Lucene search
K

129 matches found

OSV
OSV
added 2026/01/13 5:15 p.m.4 views

CVE-2025-46684

Dell SupportAssist OS Recovery, versions prior to 5.5.15.1, contain a Creation of Temporary File With Insecure Permissions vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information Tampering...

5.5CVSS5.8AI score0.00095EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.5 views

PT-2026-2465

Name of the Vulnerable Software and Affected Versions Dell SupportAssist OS Recovery versions prior to 5.5.15.1 Description Dell SupportAssist OS Recovery contains a flaw related to the creation of temporary files with insecure permissions. A local attacker with low privileges could potentially...

6.6CVSS6.2AI score0.00095EPSS
Exploits0References3
CNVD
CNVD
added 2025/10/31 12:0 a.m.3 views

DELL SupportAssist OS Recovery Information Disclosure Vulnerability

DELL SupportAssist OS Recovery is a standalone recovery tool pre-installed by Dell on some Windows 10/11 computers to diagnose hardware problems, repair the system, backup files or restore factory settings. DELL SupportAssist OS Recovery suffers from an information disclosure vulnerability that...

5.5CVSS6.2AI score0.00099EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/27 9:30 p.m.4 views

EUVD-2025-36329

Dell SupportAssist OS Recovery, versions prior to 5.5.15.0, contain an Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure...

4.4CVSS5.8AI score0.00099EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/27 6:41 p.m.3 views

CVE-2025-46602

Dell SupportAssist OS Recovery, versions prior to 5.5.15.0, contain an Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure...

4.4CVSS6AI score0.00099EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/27 12:0 a.m.3 views

PT-2025-44014

Name of the Vulnerable Software and Affected Versions Dell SupportAssist OS Recovery versions prior to 5.5.15.0 Description Dell SupportAssist OS Recovery, versions prior to 5.5.15.0, contain an issue where sensitive information can be inserted into externally accessible files or directories. A...

5.5CVSS6AI score0.00099EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-23738

Malware in sbrugna...

9.3CVSS8.6AI score0.00431EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-0341

Malware in sbrugna...

4.4CVSS6.4AI score0.00427EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-16468

Malware in sbrugna...

9.3CVSS7.7AI score0.01059EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-44528

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00541EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2025-14120

Malicious code in bioql PyPI...

7.2AI score0.00217EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-21087

Malicious code in bioql PyPI...

6.7CVSS8.7AI score0.00331EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-31328

Malicious code in bioql PyPI...

6.5CVSS6.7AI score0.00423EPSS
Exploits0References1
CVE
CVE
added 2025/09/09 8:48 a.m.13 views

CVE-2025-40802

The CVE-2025-40802 issue affects Siemens RUGGEDCOM RST2428P (6GK6242-6PA00) across all versions. Affected component/behavior: resource exhaustion caused by high volumes of query requests, resulting in a temporary denial of service with recovery after activity stops. Public technical details in pr...

4.3CVSS6.3AI score0.00164EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 8:43 a.m.7 views

CVE-2024-35204

Veritas System Recovery before 23.3Hotfix has incorrect permissions for the Veritas System Recovery folder, and thus low-privileged users can conduct attacks...

8.4CVSS7AI score0.00245EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:13 a.m.13 views

CVE-2022-26778

Veritas System Recovery VSR 18 and 21 stores a network destination password in the Windows registry during configuration of the backup configuration. This could allow a Windows user who has sufficient privileges to access a network file system that they were not authorized to access...

6.5CVSS7.1AI score0.00423EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:46 p.m.15 views

CVE-2022-41320

Veritas System Recovery VSR versions 18 and 21 store a network destination password in the Windows registry during configuration of the backup configuration. This vulnerability could provide a Windows user who has sufficient privileges to access a network file system that they were not authorized...

6.5CVSS7AI score0.00541EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/13 12:0 a.m.4 views

PT-2025-6949

Name of the Vulnerable Software and Affected Versions: Dell SupportAssist OS Recovery versions prior to 5.5.13.1 Description: The issue concerns a symbolic link attack vulnerability. A low-privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary fil...

7.8CVSS6.2AI score0.00167EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/02/05 3:7 p.m.7 views

CVE-2020-36160

An issue was discovered in Veritas System Recovery before 21.2. On start-up, it loads the OpenSSL library from \usr\local\ssl. This library attempts to load the from \usr\local\ssl\openssl.cnf configuration file, which does not exist. By default, on Windows systems, users can create directories...

9.3CVSS7.5AI score0.00431EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/06/05 12:0 a.m.8 views

The vulnerability of Veritas System Recovery’s backup and recovery software, related to errors in permission handling, allows attackers to escalate their privileges.

The vulnerability of Veritas System Recovery’s backup and recovery software lies in its error handling of permissions. Exploiting this vulnerability can allow an attacker to enhance their privileges by creating a specially crafted file at any location within the file system...

8.4CVSS5.4AI score0.00245EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder