Alteryx Server 安全漏洞

Alteryx Server is a cloud-hosted or self-hosted application from Alteryx, Inc. for publishing, sharing and executing workflows. A security vulnerability exists in Alteryx Server versions 2022.1.1.42654 and 2024.1, which stems from a failure to check user permissions and could lead to unauthorized...

EUVD-2025-5287

Malicious code in bioql PyPI...

CVE-2025-1726 [#BUG-000172669 ArcGIS Monitor has a security vulnerability]

There is a SQL injection issue in Esri ArcGIS Monitor versions 2023.0 through 2024.x on Windows and Linux that allows a remote, authenticated attacker with low privileges to improperly read limited database schema information by passing crafted queries. While it is possible to enumerate some...

PT-2024-17128 · Ivanti · Ivanti Application Control

Name of the Vulnerable Software and Affected Versions: Ivanti Application Control versions prior to 2024.3 HF1 Ivanti Application Control versions prior to 2024.1 HF2 Ivanti Application Control versions prior to 2023.3 HF3 Description: Under specific circumstances, insecure permissions in Ivanti...

Perforce Helix Core 安全漏洞

Perforce Helix Core is a scalable and secure version control system from Perforce. A security vulnerability exists in Perforce Helix Core prior to version 2024.1 Patch 2, which stems from the best fit parameter containing a parameter injection vulnerability...

Intel® GPA Software Advisory

Summary: A potential security vulnerability in some Intel® Graphics Performance Analyzers Intel® GPA software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-28046 Description: Uncontrolled...

Intel® oneAPI Math Kernel Library Software Advisory

Summary: A potential security vulnerability in some Intel® oneAPI Math Kernel Library software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-21766 Description: Uncontrolled search path for so...

Intel® Advisor Software Advisory

Summary: A potential security vulnerability in some Intel® Advisor software may allow escalation of privilege. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-26025 Description: Incorrect default permissions for some Intel®...

Mullvad VPN 安全漏洞

Mullvad is a commercial VPN service from Mullvad Inc. A security vulnerability exists in Mullvad VPN version 2024.1 and prior versions, which stems from a security flaw that can set DNS servers to a blocking state, resulting in a security vulnerability...

relate 安全漏洞

RELATE is a web-based courseware package from the individual developer Andreas Klöckner. A security vulnerability exists in relate version v.2024.1, which stems from the presence of a server-side template injection SSTI vulnerability...

PT-2024-24552 · Inducer · Inducer

Name of the Vulnerable Software and Affected Versions: inducer versions prior to 2024.1 Description: The issue allows a remote attacker to execute arbitrary code via a crafted payload to the Page Sandbox feature. Recommendations: For versions prior to 2024.1, update to version 2024.1 or later to...

PT-2024-7954 · Solarwinds · Solarwinds Platform

Name of the Vulnerable Software and Affected Versions: SolarWinds Platform versions prior to 2024.1 Description: The issue is related to a reflected cross-site scripting vulnerability in the web console of the SolarWinds Platform. This vulnerability requires a high-privileged user and user...

Foxit PDF Reader < 2024.1 Multiple Vulnerabilities

According to its version, the Foxit PDF Reader application previously named Foxit Reader installed on the remote Windows host is prior to 2024.1. It is, therefore affected by multiple vulnerabilities: - In Foxit PDF Reader before 2024.1 and PDF Editor before 2024.1, code execution via JavaScript...