 7.1 and later. The root cause is a DLL hijacking vulnerability that allows a local user to execute arbitrary code and achieve higher privileges by placing a malicious DLL under specific pre-conditions. Impact stated in documents: local code executi...
CVE-2023-49114 Local Privilege Escalation via DLL Hijacking
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or higher, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL, if some specific pre-conditions are met...
CVE-2023-49114 Local Privilege Escalation via DLL Hijacking
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or higher, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL, if some specific pre-conditions are met...
Qognify VMS Client Viewer Security Vulnerability
Qognify VMS Client Viewer is a video management software for corporate and enterprise projects from Qognify. A security vulnerability exists in Qognify VMS Client Viewer 7.1 and later versions that stems from the presence of a DLL hijacking vulnerability. An attacker can exploit this vulnerabilit...
CVE-2023-2306
Qognify NiceVision versions 3.1 and prior are vulnerable to exposing sensitive information using hard-coded credentials. With these credentials an attacker can retrieve information about the cameras, user information, and modify database records...
CVE-2023-2306
Qognify NiceVision versions 3.1 and prior are vulnerable to exposing sensitive information using hard-coded credentials. With these credentials an attacker can retrieve information about the cameras, user information, and modify database records...
CVE-2023-2306 Qognify NiceVision Use of Hard-coded Credentials
Qognify NiceVision versions 3.1 and prior are vulnerable to exposing sensitive information using hard-coded credentials. With these credentials an attacker can retrieve information about the cameras, user information, and modify database records...
CVE-2023-2306 Qognify NiceVision Use of Hard-coded Credentials
Qognify NiceVision versions 3.1 and prior are vulnerable to exposing sensitive information using hard-coded credentials. With these credentials an attacker can retrieve information about the cameras, user information, and modify database records...
CVE-2023-2306
Qognify NiceVision versions 3.1 and earlier are affected by a vulnerability (CVE-2023-2306) that exposes sensitive information due to hard-coded credentials. With these credentials, an attacker could retrieve information about cameras, user data, and modify database records. The issue is document...
Qognify NiceVision
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION : Exploitable remotely/low attack complexity Vendor : Qognify Equipment : NiceVision Vulnerability : Use of Hard-coded Credentials 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to retrieve sensitive...
Qognify Ocularis Insecure Deserialization (CVE-2020-27868)
An insecure deserialization vulnerability exists in Qognify Ocularis. Successful exploitation of this vulnerability could allow an unauthenticated attacker to execute arbitrary code on the target system...
CVE-2020-27868
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Qognify Ocularis 5.9.0.395. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of serialized objects provided to the EventCoordinator endpoint...