Lucene search
K

45 matches found

EUVD
EUVD
added 2026/06/23 7:53 p.m.7 views

EUVD-2026-38604

Module: plugins/modules/keyringinfo.py CVSS 3.1: 5.5 MEDIUM — AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Issue: The module retrieves a passphrase from the OS native keyring GNOME Keyring, macOS Keychain, Windows Credential Manager and places it directly into result"passphrase" with no output suppression...

5.5CVSS6.1AI score0.00128EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/09 8:59 p.m.11 views

CVE-2026-39908

OpenBullet2 through version 0.3.2 on Windows contains a credential disclosure vulnerability that allows remote attackers to capture the NTLMv2 hash of the process user by configuring a job proxy source with a UNC path pointing to an attacker-controlled server. When the job starts, the application...

7.1CVSS5.5AI score0.00314EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2026/05/12 2:0 p.m.13 views

Update 26.12 for Microsoft Dynamics 365 Business Central 2025 Release Wave 1 (Application Build 26.12.48244, Platform Build 26.0.48120)

None None...

7.8CVSS5.8AI score0.00272EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-12261

Malware in sbrugna...

7.8CVSS8.5AI score0.00708EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-1589

Malware in sbrugna...

7.8CVSS6.5AI score0.02058EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-25893

Malicious code in bioql PyPI...

7.8CVSS8AI score0.00481EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.21 views

EUVD-2022-35378

Malicious code in bioql PyPI...

7.3CVSS7.6AI score0.0147EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-27185

Malicious code in bioql PyPI...

7.8CVSS7.9AI score0.00645EPSS
Exploits0References1
OSV
OSV
added 2025/07/08 5:15 p.m.5 views

CVE-2025-47987

Heap-based buffer overflow in Windows Cred SSProvider Protocol allows an authorized attacker to elevate privileges locally...

7.8CVSS6AI score0.01677EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:30 p.m.8 views

CVE-2021-21448

SAP GUI for Windows, version - 7.60, allows an attacker to spoof logon credentials for Application Server ABAP backend systems in the client PCs memory. Under certain conditions the attacker can access information which would otherwise be restricted. The exploit can only be executed locally on th...

6.5CVSS6.6AI score0.00287EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:12 p.m.7 views

CVE-2020-1385

An elevation of privilege vulnerability exists in the way that the Windows Credential Picker handles objects in memory, aka 'Windows Credential Picker Elevation of Privilege Vulnerability'...

7.8CVSS7AI score0.00708EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 8:2 a.m.9 views

CVE-2019-0838

An information disclosure vulnerability exists when Windows Task Scheduler improperly discloses credentials to Windows Credential Manager, aka 'Windows Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0839...

7.8CVSS6.2AI score0.022EPSS
Exploits0References1
Citrix
Citrix
added 2025/04/09 12:0 a.m.13 views

uberAgent is unable to read encrypted credentials stored in Windows Credential Store

Customer is attempting to store encrypted credentials in the Windows Credentials Store as described in the uberAgent documentation https://docs.citrix.com/en-us/uberagent/7-3-1/uxm-features-configuration/username-and-configuration-setting-encryption-2.html, but uberAgent is unable to read the...

6.9AI score
Exploits0
CVE
CVE
added 2024/06/05 11:23 p.m.62 views

CVE-2024-0912

CVE-2024-0912 affects Johnson Controls Software House C•CURE 9000 running on IIS. In certain conditions, the IIS web host can log Windows credentials within the application logs, exposing sensitive information. Affected product/version: Software House C•CURE 9000 v3.00.2 (hosted on IIS). Technica...

8.5CVSS4.4AI score0.00164EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/05/05 9:30 p.m.5 views

GHSA-RVFH-H6C7-FC3C Gradio allows credential leakage on Windows

Gradio before 4.20 allows credential leakage on Windows...

7.5CVSS7.1AI score0.00567EPSS
Exploits0References4
Prion
Prion
added 2023/06/09 7:15 p.m.22 views

Code injection

Bitwarden Windows desktop application versions prior to v2023.4.0 store biometric keys in Windows Credential Manager, accessible to other local unprivileged processes...

3.2CVSS6.7AI score0.00585EPSS
Exploits1References4Affected Software1
Hacker One
Hacker One
added 2023/02/14 5:34 p.m.63 views

Bitwarden: Biometric key is stored in Windows Credential Manager, accessible to other local unprivileged processes

A vulnerability in Bitwarden Desktop for Windows allowed a local attacker to access the biometric master key used for unlocking the vault through Windows Hello. The key was stored in plaintext in the Windows Credential Manager, accessible to any local unprivileged process. This allowed an attacke...

7.1CVSS6.8AI score0.00585EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2023/01/10 10:15 p.m.4 views

CVE-2023-21726

Windows Credential Manager User Interface Elevation of Privilege Vulnerability...

7.8CVSS7.3AI score0.00481EPSS
Exploits0References3Affected Software25
NVD
NVD
added 2023/01/10 10:15 p.m.18 views

CVE-2023-21726

Windows Credential Manager User Interface Elevation of Privilege Vulnerability...

7.8CVSS8.2AI score0.00481EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/01/10 12:0 a.m.2 views

PT-2023-1141 · Microsoft · Windows Credential Manager +1

Name of the Vulnerable Software and Affected Versions: Windows Credential Manager versions affected versions not specified Description: An elevation-of-privilege vulnerability allows attackers to affect the system. The issue is related to the Windows Credential Manager user interface and is...

7.8CVSS8.6AI score0.00481EPSS
Exploits0References11
Rows per page
Query Builder