Lucene search
K

58 matches found

Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.15 views

PT-2025-38294

Name of the Vulnerable Software and Affected Versions D-Link DIR-823X versions 240126, 240802, and 250416 Description A weakness exists in the Environment Variable Handler component of the D-Link DIR-823X router. Manipulation of the terminal addr, server ip, or server port argument within the sub...

6.5CVSS6.4AI score0.07359EPSS
Exploits1References11
NVD
NVD
added 2025/08/20 12:15 a.m.6 views

CVE-2025-9176

A security flaw has been discovered in neurobin shc up to 4.0.3. Impacted is the function make of the file src/shc.c of the component Environment Variable Handler. The manipulation results in os command injection. The attack is only possible with local access. The exploit has been released to the...

7.8CVSS0.01336EPSS
Exploits0References4
OSV
OSV
added 2025/08/20 12:15 a.m.4 views

CVE-2025-9176

A security flaw has been discovered in neurobin shc up to 4.0.3. Impacted is the function make of the file src/shc.c of the component Environment Variable Handler. The manipulation results in os command injection. The attack is only possible with local access. The exploit has been released to the...

7.8CVSS6.5AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/08/19 11:32 p.m.4 views

CVE-2025-9176 neurobin shc Environment Variable shc.c make os command injection

A security flaw has been discovered in neurobin shc up to 4.0.3. Impacted is the function make of the file src/shc.c of the component Environment Variable Handler. The manipulation results in os command injection. The attack is only possible with local access. The exploit has been released to the...

5.3CVSS7.5AI score0.01336EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/08/19 11:32 p.m.11 views

CVE-2025-9176 neurobin shc Environment Variable shc.c make os command injection

A security flaw has been discovered in neurobin shc up to 4.0.3. Impacted is the function make of the file src/shc.c of the component Environment Variable Handler. The manipulation results in os command injection. The attack is only possible with local access. The exploit has been released to the...

5.3CVSS0.01336EPSS
Exploits0References4
OSV
OSV
added 2025/07/19 5:15 p.m.5 views

CVE-2025-7836

A vulnerability has been found in D-Link DIR-816L up to 2.06B01 and classified as critical. Affected by this vulnerability is the function lxmldbcsystem of the file /htdocs/cgibin of the component Environment Variable Handler. The manipulation leads to command injection. The attack can be launche...

8.8CVSS5.5AI score0.05754EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2025/02/12 12:0 a.m.6 views

The vulnerability of the NVRAM Variable Handler in operating systems like MacOS allows a intruder to gain unauthorized access to protected information.

The vulnerability of the NVRAM Variable Handler component in MacOS systems is related to access control deficiencies. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

3.3CVSS7.2AI score0.00185EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/02/12 12:0 a.m.6 views

The vulnerability of the NVRAM Variable Handler in macOS operating systems allows a hacker to read and write arbitrary files.

The vulnerability of the NVRAM Variable Handler component in MacOS systems is related to deficiencies in the authentication mechanism. Exploiting this vulnerability allows an attacker to read and write arbitrary files...

5.3CVSS7.3AI score0.002EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2024/12/11 12:0 a.m.5 views

PT-2025-3047 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.2 macOS versions prior to 14.7.2 macOS versions prior to 15.2 Description: The issue is related to insufficient authorization mechanisms in the NVRAM Variable Handler component of MacOS operating systems. This can...

8.2CVSS6.6AI score0.002EPSS
Exploits0References7
OSV
OSV
added 2023/11/06 8:15 a.m.23 views

CVE-2021-4430

A vulnerability classified as problematic has been found in Ortus Solutions ColdBox Elixir 3.1.6. This affects an unknown part of the file src/defaultConfig.js of the component ENV Variable Handler. The manipulation leads to information disclosure. Upgrading to version 3.1.7 is able to address th...

7.5CVSS6.8AI score
Exploits0References4
Prion
Prion
added 2023/11/06 8:15 a.m.17 views

Design/Logic Flaw

A vulnerability classified as problematic has been found in Ortus Solutions ColdBox Elixir 3.1.6. This affects an unknown part of the file src/defaultConfig.js of the component ENV Variable Handler. The manipulation leads to information disclosure. Upgrading to version 3.1.7 is able to address th...

5CVSS6.8AI score0.00598EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/11/06 7:31 a.m.26 views

CVE-2021-4430 Ortus Solutions ColdBox Elixir ENV Variable defaultConfig.js information disclosure

A vulnerability classified as problematic has been found in Ortus Solutions ColdBox Elixir 3.1.6. This affects an unknown part of the file src/defaultConfig.js of the component ENV Variable Handler. The manipulation leads to information disclosure. Upgrading to version 3.1.7 is able to address th...

3.5CVSS7.6AI score0.00598EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/11/06 12:0 a.m.4 views

PT-2023-12543

Name of the Vulnerable Software and Affected Versions Ortus Solutions ColdBox Elixir version 3.1.6 Description A problematic vulnerability has been found in Ortus Solutions ColdBox Elixir, affecting the ENV Variable Handler component, specifically the file src/defaultConfig.js. This issue leads t...

7.5CVSS5.8AI score0.00598EPSS
Exploits0References8
OSV
OSV
added 2023/03/06 8:15 a.m.2 views

CVE-2023-1187

A vulnerability was found in FabulaTech Webcam for Remote Desktop 2.8.42 and classified as problematic. This issue affects some unknown processing in the library ftwebcam.sys of the component Global Variable Handler. The manipulation leads to denial of service. It is possible to launch the attack...

5.5CVSS4.7AI score0.00366EPSS
Exploits1References3
NVD
NVD
added 2023/03/06 8:15 a.m.10 views

CVE-2023-1187

A vulnerability was found in FabulaTech Webcam for Remote Desktop 2.8.42 and classified as problematic. This issue affects some unknown processing in the library ftwebcam.sys of the component Global Variable Handler. The manipulation leads to denial of service. It is possible to launch the attack...

5.5CVSS4.5AI score0.00366EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/03/06 7:9 a.m.17 views

CVE-2023-1187 FabulaTech Webcam for Remote Desktop Global Variable ftwebcam.sys denial of service

A vulnerability was found in FabulaTech Webcam for Remote Desktop 2.8.42 and classified as problematic. This issue affects some unknown processing in the library ftwebcam.sys of the component Global Variable Handler. The manipulation leads to denial of service. It is possible to launch the attack...

3.3CVSS5.8AI score0.00366EPSS
Exploits1References3
CVE
CVE
added 2023/03/06 7:9 a.m.54 views

CVE-2023-1187

FabulaTech Webcam for Remote Desktop (version 2.8.42) is affected by a vulnerability in the library ftwebcam.sys within the Global Variable Handler, causing a denial of service when exploited locally. The issue has public exploit visibility. Mitigation guidance from PT-2023-16808 and related sour...

5.5CVSS4.7AI score0.00366EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/03/06 12:0 a.m.4 views

PT-2023-16808 · Fabulatech · Fabulatech Webcam For Remote Desktop

Name of the Vulnerable Software and Affected Versions: FabulaTech Webcam for Remote Desktop version 2.8.42 Description: A vulnerability was found in the library ftwebcam.sys of the component Global Variable Handler, which affects some unknown processing and leads to denial of service. The...

5.5CVSS7.1AI score0.00366EPSS
Exploits1References6
Rows per page
Query Builder