Lucene search
K

29 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:34 a.m.10 views

CVE-2024-41922

A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS6.7AI score0.07963EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:33 a.m.9 views

CVE-2024-39755

A privilege escalation vulnerability exists in the node update functionality of Veertu Anka Build 1.42.0. A specially crafted PKG file can lead to execute priviledged operation. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.8CVSS7.5AI score0.00365EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-38229

Malicious code in bioql PyPI...

7.8CVSS6.5AI score0.00365EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:52 a.m.13 views

CVE-2024-41163

A directory traversal vulnerability exists in the archive functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS6.8AI score0.47107EPSS
Exploits1
Talos Blog
Talos Blog
added 2024/10/09 4:0 p.m.27 views

Vulnerability in popular PDF reader could lead to arbitrary code execution; Multiple issues in GNOME project

Cisco Talos' Vulnerability Research team recently disclosed six new security vulnerabilities across a range of software, including one in a popular PDF reader that could lead to arbitrary code execution. Foxit PDF Reader, one of the most popular alternatives to Adobe Acrobat, contains a memory...

8.8CVSS8.5AI score0.47107EPSS
Exploits4
OSV
OSV
added 2024/10/03 4:15 p.m.4 views

CVE-2024-41922

A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS5.8AI score0.07963EPSS
Exploits1References2
NVD
NVD
added 2024/10/03 4:15 p.m.24 views

CVE-2024-41163

A directory traversal vulnerability exists in the archive functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS0.47107EPSS
Exploits1References2
NVD
NVD
added 2024/10/03 4:15 p.m.18 views

CVE-2024-41922

A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS0.07963EPSS
Exploits1References2
NVD
NVD
added 2024/10/03 4:15 p.m.13 views

CVE-2024-39755

A privilege escalation vulnerability exists in the node update functionality of Veertu Anka Build 1.42.0. A specially crafted PKG file can lead to execute priviledged operation. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.8CVSS0.00365EPSS
Exploits1References2
OSV
OSV
added 2024/10/03 4:15 p.m.3 views

CVE-2024-41163

A directory traversal vulnerability exists in the archive functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS5.8AI score0.47107EPSS
Exploits1References2
OSV
OSV
added 2024/10/03 4:15 p.m.7 views

CVE-2024-39755

A privilege escalation vulnerability exists in the node update functionality of Veertu Anka Build 1.42.0. A specially crafted PKG file can lead to execute priviledged operation. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.8CVSS5.9AI score0.00365EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/10/03 3:16 p.m.18 views

CVE-2024-41163

A directory traversal vulnerability exists in the archive functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS7.6AI score0.47107EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/03 3:16 p.m.28 views

CVE-2024-41163

A directory traversal vulnerability exists in the archive functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS0.47107EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/03 3:16 p.m.19 views

CVE-2024-39755

A privilege escalation vulnerability exists in the node update functionality of Veertu Anka Build 1.42.0. A specially crafted PKG file can lead to execute priviledged operation. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.8CVSS0.00365EPSS
Exploits1References1
CVE
CVE
added 2024/10/03 3:16 p.m.57 views

CVE-2024-39755

Veertu Anka Build 1.42.0 is affected by a privilege-escalation in the node update flow. Cisco Talos details a TOCTOU-style vulnerability: a low-privilege user can place a malicious PKG named ank aAgent.pkg in /tmp, which gets overwritten when a Node join/update triggers the download and installat...

7.8CVSS8.2AI score0.00365EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/03 3:16 p.m.12 views

CVE-2024-39755

A privilege escalation vulnerability exists in the node update functionality of Veertu Anka Build 1.42.0. A specially crafted PKG file can lead to execute priviledged operation. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.8CVSS8.2AI score0.00365EPSS
Exploits1References1
CVE
CVE
added 2024/10/03 3:16 p.m.48 views

CVE-2024-41163

CVE-2024-41163 affects Veertu Anka Build 1.42.0. A directory traversal flaw resides in the archive functionality, exploitable via unauthenticated HTTP requests to the registry endpoints (for example, /api/v1/registry/log/archive or /log/archive), allowing disclosure of sensitive files. CVSSv3.1 b...

7.5CVSS7.6AI score0.47107EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2024/10/03 3:16 p.m.5 views

EUVD-2024-39275

A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS6.2AI score0.07963EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/10/03 3:16 p.m.15 views

CVE-2024-41922

A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS7.6AI score0.07963EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/10/03 3:16 p.m.28 views

CVE-2024-41922

A directory traversal vulnerability exists in the log files download functionality of Veertu Anka Build 1.42.0. A specially crafted HTTP request can lead to a disclosure of sensitive information. An attacker can make an unauthenticated HTTP request to trigger this vulnerability...

7.5CVSS0.07963EPSS
Exploits1References1
Rows per page
Query Builder