15280 matches found
CVE-2024-36456
This vulnerability allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by uploading a specially crafted PAM upgrade file...
CVE-2024-38494 Symantec Privileged Access Manager Remote Command Execution vulnerability
This vulnerability allows a high-privileged authenticated PAM user to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request...
CVE-2024-38494
Broadcom Symantec Privileged Access Management (PAM) contains a vulnerability that, when exploited by a high-privileged authenticated PAM user, enables remote command execution on the affected PAM system via a specially crafted HTTP request. Affected component appears to be the PAM software itsel...
CVE-2024-38494 Symantec Privileged Access Manager Remote Command Execution vulnerability
This vulnerability allows a high-privileged authenticated PAM user to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request...
CVE-2024-38492 Symantec Privileged Access Manager Remote Command Execution vulnerability
This vulnerability allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by uploading a specially crafted PAM upgrade file...
CVE-2024-38492
CVE-2024-38492 affects Broadcom Symantec Privileged Access Management (PAM). The issue is a file-upload vulnerability where unauthenticated attackers can upload a crafted PAM upgrade file to achieve remote command execution on the PAM system. Root cause cited across sources is the lack of effecti...
CVE-2024-38492 Symantec Privileged Access Manager Remote Command Execution vulnerability
This vulnerability allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by uploading a specially crafted PAM upgrade file...
CVE-2024-36456 Symantec Privileged Access Manager Remote Command Execution vulnerability
This vulnerability allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by uploading a specially crafted PAM upgrade file...
CVE-2024-36456 Symantec Privileged Access Manager Remote Command Execution vulnerability
This vulnerability allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by uploading a specially crafted PAM upgrade file...
CVE-2024-36456
CVE-2024-36456 affects Broadcom Symantec Privileged Access Management (PAM). A code injection vulnerability allows an unauthenticated attacker to achieve remote command execution on the PAM system by uploading a specially crafted PAM upgrade file. Impact is high (remote code execution, confidenti...
CVE-2024-36455 Symantec Privileged Access Manager Remote Command Execution vulnerability
An improper input validation allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request...
CVE-2024-36455 Symantec Privileged Access Manager Remote Command Execution vulnerability
An improper input validation allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request...
CVE-2024-36455
Broadcom Symantec Privileged Access Management is affected by CVE-2024-36455 through an input validation error that allows an unauthenticated attacker to achieve remote command execution by sending a specially crafted HTTP request. The exposed component is PAM, and the root cause is improper inpu...
The vulnerability of the XStreamSerializer class in the Mirth Connect healthcare management optimization tool allows a perpetrator to execute arbitrary commands.
The vulnerability of the XStreamSerializer class in the Mirth Connect healthcare management optimization tool is related to the lack of data cleansing measures at the administrative level. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary commands...
Cellopoint Secure Email Gateway Security Vulnerability
Cellopoint Secure Email Gateway Cellopoint SEG is a secure email gateway from Cellopoint China. A security vulnerability exists in Cellopoint Secure Email Gateway versions prior to 4.5.0, which originates from failure to properly validate user input, resulting in a buffer overflow vulnerability...
PT-2024-28034 · Pam · Pam
Name of the Vulnerable Software and Affected Versions: PAM affected versions not specified Description: The issue allows a high-privileged authenticated PAM user to achieve remote command execution on the affected PAM system by sending a specially crafted HTTP request. Recommendations: At the...
PT-2024-37840 · Cellopoint · Cellopoint Secure Email Gateway
Name of the Vulnerable Software and Affected Versions: Cellopoint Secure Email Gateway affected versions not specified Description: The issue arises from the SMTP Listener of the Secure Email Gateway not properly validating user input, leading to a buffer overflow. This allows an unauthenticated...
Broadcom Symantec Privileged Access Management 安全漏洞
Broadcom Symantec Privileged Access Management Broadcom Symantec PAM is a security software from Broadcom, Inc. It helps prevent security breaches by protecting sensitive administrative credentials, controlling privileged user access, proactively enforcing security policies, and monitoring and...
Broadcom Symantec Privileged Access Management 安全漏洞
Broadcom Symantec Privileged Access Management Broadcom Symantec PAM is a security software from Broadcom, Inc. It helps prevent security breaches by protecting sensitive administrative credentials, controlling privileged user access, proactively enforcing security policies, and monitoring and...
PT-2024-28032 · Pam · Pam
Name of the Vulnerable Software and Affected Versions: PAM system affected versions not specified Description: The issue allows an unauthenticated attacker to achieve remote command execution on the affected PAM system by uploading a specially crafted PAM upgrade file. Recommendations: At the...