21 matches found
EUVD-2024-53960
Malicious code in bioql PyPI...
EUVD-2024-53959
Malicious code in bioql PyPI...
EUVD-2024-53958
Malicious code in bioql PyPI...
CVE-2024-38291
In XIQ-SE before 24.2.11, a low-privileged user may be able to access admin passwords, which could lead to privilege escalation...
CVE-2024-38292
In Extreme Networks XIQ-SE before 24.2.11, due to a missing access control check, a path traversal is possible, which may lead to privilege escalation...
CVE-2024-38292
In Extreme Networks XIQ-SE before 24.2.11, due to a missing access control check, a path traversal is possible, which may lead to privilege escalation...
CVE-2024-38291
In XIQ-SE before 24.2.11, a low-privileged user may be able to access admin passwords, which could lead to privilege escalation...
CVE-2024-38290
In XIQ-SE before 24.2.11, a server misconfiguration may allow user enumeration when specific conditions are met...
CVE-2024-38290
In XIQ-SE before 24.2.11, a server misconfiguration may allow user enumeration when specific conditions are met...
CVE-2024-38292
In Extreme Networks XIQ-SE before 24.2.11, due to a missing access control check, a path traversal is possible, which may lead to privilege escalation...
CVE-2024-38291
In XIQ-SE before 24.2.11, a low-privileged user may be able to access admin passwords, which could lead to privilege escalation...
CVE-2024-38290
The CVE-2024-38290 issue affects Extreme Networks’ XIQ-SE before 24.2.11, arising from a server misconfiguration that may allow user enumeration under specific conditions. Impact is limited to misconfiguration-driven exposure of usernames; no exploitation details are provided beyond this behavior...
CVE-2024-38292
In Extreme Networks XIQ-SE before 24.2.11, due to a missing access control check, a path traversal is possible, which may lead to privilege escalation...
CVE-2024-38292
Summary: CVE-2024-38292 affects Extreme Networks XIQ-SE prior to version 24.2.11. The issue is a missing access control check that enables a path traversal, which can lead to privilege escalation. The CVSSv3.1 score is 9.8 (CRITICAL), with network access, no user interaction required, and high im...
CVE-2024-38291
In XIQ-SE before 24.2.11, a low-privileged user may be able to access admin passwords, which could lead to privilege escalation...
CVE-2024-38291
The CVE-2024-38291 entry applies to Extreme Networks ExtremeCloud IQ Site Engine (XIQ‑SE) prior to version 24.2.11. The vulnerability arises from a flaw that allows a low‑privileged user to access administrator passwords, enabling potential privilege escalation. Affected component/versions are XI...
CVE-2024-38290
In XIQ-SE before 24.2.11, a server misconfiguration may allow user enumeration when specific conditions are met...
CVE-2024-38291
In XIQ-SE before 24.2.11, a low-privileged user may be able to access admin passwords, which could lead to privilege escalation...
PT-2025-9026 · Xiq-Se · Xiq-Se
Name of the Vulnerable Software and Affected Versions: XIQ-SE versions prior to 24.2.11 Description: A server misconfiguration in XIQ-SE may allow user enumeration under specific conditions. Recommendations: For versions prior to 24.2.11, update to version 24.2.11 or later to resolve the issue...
PT-2025-9027 · Xiq-Se · Xiq-Se
Name of the Vulnerable Software and Affected Versions: XIQ-SE versions prior to 24.2.11 Description: A low-privileged user may be able to access admin passwords, which could lead to privilege escalation. Recommendations: For versions prior to 24.2.11, update to version 24.2.11 or later to resolve...