Lucene search
+L

287 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-48237

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00315EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-48238

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00321EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.20 views

EUVD-2024-48236

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00315EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-49682

Malicious code in bioql PyPI...

9.8CVSS7AI score0.00683EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/05/23 1:7 a.m.12 views

CVE-2022-46898

An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is Path Traversal via the "restore SQL data" filename. The Vocera Report Console contains a websocket function that allows for the restoration of the database from a ZIP archive that expects a SQL import file...

9.8CVSS7.4AI score0.00683EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 12:58 a.m.11 views

CVE-2022-46899

An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is Arbitrary File Upload. The BaseController class, that each of the service controllers derives from, allows for the upload of arbitrary files. If the HTTP request is a multipart/form-data POST request, any...

7.5CVSS7.1AI score0.0041EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 12:24 a.m.9 views

CVE-2022-46901

An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is an Access Control Violation for Database Operations. The Vocera Report Console contains a websocket interface that allows for the unauthenticated execution of various tasks and database functions. This...

7.5CVSS7.1AI score0.00514EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 12:24 a.m.10 views

CVE-2022-46900

An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is Path Traversal in the Task Exec filename. The Vocera Report Console contains various jobs that are executed on the server at specified intervals, e.g., backup, etc. An authenticated user has the ability to...

6.5CVSS6.7AI score0.0048EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 12:15 a.m.12 views

CVE-2022-46902

An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is a Path Traversal for an Unzip operation. The Vocera Report Console contains a websocket function that allows for the restoration of the database from a ZIP archive that expects a SQL import file. During the...

7.5CVSS7.5AI score0.00532EPSS
Exploits0References1
exploitdb
exploitdb
added 2025/03/28 12:0 a.m.228 views

Progress Telerik Report Server 2024 Q1 (10.0.24.305) - Authentication Bypass

Exploit Title: Progress Telerik Report Server 2024 Q1 10.0.24.305 - Authentication Bypass Fofa Dork: title="Telerik Report Server" Date: 2024-09-22 Exploit Author: VeryLazyTech GitHub: https://github.com/verylazytech/CVE-2024-4358 Vendor Homepage: https://www.telerik.com/report-server Software...

9.8CVSS9.7AI score0.97482EPSS
Exploits14
redhatcve
redhatcve
added 2025/02/14 3:37 p.m.18 views

CVE-2025-0556

In Progress® Telerik® Report Server, versions prior to 2025 Q1 11.0.25.211 when using the older .NET Framework implementation, communication of non-sensitive information between the service agent process and app host process occurs over an unencrypted tunnel, which can be subjected to local netwo...

8.8CVSS6.4AI score0.00298EPSS
Exploits0References1
nessus
nessus
added 2025/02/14 12:0 a.m.24 views

Progress Telerik Report Server < 11.0.25.211 Cleartext Transmission

The version of Progress Telerik Report Server installed on the remote host is affected by an cleartext transmission vulnerability. In Progress® Telerik® Report Server, versions prior to 2025 Q1 11.0.25.211 when using the older .NET Framework implementation, communication of non-sensitive...

8.8CVSS5.6AI score0.00298EPSS
Exploits0References2
osv
osv
added 2025/02/12 4:15 p.m.7 views

CVE-2025-0556

In Progress® Telerik® Report Server, versions prior to 2025 Q1 11.0.25.211 when using the older .NET Framework implementation, communication of non-sensitive information between the service agent process and app host process occurs over an unencrypted tunnel, which can be subjected to local netwo...

6.5CVSS5.8AI score0.00298EPSS
Exploits0References1
nvd
nvd
added 2025/02/12 4:15 p.m.37 views

CVE-2025-0556

In Progress® Telerik® Report Server, versions prior to 2025 Q1 11.0.25.211 when using the older .NET Framework implementation, communication of non-sensitive information between the service agent process and app host process occurs over an unencrypted tunnel, which can be subjected to local netwo...

8.8CVSS0.00298EPSS
Exploits0References1
cve
cve
added 2025/02/12 3:11 p.m.69 views

CVE-2025-0556

In Progress Telerik Report Server, before 2025 Q1 (11.0.25.211) using the older .NET Framework implementation, the communication of non-sensitive information between the service agent process and the app host process happens over an unencrypted tunnel, exposing it to potential local network traff...

8.8CVSS6.5AI score0.00298EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2025/02/12 3:11 p.m.32 views

CVE-2025-0556 Telerik Report Server Clear Text Transmission of Agent Commands

In Progress® Telerik® Report Server, versions prior to 2025 Q1 11.0.25.211 when using the older .NET Framework implementation, communication of non-sensitive information between the service agent process and app host process occurs over an unencrypted tunnel, which can be subjected to local netwo...

8.8CVSS0.00298EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/02/12 12:0 a.m.6 views

Progress Telerik Report Server 安全漏洞

Progress Telerik Report Server is an enterprise-class report management and distribution solution from Progress USA. A security vulnerability exists in Progress Telerik Report Server prior to version 2025 Q1, which stems from the fact that when using older .NET Framework implementations,...

8.8CVSS6.1AI score0.00298EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/02/12 12:0 a.m.7 views

PT-2025-6792 · Progress · Progress Telerik Report Server

Name of the Vulnerable Software and Affected Versions: In Progress Telerik Report Server versions prior to 2025 Q1 11.0.25.211 Description: The issue concerns the communication of non-sensitive information between the service agent process and app host process in In Progress Telerik Report Server...

8.8CVSS6.8AI score0.00298EPSS
Exploits0References5
redhatcve
redhatcve
added 2025/02/05 12:2 p.m.20 views

CVE-2024-7295

In Progress® Telerik® Report Server versions prior to 2024 Q4 10.3.24.1112, the encryption of local asset data used an older algorithm which may allow a sophisticated actor to decrypt this information...

7.1CVSS6.5AI score0.00106EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 11:53 a.m.11 views

CVE-2024-7293

In Progress® Telerik® Report Server versions prior to 2024 Q3 10.2.24.806, a password brute forcing attack is possible through weak password requirements...

8.8CVSS6.9AI score0.00315EPSS
Exploits0References1
Rows per page
Query Builder