Lucene search
K

15 matches found

CNNVD
CNNVD
added 2026/02/11 12:0 a.m.7 views

AVideo 授权问题漏洞

AVideo is an open-source broadcast network creation tool developed by the World Wide Broadcast Network. Version 8.1 of AVideo contains an authorization vulnerability, which stems from cross-site request forgery attacks. This vulnerability could allow attackers to exploit the password recovery...

9.8CVSS5.7AI score0.00676EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/09 11:24 a.m.5 views

CVE-2021-31826

Shibboleth Service Provider 3.x before 3.2.2 is prone to a NULL pointer dereference flaw involving the session recovery feature. The flaw is exploitable for a daemon crash on systems not using this feature if a crafted cookie is supplied...

7.5CVSS6.8AI score0.02EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/06/19 12:0 a.m.4 views

PT-2025-26224 · Allegra · Allegra

Name of the Vulnerable Software and Affected Versions: Allegra affected versions not specified Description: The issue concerns an authentication bypass vulnerability in the Allegra tool, allowing a remote attacker to bypass authentication on affected installations. This vulnerability is related t...

9.8CVSS9.6AI score0.29434EPSS
Exploits0References9
OSV
OSV
added 2023/10/27 8:15 a.m.2 views

CVE-2023-44219

A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recovery feature...

7.8CVSS5.8AI score0.00175EPSS
Exploits0References1
NVD
NVD
added 2023/10/27 8:15 a.m.22 views

CVE-2023-44219

A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recovery feature...

7.8CVSS7.9AI score0.00175EPSS
Exploits0References1
Prion
Prion
added 2023/10/27 8:15 a.m.16 views

Privilege escalation

A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recovery feature...

4.3CVSS7.8AI score0.00175EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/27 7:22 a.m.18 views

CVE-2023-44219

A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recovery feature...

7.2AI score0.00175EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/27 7:22 a.m.24 views

CVE-2023-44219

A local privilege escalation vulnerability in SonicWall Directory Services Connector Windows MSI client 4.1.21 and earlier versions allows a local low-privileged user to gain system privileges through running the recovery feature...

8.1AI score0.00175EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/10/27 12:0 a.m.4 views

SonicWall Directory Services Connector Windows MSI Security Vulnerability

SonicWall Directory Services Connector Windows MSI is an application from SonicWall, Inc. A security vulnerability exists in the SonicWall Directory Services Connector Windows MSI client version 4.1.21 and earlier, which originates from a local elevation of privilege vulnerability that could allo...

7.8CVSS7AI score0.00175EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/31 12:0 a.m.5 views

PT-2023-5804 · Acronis · Acronis Cyber Protect Home Office

Name of the Vulnerable Software and Affected Versions: Acronis Cyber Protect Home Office Windows versions before build 40173 Description: The issue is related to local privilege escalation during recovery due to improper soft link handling. This could allow an attacker to elevate their privileges...

7.8CVSS6.7AI score0.00166EPSS
Exploits0References5
CNVD
CNVD
added 2017/12/18 12:0 a.m.5 views

Huawei Duke-L09 Forensic Bypass Vulnerability

The Huawei Duke-L09 is a smartphone from the Chinese company Huawei Huawei. A forensic bypass vulnerability exists in the Huawei Duke-L09 "phone recovery" feature. The vulnerability is due to the device failing to reasonably implement the authentication feature. An attacker can exploit this...

7.2CVSS7AI score0.00333EPSS
Exploits0References1
CNVD
CNVD
added 2017/02/10 12:0 a.m.6 views

Huawei Smart Phones Local Authentication Bypass Vulnerability

Huawei Nice is a smartphone from the Chinese company Huawei Huawei. A local authentication bypass vulnerability exists in Huawei Smart Phones. An attacker can flash or restore the phone to factory settings by following certain steps. Due to the lack of authentication in the "phone recovery"...

4.9CVSS6.7AI score0.00281EPSS
Exploits0References1
NVD
NVD
added 2014/12/17 12:59 a.m.15 views

CVE-2014-8006

The Disaster Recovery DRA feature on the Cisco ISB8320-E High-Definition IP-Only DVR allows remote attackers to bypass authentication by establishing a TELNET session during a recovery boot, aka Bug ID CSCup85422...

4.3CVSS6.9AI score0.01187EPSS
Exploits0References1
NVD
NVD
added 2001/02/12 5:0 a.m.18 views

CVE-2001-0081

swinit in nCipher does not properly disable the Operator Card Set recovery feature even when explicitly disabled by the user, which could allow attackers to gain access to application keys...

5CVSS6.7AI score0.01386EPSS
Exploits0References4
NVD
NVD
added 1999/08/07 4:0 a.m.13 views

CVE-1999-1524

FlowPoint DSL router firmware versions prior to 3.0.8 allows a remote attacker to exploit a password recovery feature from the network and conduct brute force password guessing, instead of limiting the feature to the serial console port...

5CVSS6.8AI score0.01324EPSS
Exploits0References1
Rows per page
Query Builder