Lucene search
+L

10 matches found

cve
cve
added 2026/06/26 6:59 p.m.23 views

CVE-2026-52782

OpenProject versions prior to 17.3.3 and 17.4.1 are affected by an IDOR in /projects//settings/project_storages/ via PATCH parameter storages_project_storage[project_folder_id], allowing a project-admin to hijack another project’s managed Nextcloud/OneDrive folder on the same storage. The vulnera...

9.9CVSS5.7AI score0.00258EPSS
Exploits0References1
snyk
snyk
added 2026/03/11 12:26 a.m.5 views

Improper Encoding or Escaping of Output

Overview craftcms/cms is a content management system. Affected versions of this package are vulnerable to Improper Encoding or Escaping of Output via the setReturnUrl function. An attacker can execute arbitrary JavaScript in the context of the application by supplying a crafted return URL...

6.9CVSS6AI score0.00185EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/05/23 1:58 a.m.7 views

CVE-2023-47112

Rundeck is an open source automation service with a web console, command line tools and a WebAPI. In affected versions access to two URLs used in both Rundeck Open Source and Process Automation products could allow authenticated users to access the URL path, which provides a list of job names and...

4.3CVSS6.6AI score0.00481EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2024/04/24 12:0 a.m.7 views

PT-2024-4833 · Apple · Ios +1

Name of the Vulnerable Software and Affected Versions: iPadOS versions prior to 17.3 iOS versions prior to 17.3 Description: The issue is related to a lack of protection for sensitive data in the Notes component of iPadOS and iOS. It may allow a remote attacker to disclose protected information...

4.3CVSS6.2AI score0.00347EPSS
Exploits0References4
cnnvd
cnnvd
added 2024/01/22 12:0 a.m.8 views

Apple iOS and iPadOS Security Vulnerabilities

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS version 17.3 and iPadOS version 17.3, which stems from a shortcut that may be...

7.5CVSS6.4AI score0.00918EPSS
Exploits0References5
cnnvd
cnnvd
added 2024/01/22 12:0 a.m.5 views

Apple tvOS Security Breach

Apple tvOS is an operating system for smart TVs from Apple. A security vulnerability exists in Apple tvOS version 17.3, which originates from an application that may be able to execute arbitrary code using kernel privileges...

7.8CVSS7.5AI score0.01425EPSS
Exploits0References7
cnnvd
cnnvd
added 2024/01/22 12:0 a.m.4 views

Apple tvOS Security Breach

Apple tvOS is a smart TV operating system from Apple. A security vulnerability exists in Apple tvOS version 17.3, which stems from an application that may be able to access sensitive user data...

5.5CVSS6.4AI score0.00328EPSS
Exploits0References7
cnnvd
cnnvd
added 2024/01/22 12:0 a.m.8 views

Apple tvOS Security Breach

Apple tvOS is a smart TV operating system from Apple. A security vulnerability exists in Apple tvOS version 17.3, which stems from an application that may be able to access sensitive user data...

6.2CVSS6.4AI score0.00305EPSS
Exploits0References7
osv
osv
added 2022/09/16 6:15 p.m.5 views

CVE-2022-38401

Adobe InCopy version 17.3 and earlier and 16.4.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fil...

7.8CVSS6.3AI score0.00475EPSS
Exploits0References1
msupdate
msupdate
added 1970/01/01 12:0 a.m.27 views

Visual Studio 2022 version 17.3.7 update

This security update applies to all editions of Visual Studio 2022, and will update client machines on the Current channel to version 17.3.7. The client machines must be enabled to receive this administrator update, and by default Visual Studio must be closed on the client in order for the update...

1.3AI score
Exploits0
Rows per page
Query Builder