CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2023/09/11 7:15 p.m.•0 views

CVE-2020-19559

An issue in Diebold Aglis XFS for Opteva v.4.1.61.1 allows a remote attacker to execute arbitrary code via a crafted payload to the ResolveMethod parameter...

9.8CVSS6.1AI score

Exploits0References1

Github Security Blog•added 2018/07/18 6:28 p.m.•38 views

Command Injection in dns-sync

Affected versions of dns-sync have an arbitrary command execution vulnerability in the resolve method. Recommendation - Use an alternative dns resolver - Do not allow untrusted input into dns-sync.resolve...

10CVSS6.8AI score0.0534EPSS

Exploits1References9Affected Software1

OSV•added 2018/07/18 6:28 p.m.•0 views

GHSA-JCW8-R9XM-32C6 Command Injection in dns-sync

10CVSS7.5AI score0.0534EPSS

Exploits1References9

OSV•added 2018/06/07 2:29 a.m.•2 views

CVE-2017-16100

dns-sync is a sync/blocking dns resolver. If untrusted user input is allowed into the resolve method then command injection is possible...

9.8CVSS5.8AI score

Exploits0References2

Node.js•added 2017/09/06 11:32 p.m.•101 views

Command Injection

Overview Affected versions of dns-sync have an arbitrary command execution vulnerability in the resolve method. Recommendation - Use an alternative dns resolver - Do not allow untrusted input into dns-sync.resolve References - Issue 1 - Commit d9abaae...

10CVSS6.9AI score0.0534EPSS

Exploits1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by