Lucene search
K

9 matches found

Positive Technologies
Positive Technologies
added 2025/12/10 12:0 a.m.6 views

PT-2025-50347

Name of the Vulnerable Software and Affected Versions MailEnable versions prior to 10.54 Description MailEnable versions prior to 10.54 have an unsafe DLL loading issue that could allow a local attacker to execute arbitrary code. The MailEnable administrative executable loads MEAIAU.DLL from the...

8.5CVSS6.9AI score0.00144EPSS
Exploits0References6
NVD
NVD
added 2024/07/11 9:15 a.m.33 views

CVE-2024-2602

CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could result in remote code execution when an authenticated user executes a saved project file that has been tampered by a malicious actor...

7.8CVSS0.00281EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/11 8:46 a.m.31 views

CVE-2024-2602

CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could result in remote code execution when an authenticated user executes a saved project file that has been tampered by a malicious actor...

7.3CVSS0.00281EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/11 8:46 a.m.19 views

CVE-2024-2602

CWE-22: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability exists that could result in remote code execution when an authenticated user executes a saved project file that has been tampered by a malicious actor...

7.3CVSS7.7AI score0.00281EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/13 7:3 p.m.14 views

CVE-2023-30562 Lack of Dataset Integrity Checking

A GRE dataset file within Systems Manager can be tampered with and distributed to PCUs...

6.7CVSS7.1AI score0.00164EPSS
Exploits0References1
OSV
OSV
added 2021/04/01 2:15 p.m.3 views

CVE-2021-28546

Acrobat Reader DC versions versions 2020.013.20074 and earlier, 2020.001.30018 and earlier and 2017.011.30188 and earlier are missing support for an integrity check. An unauthenticated attacker could leverage this vulnerability to modify content in a certified PDF without invalidating the...

6.5CVSS7.2AI score0.01421EPSS
Exploits0References1
Prion
Prion
added 2017/12/12 2:29 p.m.18 views

Design/Logic Flaw

SAP Note Assistant tool SAP BASIS from 7.00 to 7.02, from 7.10 to 7.11, 7.30, 7.31,7.40, from 7.50 to 7.52 supports upload of digitally signed note file of type 'SAR'. The digital signature verification is done together with the extraction of note file contained in the SAR archive. It is possible...

5.8CVSS6.4AI score0.01254EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2017/12/12 2:29 p.m.4 views

CVE-2017-16691

SAP Note Assistant tool SAP BASIS from 7.00 to 7.02, from 7.10 to 7.11, 7.30, 7.31,7.40, from 7.50 to 7.52 supports upload of digitally signed note file of type 'SAR'. The digital signature verification is done together with the extraction of note file contained in the SAR archive. It is possible...

6.5CVSS5.8AI score0.01254EPSS
Exploits0References3
CVE
CVE
added 2017/12/12 2:0 p.m.49 views

CVE-2017-16691

Summary (CVE-2017-16691) : A vulnerability in SAP Note Assistant (part of SAP BASIS releases 7.00–7.02, 7.10–7.11, 7.30, 7.31, 7.40, 7.50–7.52) arises from insecure signature validation of SAP Notes archives. During SAR handling, signature verification is coupled with extraction via SAPCAR, which...

6.5CVSS6.4AI score0.01254EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder