Lucene search
K

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•6 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•7 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•8 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•3 views

Trend Micro Maximum Security Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Maximum Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.8CVSS7AI score0.00331EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•4 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00225EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•6 views

IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00225EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•9 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00225EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•7 views

Microsoft Windows win32kfull Out-Of-Bounds Write Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull...

7.8CVSS6.3AI score0.00273EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•6 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00209EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•5 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00225EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•5 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00225EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•5 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00205EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•5 views

IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•7 views

IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.6AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•8 views

IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00225EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•8 views

IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

3.3CVSS5.7AI score0.00209EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•15 views

Microsoft Windows AppX Deployment Service Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the AppX Deploymen...

7.8CVSS6.4AI score0.00399EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•4 views

IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.6AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•14 views

(Pwn2Own) Microsoft SharePoint DataSetSurrogateSelector Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint Server. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

8.8CVSS6.9AI score0.99907EPSS
Exploits7References1
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•2 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00225EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•4 views

IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.6AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•4 views

IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.6AI score0.00221EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•8 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•6 views

IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.6AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•5 views

IrfanView CADImage Plugin DXF File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00225EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•10 views

IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.6AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•7 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/08 12:0 a.m.•7 views

IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/07 12:0 a.m.•6 views

(0Day) INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of VPM...

7.8CVSS6.7AI score0.00205EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/07 12:0 a.m.•6 views

(0Day) INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT VT-Designer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PM...

7.8CVSS6.6AI score0.00205EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/07 12:0 a.m.•4 views

Parallels Client Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Client. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the AppServer...

7.3CVSS6.9AI score
Exploits0References2
Zero Day Initiative
Zero Day Initiative
•added 2025/07/07 12:0 a.m.•4 views

(0Day) INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT VT-Designer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PM...

7.8CVSS6.6AI score0.00205EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/07 12:0 a.m.•6 views

(0Day) INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of VPM...

7.8CVSS6.7AI score0.00205EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/07 12:0 a.m.•6 views

(0Day) INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of VPM...

7.8CVSS6.7AI score0.00205EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/07 12:0 a.m.•5 views

(0Day) INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT VT-Designer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PM...

7.8CVSS6.6AI score0.00205EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/07 12:0 a.m.•4 views

(0Day) INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT VT-Designer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PM...

7.8CVSS6.6AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/07 12:0 a.m.•7 views

(0Day) INVT VT-Designer PM3 File Parsing Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT VT-Designer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PM...

7.8CVSS6.6AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/07 12:0 a.m.•6 views

(0Day) INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of VPM...

7.8CVSS6.7AI score0.00205EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/07/03 12:0 a.m.•3 views

Delta Electronics CNCSoft Screen Editor DPB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics CNCSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.4AI score0.00214EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2025/07/03 12:0 a.m.•8 views

GFI Archiver Telerik Web UI Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GFI Archiver. Authentication is not required to exploit this vulnerability. The specific flaw exists within the product installer. The issue results from the use of a vulnerable version of Telerik We...

9.8CVSS8.3AI score0.99737EPSS
Exploits16References1
Zero Day Initiative
Zero Day Initiative
•added 2025/07/03 12:0 a.m.•5 views

Delta Electronics CNCSoft Screen Editor DPB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics CNCSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.4AI score0.00214EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2025/07/03 12:0 a.m.•4 views

Delta Electronics CNCSoft Screen Editor DPB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics CNCSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.4AI score0.00214EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2025/07/03 12:0 a.m.•5 views

Delta Electronics CNCSoft Screen Editor DPB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics CNCSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.3AI score0.00202EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2025/07/03 12:0 a.m.•7 views

GStreamer H266 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing of H266 sei...

7.8CVSS6.8AI score0.00325EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2025/06/27 12:0 a.m.•5 views

(0Day) Marvell QConvergeConsole decryptFile Directory Traversal Arbitrary File Write Vulnerability

This vulnerability allows remote attackers to create arbitrary files on affected installations of Marvell QConvergeConsole. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the decryptFile method. The issue results from the lack o...

8.2CVSS7AI score0.01224EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/06/27 12:0 a.m.•17 views

(0Day) Marvell QConvergeConsole readObjectFromConfigFile Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the readObjectFromConfigFile method. The issue results fr...

9.8CVSS7.8AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/06/27 12:0 a.m.•5 views

(0Day) Marvell QConvergeConsole restoreESwitchConfig Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Marvell QConvergeConsole. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the restoreESwitchConfig method. The issue result...

7.5CVSS6.4AI score0.01256EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/06/27 12:0 a.m.•5 views

(0Day) Marvell QConvergeConsole deleteEventLogFile Directory Traversal Arbitrary File Deletion Vulnerability

This vulnerability allows remote attackers to delete arbitrary files on affected installations of Marvell QConvergeConsole. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the deleteEventLogFile method. The issue results from the...

8.2CVSS6.9AI score0.01134EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/06/27 12:0 a.m.•6 views

(0Day) Marvell QConvergeConsole getFileUploadSize Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Marvell QConvergeConsole. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the getFileUploadSize method. The issue results...

5.3CVSS6.4AI score0.01064EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2025/06/27 12:0 a.m.•5 views

(0Day) Marvell QConvergeConsole getFileUploadBytes Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Marvell QConvergeConsole. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the getFileUploadBytes method. The issue results...

7.5CVSS6.4AI score0.01256EPSS
Exploits0
Total number of security vulnerabilities16763