18 matches found
CVE-2021-27579
Snow Inventory Agent through 6.7.0 on Windows uses CPUID to report on processor types and versions that may be deployed and in use across an IT environment. A privilege-escalation vulnerability exists if CPUID is enabled, and thus it should be disabled via configuration settings...
EUVD-2021-14327
Malware in sbrugna...
EUVD-2023-59350
Malicious code in bioql PyPI...
CVE-2024-1150
Improper Verification of Cryptographic Signature vulnerability in Snow Software Inventory Agent on Unix allows File Manipulation through Snow Update Packages.This issue affects Inventory Agent: through 7.3.1...
CVE-2023-7169
Authentication Bypass by Spoofing vulnerability in Snow Software Snow Inventory Agent on Windows allows Signature Spoof.This issue affects Snow Inventory Agent: through 6.14.5. Customers advised to upgrade to version 7.0...
CVE-2023-7169
Authentication Bypass by Spoofing vulnerability in Snow Software Snow Inventory Agent on Windows allows Signature Spoof.This issue affects Snow Inventory Agent: through 6.14.5. Customers advised to upgrade to version 7.0...
CVE-2023-7169 Impersonate vendor signed Powershell scripts
Authentication Bypass by Spoofing vulnerability in Snow Software Snow Inventory Agent on Windows allows Signature Spoof.This issue affects Snow Inventory Agent: through 6.14.5. Customers advised to upgrade to version 7.0...
CVE-2023-7169 Impersonate vendor signed Powershell scripts
Authentication Bypass by Spoofing vulnerability in Snow Software Snow Inventory Agent on Windows allows Signature Spoof.This issue affects Snow Inventory Agent: through 6.14.5. Customers advised to upgrade to version 7.0...
CVE-2023-7169
Summary (CVE-2023-7169): Affected product is Snow Software Snow Inventory Agent on Windows. The issue is an Authentication Bypass by Spoofing (signature spoof) that impacts versions up to 6.14.5; customers are advised to upgrade to version 7.0. The NVD vector shows a likely local, low-attack-vect...
Snow Software Inventory Agent Data Forgery Issue Vulnerability
Snow Software Inventory Agent is an agent program from Snow Software of Sweden. Snow Software Inventory Agent is vulnerable to a data forgery issue that stems from incorrect cryptographic signature validation that allows file manipulation via update packages...
PT-2024-15220 · Snow · Snow Inventory Agent
Name of the Vulnerable Software and Affected Versions: Snow Inventory Agent versions through 6.14.5 Description: The issue is related to an Authentication Bypass by Spoofing vulnerability, allowing Signature Spoof. This vulnerability does not have any reported real-world incidents or estimated...
Fixed vulnerability in Snow Inventory Agent for Windows
A vulnerability has been fixed in Snow Inventory Agent for Windows. The vulnerability allows a locally authenticated malicious person able to manipulate data. Snow Globe has released updates to fix the vulnerability. fix. More information can be found on the page below:...
CVE-2021-27579
Snow Inventory Agent through 6.7.0 on Windows uses CPUID to report on processor types and versions that may be deployed and in use across an IT environment. A privilege-escalation vulnerability exists if CPUID is enabled, and thus it should be disabled via configuration settings...
CVE-2021-27579
Snow Inventory Agent through 6.7.0 on Windows uses CPUID to report on processor types and versions that may be deployed and in use across an IT environment. A privilege-escalation vulnerability exists if CPUID is enabled, and thus it should be disabled via configuration settings...
Privilege escalation
Snow Inventory Agent through 6.7.0 on Windows uses CPUID to report on processor types and versions that may be deployed and in use across an IT environment. A privilege-escalation vulnerability exists if CPUID is enabled, and thus it should be disabled via configuration settings...
CVE-2021-27579
Snow Inventory Agent through 6.7.0 on Windows uses CPUID to report on processor types and versions that may be deployed and in use across an IT environment. A privilege-escalation vulnerability exists if CPUID is enabled, and thus it should be disabled via configuration settings...
CVE-2021-27579
Snow Inventory Agent for Windows (up to version 6.7.0) uses CPUID to report processor information. The disclosed vulnerability is a privilege-escalation flaw that exists when CPUID is enabled; remediation is to disable CPUID via configuration. No exploit specifics or affected product versions bey...
Snow Globe Snow Inventory Agent through Security Vulnerability
Snow Globe Snow Inventory Agent through is a Snow Globe community application that provides a clear and accurate view of the multi-platform Snow Inventory Agent through. A security vulnerability exists in Snow Inventory Agent through 6.7.0, which is an escalation of privilege vulnerability if CPU...