Lucene search
K

7 matches found

OSV
OSV
added 2026/05/13 7:28 p.m.2 views

CVE-2026-33378 Grafana Data Source Plugin: DoS (OOM) via Negative Interval Injection in $__timeGroup Macro

Using the $timeGroup macro, one can achieve an OOM by overloading the server. This requires a SQL datasource. If the server is set up to auto-restart, the impact is minimal or non-existent, as the attack can take upwards of half an hour to crash the server...

6.5CVSS6.6AI score0.00328EPSS
Exploits0References3
OSV
OSV
added 2023/12/21 3:15 p.m.6 views

CVE-2023-7047

Inadequate validation of permissions when employing remote tools and macros via the context menu within Devolutions Remote Desktop Manager versions 2023.3.31 and earlier permits a user to initiate a connection without proper execution rights via the remote tools feature. This affects only SQL dat...

4.4CVSS5.9AI score
Exploits0References1
NVD
NVD
added 2023/12/21 3:15 p.m.14 views

CVE-2023-7047

Inadequate validation of permissions when employing remote tools and macros via the context menu within Devolutions Remote Desktop Manager versions 2023.3.31 and earlier permits a user to initiate a connection without proper execution rights via the remote tools feature. This affects only SQL dat...

4.4CVSS0.00165EPSS
Exploits0References1
Prion
Prion
added 2023/12/21 3:15 p.m.15 views

Design/Logic Flaw

Inadequate validation of permissions when employing remote tools and macros via the context menu within Devolutions Remote Desktop Manager versions 2023.3.31 and earlier permits a user to initiate a connection without proper execution rights via the remote tools feature. This affects only SQL dat...

3.2CVSS7.9AI score0.00165EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/21 2:42 p.m.11 views

CVE-2023-7047

Inadequate validation of permissions when employing remote tools and macros via the context menu within Devolutions Remote Desktop Manager versions 2023.3.31 and earlier permits a user to initiate a connection without proper execution rights via the remote tools feature. This affects only SQL dat...

7.6AI score0.00165EPSS
Exploits0References1
CVE
CVE
added 2023/12/21 2:42 p.m.40 views

CVE-2023-7047

The CVE-2023-7047 entry concerns Devolutions Remote Desktop Manager. Affected software: Devolutions Remote Desktop Manager versions 2023.3.31 and earlier. Root cause: inadequate validation of permissions when using remote tools and macros via the context menu. Impact: a user could initiate a conn...

4.4CVSS5.2AI score0.00165EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/21 2:42 p.m.20 views

CVE-2023-7047

Inadequate validation of permissions when employing remote tools and macros via the context menu within Devolutions Remote Desktop Manager versions 2023.3.31 and earlier permits a user to initiate a connection without proper execution rights via the remote tools feature. This affects only SQL dat...

5.5AI score0.00165EPSS
Exploits0References1
Rows per page
Query Builder