16 matches found
EUVD-2014-3549
Malware in sbrugna...
EUVD-2014-2048
Malware in sbrugna...
EUVD-2013-3440
Malware in sbrugna...
EUVD-2016-0905
Malware in sbrugna...
EUVD-1999-0012
Malware in sbrugna...
PT-2025-19839 · Mrcms · Mrcms
Name of the Vulnerable Software and Affected Versions: MRCMS version 3.1.2 Description: A vulnerability was found in the processing of the file "/admin/chip/add.do" of the component "Add Fragment Page". This issue leads to cross-site scripting and can be initiated remotely. The manipulation of th...
PT-2025-13419 · Dell · Dell Unity
Name of the Vulnerable Software and Affected Versions: Dell Unity versions 5.4 and prior Description: The issue is related to an Improper Neutralization of Special Elements used in an OS Command, also known as 'OS Command Injection'. This could allow an unauthenticated attacker with remote access...
Linux Distros Unpatched Vulnerability : CVE-2016-5104
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The socketcreate function in common/socket.c in libimobiledevice and libusbmuxd allows remote attackers to bypass intended access restrictions and communicate...
PT-2023-23444 · Unknown · Adslr Vw2100
Name of the Vulnerable Software and Affected Versions: adslr VW2100 router version M1DV1.0 Description: The issue is related to a command injection vulnerability. An unauthenticated attacker can exploit this to execute system commands as the root user. Recommendations: For adslr VW2100 router...
Aver EVC300 Firmware 00.10.16.36 Hardcoded Secrets Vulnerability
Aver EVC300 firmware version 00.10.16.36 suffers from having multiple hard-coded secrets that can allow for access bypass. Firmware for Aver EVC300 multipoint video conferencing system v00.10.16.36 and others as well as firmware for several other devices manufactured by Aver, potentially all...
Hardcoded credentials
Hospira MedNet before 6.1 uses a hardcoded cleartext password to control SQL database authorization, which allows remote authenticated users to bypass intended access restrictions by leveraging knowledge of this password...
CVE-2013-5464
IBM Maximo Asset Management 7.5.x before 7.5.0.3 IFIX027, 7.5.0.4 before IFIX011, and 7.5.0.5 before IFIX006 and SmartCloud Control Desk 7.x before 7.5.0.3 and 7.5.1.x before 7.5.1.2 allow remote authenticated users to bypass intended access restrictions, and modify physical counts associated wit...
Symantec Ghost Solution Suite Memory Corruption
SUMMARY Symantecs Ghost Solution Suite is susceptible to memory corruption issues that could result in an application denial of service or possibly arbitrary code execution. AFFECTED PRODUCTS Product | Version | Solution ---|---|--- Symantec Ghost Solution Suite | 2.x | Upgrade to the latest...
CVE-2006-7241
CVE-2006-7241 affects IBM FileNet P8 Application Engine (P8AE) 3.5.1 prior to 3.5.1-002. The Image Viewer component can remove a user from an ACL when that user is denied all permissions for an annotation, potentially allowing remote authenticated users to bypass intended access restrictions in o...
CVE-2004-1162
CVE-2004-1162 affects the scponly package (before 4.0) where the unison command does not properly restrict which programs can be run. This can allow remote authenticated users to bypass intended access restrictions and execute arbitrary programs via the -rshcmd or -sshcmd flags. Documented impact...
CVE-2004-0041
The modauthshadow module 1.4 and earlier does not properly enforce the expiration of a user account and password, which could allow remote authenticated users to bypass intended access restrictions...