NAME__________EspoCRM server-side request forgeryPlatforms Affected:EspoCRM EspoCRM 8.0.4Risk Level:5.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________EspoCRM is vulnerable to server-side request forgery, caused by...
NAME__________AMI Aptio V code executionPlatforms Affected:AMI Aptio VRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________AMI Aptio V could allow a local authenticated attacker to...
NAME__________ICONICS SCADA Suite code executionPlatforms Affected:Risk Level:6.6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________ICONICS SCADA Suite could allow a remote authenticated attacker to execute arbitrary...
NAME__________AMI Aptio V code executionPlatforms Affected:AMI Aptio VRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________AMI Aptio V could allow a local authenticated attacker to...
NAME__________AMI AptioV code executionPlatforms Affected:AMI Aptio VRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________AMI AptioV could allow a local authenticated attacker to execute arbitrary...
NAME__________Phoenix Technologies Phoenix SecureCore code executionPlatforms Affected:Phoenix Technologies Phoenix SecureCoreRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Phoenix Technologies Phoenix SecureCore could allow a local...
NAME__________Tenda AX9 SQL injectionPlatforms Affected:Tenda AX9 22.03.01.46Risk Level:5.4Exploitability:HighConsequences:Gain Access DESCRIPTION__________Tenda AX9 is vulnerable to SQL injection. A remote attacker could...
NAME__________Appointment Scheduler code executionPlatforms Affected:PHPJabbers Appointment Scheduler 3.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Appointment Scheduler could allow a remote authenticated attacker to execute...
NAME__________Appointment Scheduler HTML injectionPlatforms Affected:PHPJabbers Appointment Scheduler 3.0Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Appointment Scheduler is vulnerable to HTML injection. A remote authenticated...
NAME__________Insyde InsydeH2O denial of servicePlatforms Affected:Insyde InsydeH2O 5.2 Insyde InsydeH2O 5.3 Insyde InsydeH2O 5.4 Insyde InsydeH2O 5.5 Insyde InsydeH2O 5.6Risk...
NAME__________AMI Aptio V code executionPlatforms Affected:AMI Aptio VRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________AMI Aptio V could allow a local authenticated attacker to...
NAME__________PubNub weak securityPlatforms Affected:PubNub PubNub 7.4.0 PubNub PubNub 6.19.0 PubNub PubNub 7.2.0 PubNub PubNub 7.3.0 PubNub PubNub 6.1.0 PubNub PubNub...
NAME__________Devolutions Remote Desktop Manager code executionPlatforms Affected:Devolutions Remote Desktop Manager 2023.3.9.3Risk Level:3.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Devolutions Remote Desktop Manager could allow a...
NAME__________AMI AptioV code executionPlatforms Affected:AMI Aptio VRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________AMI AptioV could allow a local authenticated attacker to execute arbitrary...
NAME__________Phoenix Technologies Phoenix SecureCore code executionPlatforms Affected:Phoenix Technologies Phoenix SecureCoreRisk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Phoenix Technologies Phoenix SecureCore could allow a local...
NAME__________Elastic Elasticsearch-Hadoop code executionPlatforms Affected:Elastic Elasticsearch-Hadoop 7.17 Elastic Elasticsearch-Hadoop 8.0.0Risk Level:6Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Elastic Elasticsearch-Hadoop could allow a local authenticated attacker...
NAME__________Jellyfin weak securityPlatforms Affected:Jellyfin Jellyfin 10.8.12Risk Level:7.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Jellyfin could provide weaker than expected security, caused by an argument injection...
NAME__________Qualcomm Chipsets code executionPlatforms Affected:Qualcomm ChipsetsRisk Level:6.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Chipsets could allow a local authenticated attacker to execute arbitrary code...
NAME__________Qualcomm Chipsets code executionPlatforms Affected:Qualcomm ChipsetsRisk Level:6.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Chipsets could allow a local authenticated attacker to execute arbitrary code...
NAME__________Qualcomm Chipsets code executionPlatforms Affected:Qualcomm ChipsetsRisk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Chipsets could allow a local authenticated attacker to execute arbitrary code...
NAME__________TOTOLINK X6000R command executionPlatforms Affected:TOTOLINK X6000R 9.4.0cu.852_B20230719Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________TOTOLINK X6000R could allow a remote attacker to execute arbitrary commands...
NAME__________Qualcomm Chipsets code executionPlatforms Affected:Qualcomm ChipsetsRisk Level:6.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Qualcomm Chipsets could allow a local authenticated attacker to execute arbitrary code...
NAME__________TOTOLINK X6000R command executionPlatforms Affected:TOTOLINK X6000R 9.4.0cu.852_B20230719Risk Level:7.3Exploitability:Proof of ConceptConsequences:Gain Access DESCRIPTION__________TOTOLINK X6000R could allow a remote attacker to execute...
NAME__________SonicWall SMA100 SSL-VPN command executionPlatforms Affected:SonicWall SMA100 SSL-VPN 10.2.1.9-57svRisk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________SonicWall SMA100 SSL-VPN could allow a remote authenticated attacker...
