Lucene search
K

9 matches found

NVD
NVD
added 2025/11/12 8:15 p.m.10 views

CVE-2024-48829

Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Control of Generation of Code 'Code Injection' vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution...

6.7CVSS0.0017EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/12 12:0 a.m.7 views

PT-2025-46710

Name of the Vulnerable Software and Affected Versions Dell SmartFabric OS10 Software versions prior to 10.6.1.0 Description Dell SmartFabric OS10 Software versions prior to 10.6.1.0 contain an Improper Neutralization of Special Elements used in a Command 'Command Injection' issue. A low privilege...

8.8CVSS6.8AI score0.01187EPSS
Exploits0References4
OSV
OSV
added 2025/05/15 10:43 a.m.4 views

CVE-2025-3446 Members Without Guest Invite Permissions Can Add Guests to Teams

Mattermost versions 10.6.x = 10.6.1, 10.5.x = 10.5.2, 10.4.x = 10.4.4, 9.11.x = 9.11.11 fail to check the correct permissions which allows authenticated users who only have permission to invite non-guest users to a team to add guest users to that team via the API to add a single user to a team...

4.3CVSS7.2AI score0.00198EPSS
Exploits0References3
NCSC
NCSC
added 2021/07/12 12:0 a.m.7 views

Vulnerabilities fixed in Esri ArcGIS Server

Esri has fixed vulnerabilities in ArcGIS Server. A malicious party could exploit the vulnerabilities to perform of a Same-Site Request Forgery SSRF or Cross-Site Scripting XSS attack. The latter can lead to the execution of arbitrary script code in the browser used to visit the application visite...

7.3AI score
Exploits0
CNVD
CNVD
added 2019/10/10 12:0 a.m.4 views

McAfee Endpoint Security Code Injection Vulnerability

McAfee Endpoint Security ENS is the United States McAfee McAfee company's set of framework for providing intelligent collaboration and advanced threat defense. The framework supports the entire threat defense lifecycle of real-time communications control and actionable threat forensics and so on....

5.3CVSS7.6AI score0.00325EPSS
Exploits0References1
CNVD
CNVD
added 2019/03/01 12:0 a.m.2 views

McAfee Endpoint Security (ENS) Microsoft Windows Client Elevation of Privilege Vulnerability

McAfee Endpoint Security is McAfee's latest antivirus product that provides comprehensive protection against network security threats. An elevation of privilege vulnerability exists in the Microsoft Windows client for McAfee Endpoint Security ENS 10.6.1 and earlier. A local user can exploit the...

8.6CVSS7AI score0.00382EPSS
Exploits0References1
OSV
OSV
added 2019/02/28 3:29 p.m.5 views

CVE-2019-3582

Privilege Escalation vulnerability in Microsoft Windows client in McAfee Endpoint Security ENS 10.6.1 and earlier allows local users to gain elevated privileges via a specific set of circumstances...

7.8CVSS7.2AI score0.00382EPSS
Exploits0References1
OSV
OSV
added 2018/09/26 10:29 p.m.5 views

CVE-2018-17411

An XML External Entity XXE vulnerability exists in iWay Data Quality Suite Web Console 10.6.1.ga-2016-11-20...

9.8CVSS5.8AI score0.01864EPSS
Exploits1References1
CNVD
CNVD
added 2015/05/20 12:0 a.m.4 views

Cisco Unified Intelligence Center Cross-Site Request Forgery Vulnerability

Cisco Unified Intelligence Center is the United States Cisco Cisco company's set of Web-based reporting platform. The platform provides a comprehensive display of report-related business data and call center data and other functions. A cross-site request forgery vulnerability exists in Cisco...

6.8CVSS6.9AI score0.01262EPSS
Exploits0References1
Rows per page
Query Builder