Lucene search
K

6 matches found

Prion
Prion
added 2020/04/29 4:15 p.m.12 views

Design/Logic Flaw

AxECM.cabActiveX Control in Inogard Ebiz4u contains a vulnerability that could allow remote files to be downloaded and executed by setting arguments to the activeX method. Download of Code Without Integrity Check vulnerability in ActiveX control of Inogard Co,,LTD Ebiz4u ActiveX of Inogard...

6.5CVSS7AI score0.00646EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2020/04/01 11:15 p.m.15 views

CVE-2020-8145

The UniFi Video Server Windows web interface configuration restore functionality at the “backup” and “wizard” endpoints does not implement sufficient privilege checks. Low privileged users, belonging to the PUBLICGROUP or CUSTOMGROUP groups, can access these endpoints and overwrite the current...

6.5CVSS6.5AI score0.01121EPSS
Exploits0References1
OSV
OSV
added 2020/04/01 11:15 p.m.21 views

CVE-2020-8146

In UniFi Video v3.10.1 for Windows 7/8/10 x64 there is a Local Privileges Escalation to SYSTEM from arbitrary file deletion and DLL hijack vulnerabilities. The issue was fixed by adjusting the .tsExport folder when the controller is running on Windows and adjusting the SafeDllSearchMode in the...

7.8CVSS7AI score
Exploits0References1
Cvelist
Cvelist
added 2020/04/01 10:20 p.m.17 views

CVE-2020-8145

The UniFi Video Server Windows web interface configuration restore functionality at the “backup” and “wizard” endpoints does not implement sufficient privilege checks. Low privileged users, belonging to the PUBLICGROUP or CUSTOMGROUP groups, can access these endpoints and overwrite the current...

7.1AI score0.01121EPSS
Exploits0References1
Hacker One
Hacker One
added 2019/04/08 5:1 a.m.28 views

Ubiquiti Inc.: UniFi Video v3.10.1 (Windows) Local Privileges Escalation to SYSTEM from arbitrary filedelete and DLL hijack vulnerabilities.

Summary: UniFi Video v3.10.1 for Windows 7/8/10 x64 Local Privileges Escalation to SYSTEM from arbitrary file deletion and DLL hijack vulnerabilities. The issue was fixed by adjusting the .tsExport folder when the controller is running on Windows and adjusting the SafeDllSearchMode in the windows...

6.9CVSS2AI score0.00502EPSS
Exploits0
Packet Storm
Packet Storm
added 2018/07/09 12:0 a.m.33 views

Grundig Smart Inter@ctive 3.0 Insecure Direct Object Reference

Exploit Title: Grundig Smart Remote App CSRF Google Dork: Local Vulnerability Date: 06.07.2018 Exploit Author: Ahmethan GALTEKAdegN @inject0r16 Vendor Homepage: https://www.grundig.com/ Software Link: https://play.google.com/store/apps/details?id=arcelik. android.grundig.remote Version: Grundig...

7.4AI score
Exploits0
Rows per page
Query Builder