| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Windows Backup Engine Elevation of Privilege Vulnerability |
| Windows Backup Engine Elevation of Privilege Vulnerability |
| Windows Backup Engine Elevation of Privilege Vulnerability |
| Windows Backup Engine Elevation of Privilege Vulnerability |
| Windows Backup Engine Elevation of Privilege Vulnerability |
| Windows Backup Engine Elevation of Privilege Vulnerability |
| Azure SDK for Java Security Feature Bypass Vulnerability |
| IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to the use of unsafe use of the gets function. |
| IBM InfoSphere Information Server 11.7 could disclose sensitive information to an authenticated user that could aid in further attacks against the system through a directory listing. |
| A vulnerability was found in Exrick xboot up to 3.3.4. It has been classified as problematic. This affects an unknown part of the component Spring Boot Admin/Spring Actuator. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. |
| .NET and Visual Studio Denial of Service Vulnerability |
| The entire parent directory - C:\ScadaPro and its sub-directories and
files are configured by default to allow user, including unprivileged
users, to write or overwrite files. |
| Mommy Heather Advanced Backups up to v3.5.3 allows attackers to write arbitrary files via restoring a crafted back up. |
| Windows Remote Access Connection Manager Information Disclosure Vulnerability |
| Windows Common Log File System Driver Elevation of Privilege Vulnerability |
| Windows Kernel Elevation of Privilege Vulnerability |
| Windows Hyper-V Denial of Service Vulnerability |
| Improper input validation in Microsoft Dynamics allows an unauthorized attacker to disclose information over a network. |
| Due to an improper input validation, an unauthenticated threat actor can send a malicious message to a monitor thread within Rockwell Automation ThinServer™ and cause a denial-of-service condition on the affected device. |
| Due to an improper input validation, an unauthenticated threat actor can send a malicious message to invoke SQL injection into the program and cause a remote code execution condition on the Rockwell Automation ThinManager® ThinServer™. |
