CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Article Applicability This article's primary focus is on traditional credentials-based authentication. For environments using a Group Managed Service Account gMSA, please review the User Guide first to ensure you are familiar with all the Requirements and Limitations of gMSA usage. Challenge Skip...

6AI score

Exploits0Affected Software2

Veeam•added 2019/01/25 12:0 a.m.•19 views

How to Collect Logs for Veeam Plug-in for SAP HANA

Purpose This article documents how to collect the diagnostic information needed for a support case involving the Veeam Plug-in for SAP HANA. Solution 1. Collect diagnostic information as documented in the four sections below. 2. Combine the data into a single .zip file. 3. Attach the zip file to...

6.9AI score

Exploits0Affected Software1

Veeam•added 2018/09/19 12:0 a.m.•11 views

Veeam Service Provider Console – Compile and Upload Management Agent Logs

Challenge This article covers how to Management Agent logs for both client agents and the Cloud Connect agent. Solution Export Management Agent Logs To export Veeam Service Provider Console Management Agent logs for one or more client agents, please: 1. Log into the Veeam Service Provider Console...

6.8AI score

Exploits0Affected Software1

CNVD•added 2018/03/28 12:0 a.m.•1 views

ViX Untrustworthy Search Path Vulnerability

ViX is a suite of graphical browser software for Windows. An untrusted search path vulnerability exists in ViX version 2.21.148.0. An attacker can exploit this vulnerability to gain privileges with the help of a malicious DLL in a directory...

7.8CVSS7.2AI score0.00206EPSS

Exploits0References1

Prion•added 2018/03/22 1:29 p.m.•11 views

Design/Logic Flaw

Untrusted search path vulnerability in ViX version 2.21.148.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

6.8CVSS7.6AI score0.00206EPSS

Exploits0References1Affected Software1

OSV•added 2018/03/22 1:29 p.m.•0 views

CVE-2018-0540

Untrusted search path vulnerability in ViX version 2.21.148.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.8CVSS5.8AI score

Exploits0References1

NVD•added 2018/03/22 1:29 p.m.•13 views

CVE-2018-0540

Untrusted search path vulnerability in ViX version 2.21.148.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.8CVSS7.7AI score0.00206EPSS

Exploits0References1

Cvelist•added 2018/03/22 1:0 p.m.•16 views

CVE-2018-0540

Untrusted search path vulnerability in ViX version 2.21.148.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.7AI score0.00206EPSS

Exploits0References1

CVE•added 2018/03/22 1:0 p.m.•43 views

CVE-2018-0540

CVE-2018-0540 affects ViX 2.21.148.0, with an untrusted search path vulnerability that can allow privilege escalation by a Trojan horse DLL located in an unspecified directory (CWE-427). Public sources (JPN/JVN records and CNVD) describe the issue as insecure DLL loading in ViX, potentially enabl...

7.8CVSS7.7AI score0.00206EPSS

Exploits0References1Affected Software1

Japan Vulnerability Notes•added 2018/03/13 12:0 a.m.•57 views

JVN#56764650: ViX may insecurely load Dynamic Link Libraries

ViX provided by Ｋ＿ＯＫＡＤＡ is a Graphics Viewer Software for Windows. ViX contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries contained in the same directory as an image file CWE-427. Impact Arbitrary code may be executed with the privileges of the...

7.8CVSS7.7AI score0.00206EPSS

Exploits0

Veeam•added 2017/11/01 12:0 a.m.•13 views

Backup jobs fail intermittently with Error observed by underlying BIO:

Challenge Intermittent network failures when communicating to the VMware host. The errors can vary but all have some variation of: "Error observed by underlying BIO: No such file or directoryDetail: 'SSL connect failed in tcpconnect', endpoint:" Guest processing credentials test will also fail ov...

6.9AI score

Exploits0

VMware•added 2017/08/08 12:0 a.m.•567 views

VMSA-2017-0012:VMware VIX API VM Direct Access Function security issue

VMSA-2017-0012 VMware VIX API VM Direct Access Function security issue VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2017-0012 VMware Security Advisory Severity: Important VMware Security Advisory Synopsis: VMware VIX API VM Direct Access Function security issue VMware...

9CVSS9.3AI score0.00915EPSS

Exploits0References5Affected Software1

NVD•added 2017/07/28 10:29 p.m.•13 views

CVE-2017-4919

VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with certain, limited vSphere privileges to use the VIX API to access Guest Operating Systems without the need to authenticate...

9CVSS9.1AI score0.00915EPSS

Exploits0References3

Prion•added 2017/07/28 10:29 p.m.•17 views

Design/Logic Flaw

VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with certain, limited vSphere privileges to use the VIX API to access Guest Operating Systems without the need to authenticate...

6.8CVSS9AI score0.00915EPSS

Exploits0References3Affected Software1

Cvelist•added 2017/07/28 10:0 p.m.•17 views

CVE-2017-4919

VMware vCenter Server 5.5, 6.0, 6.5 allows vSphere users with certain, limited vSphere privileges to use the VIX API to access Guest Operating Systems without the need to authenticate...

9.1AI score0.00915EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by