Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 3:2 p.m.9 views

CVE-2020-27868

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Qognify Ocularis 5.9.0.395. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of serialized objects provided to the EventCoordinator endpoint...

10CVSS7.4AI score0.8121EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2022/11/22 12:0 a.m.7 views

Qognify Ocularis Insecure Deserialization (CVE-2020-27868)

An insecure deserialization vulnerability exists in Qognify Ocularis. Successful exploitation of this vulnerability could allow an unauthenticated attacker to execute arbitrary code on the target system...

10CVSS4.6AI score0.8121EPSS
Exploits0
NVD
NVD
added 2021/02/12 12:15 a.m.16 views

CVE-2020-27868

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Qognify Ocularis 5.9.0.395. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of serialized objects provided to the EventCoordinator endpoint...

10CVSS0.8121EPSS
Exploits0References2
OSV
OSV
added 2021/02/12 12:15 a.m.3 views

CVE-2020-27868

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Qognify Ocularis 5.9.0.395. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of serialized objects provided to the EventCoordinator endpoint...

9.8CVSS7.7AI score0.8121EPSS
Exploits0References2
CVE
CVE
added 2021/02/11 11:35 p.m.63 views

CVE-2020-27868

CVE-2020-27868 affects Qognify Ocularis 5.9.0.395. The root cause is insecure deserialization of untrusted data handled by the EventCoordinator’s connected-channel path, enabling remote code execution with SYSTEM privileges. Multiple connected sources (Red Hat, Checkpoint/PRION, NVD, ZDI, CVE lis...

10CVSS9.8AI score0.8121EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/02/11 11:35 p.m.17 views

CVE-2020-27868

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Qognify Ocularis 5.9.0.395. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of serialized objects provided to the EventCoordinator endpoint...

9.8CVSS9.8AI score0.8121EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/02/11 12:0 a.m.6 views

Qognify Ocularis Code Issue Vulnerability

A code issue vulnerability exists in Qognify Ocularis that arises from improper design or implementation during code development for a network system or product...

10CVSS7.4AI score0.8121EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2020/12/29 12:0 a.m.80 views

Qognify Ocularis EventCoordinator ConnectedChannel_GotMessage Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Qognify Ocularis. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of serialized objects provided to the EventCoordinator endpoint. The issue...

9.8CVSS3.6AI score0.8121EPSS
Exploits0References1
Rows per page
Query Builder