Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Patch Security Vulnerabilities

cve
cve

CVE-2022-42451

Certain credentials within the BigFix Patch Management Download Plug-ins are stored insecurely and could be exposed to a local privileged...

4.4CVSS

6.9AI Score

0.0004EPSS

2023-10-11 06:15 AM
17
cve
cve

CVE-2023-21445

Improper access control vulnerability in MyFiles prior to versions 12.2.09 in Android R(11), 13.1.03.501 in Android S(12) and 14.1.00.422 in Android T(13) allows local attacker to write file with MyFiles privilege via implicit...

7.8CVSS

7.3AI Score

0.001EPSS

2023-02-09 07:15 PM
17
cve
cve

CVE-2021-4279

A vulnerability has been found in Starcounter-Jack JSON-Patch up to 3.1.0 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to improperly controlled modification of object prototype attributes ('prototype pollution'). The attack can be initiated...

9.8CVSS

9.6AI Score

0.003EPSS

2022-12-25 08:15 PM
43
cve
cve

CVE-2022-38757

A vulnerability has been identified in Micro Focus ZENworks 2020 Update 3a and prior versions. This vulnerability allows administrators with rights to perform actions (e.g., install a bundle) on a set of managed devices, to be able to exercise these rights on managed devices in the ZENworks zone...

7.2CVSS

6.8AI Score

0.002EPSS

2022-12-23 04:15 PM
27
cve
cve

CVE-2021-45261

An Invalid Pointer vulnerability exists in GNU patch 2.7 via the another_hunk function, which causes a Denial of...

5.5CVSS

5.3AI Score

0.001EPSS

2021-12-22 06:15 PM
40
cve
cve

CVE-2021-35218

Deserialization of Untrusted Data in the Web Console Chart Endpoint can lead to remote code execution. An unauthorized attacker who has network access to the Orion Patch Manager Web Console could potentially exploit this and compromise the...

8.8CVSS

8.9AI Score

0.069EPSS

2021-09-01 03:15 PM
31
cve
cve

CVE-2021-35216

Insecure Deserialization of untrusted data remote code execution vulnerability was discovered in Patch Manager Orion Platform Integration module. An Authenticated Attacker with network access via HTTP can compromise this vulnerability can result in Remote Code...

8.8CVSS

9.1AI Score

0.082EPSS

2021-09-01 03:15 PM
37
cve
cve

CVE-2021-27240

This vulnerability allows local attackers to escalate privileges on affected installations of SolarWinds Patch Manager 2020.2.1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the....

7.8CVSS

7.8AI Score

0.001EPSS

2021-03-29 09:15 PM
25