Lucene search
K

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•12 views

IrfanView DXF File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF files...

7.8CVSS6.8AI score0.00423EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•13 views

IrfanView DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DWG files...

7.8CVSS6.8AI score0.0044EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•26 views

IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of CGM files...

7.8CVSS6.8AI score0.00394EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•11 views

IrfanView DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DWG files...

7.8CVSS7AI score0.00394EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•10 views

IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of CGM files...

7.8CVSS6.8AI score0.00421EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•15 views

7-Zip Qcow Handler Infinite Loop Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of 7-Zip. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the processin...

6.5CVSS6.3AI score0.01703EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•11 views

IrfanView ECW File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ECW files...

7.8CVSS6.9AI score0.00438EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•11 views

IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF files...

7.8CVSS7AI score0.00409EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•13 views

IrfanView ECW File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ECW files...

7.8CVSS6.9AI score0.00438EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•7 views

IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF files...

7.8CVSS6.9AI score0.00394EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•16 views

Luxion KeyShot ABC File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Luxion KeyShot. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of abc...

7.8CVSS6.9AI score0.00365EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•9 views

IrfanView DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DWG files...

7.8CVSS7AI score0.00409EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•18 views

IrfanView DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DWG files...

7.8CVSS6.9AI score0.00394EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•12 views

IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF files...

7.8CVSS7AI score0.00427EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•10 views

IrfanView ARW File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ARW files...

7.8CVSS6.9AI score0.00394EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•7 views

Adobe InDesign JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe InDesign. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

3.3CVSS6AI score0.00277EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/21 12:0 a.m.•10 views

IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF files...

7.8CVSS7AI score0.00427EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2024/11/20 12:0 a.m.•9 views

7-Zip Zstandard Decompression Integer Underflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of 7-Zip. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the implementation of...

7.8CVSS7.1AI score0.21985EPSS
Exploits1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/20 12:0 a.m.•10 views

Panda Security Dome PSANHost Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Application...

7.8CVSS7.8AI score0.00188EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/20 12:0 a.m.•11 views

Microsoft SharePoint Server FindSpecific Unsafe Reflection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the implementation of the FindSpecific method. The process does not properly...

7.2CVSS7.1AI score0.45219EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•11 views

Siemens Tecnomatix Plant Simulation WRL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00236EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•7 views

Trend Micro Deep Security Agent Manual Scan Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Deep Security Agent. Authentication is required to exploit this vulnerability. The specific flaw exists within the Trend Micro Deep Security Notifier service. The issue results from the...

7.5CVSS7.3AI score0.04032EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•6 views

Dassault Systèmes eDrawings Viewer SAT File Parsing Uninitialized Variable Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS7.8AI score0.0023EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•9 views

Siemens Tecnomatix Plant Simulation WRL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00272EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•14 views

McAfee Total Protection Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of McAfee Total Protection. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the McAfee...

6.7CVSS7.2AI score0.00205EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•6 views

Dassault Systèmes eDrawings Viewer X_B File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS7.8AI score0.0023EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•25 views

RSA Security SecureID Software Token for Microsoft Windows Uncontrolled Search Path Element Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of RSA Security SecureID Software Token for Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists within t...

7.8CVSS7.3AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•8 views

Siemens Tecnomatix Plant Simulation WRL File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00192EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•11 views

Siemens Tecnomatix Plant Simulation WRL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00236EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•10 views

Siemens Tecnomatix Plant Simulation WRL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00236EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•8 views

Siemens Tecnomatix Plant Simulation WRL File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00272EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•9 views

Siemens Tecnomatix Plant Simulation WRL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00272EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•8 views

Siemens Tecnomatix Plant Simulation WRL File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00236EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•17 views

WordPress Core maybe_unserialize Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of WordPress Core. Authentication may be required to exploit this vulnerability, depending on the product configuration. The specific flaw exists within the maybeunserialize function. The issue results...

8.8CVSS7.3AI score0.00945EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•7 views

Siemens Tecnomatix Plant Simulation WRL File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00236EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•11 views

(0Day) Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS6.8AI score0.0714EPSS
Exploits4
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•15 views

(0Day) Hugging Face Transformers MaskFormer Model Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS6.8AI score0.02894EPSS
Exploits1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•14 views

(0Day) Hugging Face Transformers Trax Model Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS6.8AI score0.02415EPSS
Exploits1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•9 views

Siemens Tecnomatix Plant Simulation WRL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00236EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/18 12:0 a.m.•14 views

Progress Software WhatsUp Gold getReport Missing Authentication Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of Progress Software WhatsUp Gold. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of getReport method. The issue results from the lack of...

9.8CVSS6.6AI score0.00621EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/14 12:0 a.m.•6 views

Microsoft Office PowerPoint PPTX File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office PowerPoint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00825EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/13 12:0 a.m.•10 views

Ivanti Avalanche WLAvalancheService TV_FN Infinite Loop Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Ivanti Avalanche. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WLAvalancheService service, which listens on TCP port 1777 by default...

7.5CVSS6.6AI score0.01113EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/13 12:0 a.m.•8 views

Ivanti Avalanche WLAvalancheService TV_FP Null Pointer Dereference Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Ivanti Avalanche. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WLAvalancheService service, which listens on TCP port 1777 by default...

7.5CVSS6.6AI score0.01113EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/13 12:0 a.m.•6 views

Ivanti Endpoint Manager OnSaveToDB Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. Alternatively, no user interaction is...

7.8CVSS6.8AI score0.06027EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/13 12:0 a.m.•8 views

Ivanti Endpoint Manager vulscan Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the vulsca...

8.8CVSS6.9AI score0.01672EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/13 12:0 a.m.•11 views

Ivanti Endpoint Manager GetDetectedVulnerabilitiesDataTable SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the implementation of the GetDetectedVulnerabilitiesDataTable method. The issue...

7.2CVSS7.7AI score0.01726EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/13 12:0 a.m.•10 views

Ivanti Avalanche WLAvalancheService TV_FP Infinite Loop Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Ivanti Avalanche. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WLAvalancheService service, which listens on TCP port 1777 by default...

7.5CVSS6.6AI score0.01113EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/13 12:0 a.m.•7 views

Ivanti Endpoint Manager DBDR SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the implementation of the DBDR class. The issue results from the lack of proper...

7.2CVSS7.7AI score0.01667EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/13 12:0 a.m.•6 views

Ivanti Endpoint Manager Report_RunPatch SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the ReportRunPatch class. The issue results from the lack of proper validation of a...

7.2CVSS7.7AI score0.03075EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/13 12:0 a.m.•9 views

Ivanti Endpoint Manager MP_QueryDetail SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Endpoint Manager. Authentication is required to exploit this vulnerability. The specific flaw exists within the MPQueryDetail class. The issue results from the lack of proper validation of a...

7.2CVSS7.3AI score0.67711EPSS
Exploits0References1
Total number of security vulnerabilities16763