Lucene search
K

97 matches found

CNNVD
CNNVD
added 2023/09/03 12:0 a.m.5 views

StarTrinity Softswitch Cross-Site Request Forgery Vulnerability

StarTrinity Softswitch is a highly reliable softswitch from StarTrinity. A cross-site request forgery vulnerability exists in StarTrinity Softswitch version 2023-02-16, which stems from the presence of multiple cross-site request forgery CSRF...

8.8CVSS6.9AI score0.00221EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/09/03 12:0 a.m.4 views

StarTrinity Softswitch Cross-Site Scripting Vulnerability

StarTrinity Softswitch is a highly reliable softswitch from StarTrinity. A cross-site scripting vulnerability exists in StarTrinity Softswitch version 2023-02-16, which can be exploited by an attacker to inject malicious scripts into web sites...

8.8CVSS6.1AI score0.00331EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/09/03 12:0 a.m.4 views

PT-2023-26899 · Startrinity · Startrinity Softswitch

Name of the Vulnerable Software and Affected Versions: StarTrinity Softswitch version 2023-02-16 Description: The issue is related to a Persistent XSS CWE-79 in StarTrinity Softswitch. Recommendations: For StarTrinity Softswitch version 2023-02-16, at the moment, there is no information about a...

8.8CVSS5.1AI score0.00331EPSS
Exploits0References5
Prion
Prion
added 2023/06/07 6:15 p.m.14 views

Code injection

mailcow is a mail server suite based on Dovecot, Postfix and other open source software, that provides a modern web UI for user/server administration. A vulnerability has been discovered in mailcow which allows an attacker to manipulate internal Dovecot variables by using specially crafted...

6.5CVSS8.4AI score0.00979EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/05/25 12:0 a.m.3 views

PrestaShop SQL注入漏洞

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution offers multiple payment methods, short message alerts, and product image scaling. A security vulnerability exists in PrestaShop version 2023-05-09 and earlier, which stems from a sensitive SQ...

9.8CVSS8.5AI score0.00602EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/05/23 12:0 a.m.29 views

Square Pig FusionInvoice 跨站脚本漏洞

Square Pig FusionInvoice is a self-service online invoicing application for freelancers and small businesses from Square Pig. A security vulnerability exists in Square Pig FusionInvoice version 2023-1.0 that stems from the presence of a stored cross-site scripting XSS vulnerability...

6.1CVSS5.9AI score0.02246EPSS
Exploits4References3
CNNVD
CNNVD
added 2023/05/12 12:0 a.m.3 views

Caton Live 命令注入漏洞

Caton Live is a game-changing video processor for live broadcasting from China's Caton Technology Caton. A command injection vulnerability exists in Caton Live version 2023-04-26 and prior versions that stems from certain parameters that can lead to a command injection attack, such as the id...

9.8CVSS7AI score0.01948EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/04/14 12:0 a.m.6 views

PT-2023-21413 · Autodesk · Autodesk Autocad

Name of the Vulnerable Software and Affected Versions: Autodesk AutoCAD version 2023 Description: A maliciously crafted X B file can cause an Integer Overflow when parsed through the software. This can be leveraged by a malicious actor to cause a crash, read sensitive data, or execute arbitrary...

7.8CVSS7.7AI score0.00236EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/04/10 12:0 a.m.4 views

Lexmark 缓冲区错误漏洞

Lexmark is a line of printers in the United States. A security vulnerability exists in Certain Lexmark devices version 2023-02-19 and prior versions, which stems from an out-of-bounds write to a Lexmark device...

9.8CVSS8.3AI score0.00708EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/04/10 12:0 a.m.7 views

Lexmark 输入验证错误漏洞

Lexmark is a line of printers in the United States. A security vulnerability exists in Certain Lexmark devices version 2023-02-19 and prior versions, which stems from incorrect validation of array indexes by Lexmark devices...

9.8CVSS8.3AI score0.00708EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/04/10 12:0 a.m.5 views

Lexmark 输入验证错误漏洞

Lexmark is a line of printers in the United States. A security vulnerability exists in Certain Lexmark devices version 2023-02-19 and prior versions, which stems from Lexmark devices incorrectly handling input validation...

9.8CVSS8.3AI score0.00708EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/12/19 12:0 a.m.3 views

Autodesk DWG TrueView 代码问题漏洞

Autodesk DWG TrueView is an application from the American company Autodesk. It is used to view and convert 2D and 3D DWG files for free. A security vulnerability exists in Autodesk DWG TrueView version 2023, which originates from a DLL search command hijacking that can be exploited by a malicious...

7.8CVSS8.2AI score0.00255EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/07/14 12:0 a.m.6 views

PT-2022-21883 · Autodesk · Autodesk Autocad

Name of the Vulnerable Software and Affected Versions: Autodesk AutoCAD version 2023 Description: The issue arises when parsing a maliciously crafted PRT file, which can cause Autodesk AutoCAD to read beyond allocated boundaries. This could potentially lead to code execution in the context of the...

7.8CVSS7.8AI score0.00373EPSS
Exploits0References5
CNNVD
CNNVD
added 2022/07/14 12:0 a.m.5 views

Autodesk AutoCAD 缓冲区错误漏洞

Autodesk AutoCAD is a suite of professional 3D drawing software from the US-based Autodesk Corporation. Autodesk AutoCAD suffers from a buffer error vulnerability that originates from a boundary condition when parsing a PRT file. A remote attacker can create a specially crafted file and trick a...

7.8CVSS8AI score0.00373EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2018/01/10 12:0 a.m.39 views

Microsoft .NET Framework DoS And Security Feature Bypass Vulnerability (KB4055000)

This host is missing a critical security update according to Microsoft Security Updates KB4055000. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

7.5CVSS6.8AI score0.08885EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/09/14 12:0 a.m.53 views

Microsoft Exchange Server Multiple Vulnerabilities (KB4036108)

This host is missing an important security update according to Microsoft KB4036108 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.1CVSS6.1AI score0.06559EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2010/08/04 12:0 a.m.16 views

Nuralstorm Webmail Detection

This host is running Nuralstorm Webmail. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.100742";...

7.3AI score
Exploits0References1
Rows per page
Query Builder