22 matches found
EUVD-2026-43543
AnyDesk Support Information Link Following Denial-of-Service Vulnerability. This vulnerability allows local attackers to create a denial-of-service condition on affected installations of AnyDesk. An attacker must first obtain the ability to execute low-privileged code on the target system in orde...
CVE-2026-15682
AnyDesk Support Information Link Following Denial-of-Service Vulnerability. This vulnerability allows local attackers to create a denial-of-service condition on affected installations of AnyDesk. An attacker must first obtain the ability to execute low-privileged code on the target system in orde...
CVE-2026-15682 AnyDesk Support Information Link Following Denial-of-Service Vulnerability
AnyDesk Support Information Link Following Denial-of-Service Vulnerability. This vulnerability allows local attackers to create a denial-of-service condition on affected installations of AnyDesk. An attacker must first obtain the ability to execute low-privileged code on the target system in orde...
CVE-2026-15682
The CVE-2026-15682 vulnerability affects AnyDesk’s Send Support Information feature. By creating a junction, an attacker who can run low-privilege code locally can abuse the process to create arbitrary files, enabling a denial-of-service condition on affected installations. The flaw is localized ...
EUVD-2024-41271
Malicious code in bioql PyPI...
.NET 8.0 Update - March 11, 2025 (KB5054229)
None None...
Hitachi Energy Service Suite
SUMMARY Hitachi Energy is aware of the multiple vulnerabilities related to open-source Apache Tomcat components that affect the Service Suite product versions listed in this document. An attacker successfully exploiting these vulnerabilities can cause confidentiality, integrity and availability...
.NET 8.0 Update - February 11, 2025 (KB5052978)
None None...
January 14, 2025—KB5050006 (Security-only update)
None None...
KB5050116: Servicing stack update for Windows Server 2012: January 14, 2025
None None...
CVE-2024-45805 OpenCTI leaks support information due to inadequate access control
OpenCTI is an open-source cyber threat intelligence platform. Before 6.3.0, general users can access information that can only be accessed by users with access privileges to admin and support information SETTINGSSUPPORT. This is due to inadequate access control for support information...
CVE-2024-45805 OpenCTI leaks support information due to inadequate access control
OpenCTI is an open-source cyber threat intelligence platform. Before 6.3.0, general users can access information that can only be accessed by users with access privileges to admin and support information SETTINGSSUPPORT. This is due to inadequate access control for support information...
CVE-2024-45805
Affected software: OpenCTI Open-Source Threat Intelligence Platform (prior to 6.3.0). Vulnerability / root cause: Inadequate access control allowed general users to access information intended for admin and support roles via the endpoint/storage/get/support/UUID/UUID.zip, exposing the UUID throug...
OpenCTI 授权问题漏洞
OpenCTI is an open source cyber threat intelligence platform from OpenCTI Open Source. An authorization issue vulnerability exists in OpenCTI version 6.2.18 and earlier, which stems from insufficient access control to support information, allowing a normal user to access information that is...
December 10, 2024—KB5048695 (Monthly Rollup)
None None...
The vulnerability of the application for obtaining Intel Support information for Android, related to the improper use of standard permissions, allows a perpetrator to gain unauthorized access to information.
The vulnerability of the application for obtaining Intel Support information for Android relates to the improper use of standard permissions. Exploiting this vulnerability could allow a perpetrator to gain unauthorized access to information...
SUSE-SU-2023:2126-1 Security update for cfengine, cfengine-masterfiles
This update for cfengine, cfengine-masterfiles fixes the following issues: Changes in cfengine: - cfengine3.target: removed, replaced by upstream cfengine3.service - In version 3.15.0, cfengine core split off libutils and libcompat directories as libntech. We include both together as we do not us...
Release information for Veeam Service Provider Console v4
Requirements Please confirm that you are running version 3 build 3.0.0.2647 or later prior to upgrading. You can check this under Configuration | Support Information in the Veeam Service Provider Console UI. After upgrading, your build number will be 4.0.0.4877. To upgrade from earlier versions,...
Multiple Vulnerabilities in Cisco Identity Services Engine
Cisco Identity Services Engine ISE contains the following vulnerabilities: Cisco ISE Authenticated Arbitrary Command Execution Vulnerability Cisco ISE Support Information Download Authentication Bypass Vulnerability These vulnerabilities are independent of each other; a release that is affected b...
Zendesk security breach, "We've been hacked"
Customer service software provider Zendesk announced a security breach, that affected three major Zendesk clients i.e Tumblr, Pinterest and Twitter and allowed hackers into their systems. The hacks come just days after Apple ,Twitter and Facebook revealed that their employees computers fell victi...