Lucene search
K

1453 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:7 a.m.4 views

CVE-2023-38351

MiniTool Partition Wizard 12.8 contains an insecure installation mechanism that allows attackers to achieve remote code execution through a man in the middle attack...

8.1CVSS7.8AI score0.0063EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:7 a.m.6 views

CVE-2023-38352

MiniTool Partition Wizard 12.8 contains an insecure update mechanism that allows attackers to achieve remote code execution through a man in the middle attack...

8.1CVSS7.8AI score0.0063EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:10 a.m.4 views

CVE-2023-21397

In Setup Wizard, there is a possible way to save a WiFi network due to an insecure default value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.9AI score0.001EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:8 a.m.4 views

CVE-2023-21187

In onCreate of UsbAccessoryUriActivity.java, there is a possible way to escape the Setup Wizard due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS6.8AI score0.00093EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:54 a.m.7 views

CVE-2023-24346

D-Link N300 WI-FI Router DIR-605L v2.13B01 was discovered to contain a stack overflow via the wanconnected parameter at /goform/formEasySetupWizard3...

8.8CVSS7.8AI score0.01192EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:22 a.m.9 views

CVE-2022-46588

TRENDnet TEW755AP 1.13B01 was discovered to contain a stack overflow via the sysservice parameter in the setupwizardmydlink sub4104B8 function...

9.8CVSS7.8AI score0.00873EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:3 a.m.10 views

CVE-2022-24932

Improper Protection of Alternate Path vulnerability in Setup wizard process prior to SMR Mar-2022 Release 1 allows physical attacker package installation before finishing Setup wizard...

4.6CVSS6.5AI score0.00103EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:45 p.m.7 views

CVE-2022-41590

Some smartphones have authentication-related including session management vulnerabilities as the setup wizard is bypassed. Successful exploitation of this vulnerability affects the smartphone availability...

5.5CVSS7.1AI score0.00125EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:14 p.m.4 views

CVE-2022-37128

In D-Link DIR-816 A2v1.10CNB04.img the network can be initialized without authentication via /goform/wizardend...

9.8CVSS7.2AI score0.21246EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:44 p.m.8 views

CVE-2022-29320

MiniTool Partition Wizard v12.0 contains an unquoted service path which allows attackers to escalate privileges to the system level...

7.8CVSS7.1AI score0.00416EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:6 p.m.7 views

CVE-2021-20150

Trendnet AC2600 TEW-827DRU version 2.08B01 improperly discloses information via redirection from the setup wizard. Authentication can be bypassed and a user may view information as Admin by manually browsing to the setup wizard and forcing it to redirect to the desired page...

5.3CVSS6.5AI score0.4006EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:40 p.m.15 views

CVE-2021-37353

Nagios XI Docker Wizard before version 1.1.3 is vulnerable to SSRF due to improper sanitation in tablepopulation.php...

9.8CVSS7AI score0.02943EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:40 p.m.9 views

CVE-2021-37346

Nagios XI WatchGuard Wizard before version 1.4.8 is vulnerable to remote code execution through Improper neutralisation of special elements used in an OS Command OS Command injection...

9.8CVSS7.9AI score0.73586EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:33 p.m.11 views

CVE-2021-3193

Improper access and command validation in the Nagios Docker Config Wizard before 1.1.2, as used in Nagios XI through 5.7, allows an unauthenticated attacker to execute remote code as the apache user...

9.8CVSS8AI score0.0977EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:18 p.m.6 views

CVE-2021-21406

Combodo iTop is an open source, web based IT Service Management tool. In versions prior to 2.7.4, there is a command injection vulnerability in the Setup Wizard when providing Graphviz executable path. The vulnerability is patched in version 2.7.4 and 3.0.0...

8.8CVSS7.3AI score0.01032EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:2 a.m.8 views

CVE-2019-17415

A Structured Exception Handler SEH based buffer overflow in File Sharing Wizard 1.5.0 26-8-2008 allows remote unauthenticated attackers to execute arbitrary code via the HTTP DELETE method, a similar issue to CVE-2019-16724 and CVE-2010-2331...

9.8CVSS8.1AI score0.72158EPSS
Exploits7References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:53 a.m.7 views

CVE-2019-11166

Improper file permissions in the installer for IntelR Easy Streaming Wizard before version 2.1.0731 may allow an authenticated user to potentially enable escalation of privilege via local attack...

6.7CVSS7.2AI score0.00318EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:36 a.m.6 views

CVE-2019-0138

Improper directory permissions in IntelR ACU Wizard version 12.0.0.129 and earlier may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS7.1AI score0.00307EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:33 a.m.8 views

CVE-2019-16724

File Sharing Wizard 1.5.0 allows a remote attacker to obtain arbitrary code execution by exploiting a Structured Exception Handler SEH based buffer overflow in an HTTP POST parameter, a similar issue to CVE-2010-2330 and CVE-2010-2331...

9.8CVSS8.2AI score0.72158EPSS
Exploits8References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:7 a.m.13 views

CVE-2010-2331

Stack-based buffer overflow in iSharer File Sharing Wizard 1.5.0 allows remote attackers to execute arbitrary code via a long HEAD request...

9.3CVSS8.2AI score0.05586EPSS
Exploits1References1
Rows per page
Query Builder