CWE:
 

Topic
Date
Author
High
VBox Satellite Express Arbitrary Write Privilege Escalation
19.09.2015
KoreLogic
Med.
SiS Windows VGA Display Manager Multiple Privilege Escalation
02.09.2015
KoreLogic
Med.
XGI Windows VGA Display Manager Arbitrary Write Privilege Escalation
02.09.2015
KoreLogic
High
FortiClient Antivirus Information Exposure / Access Control
02.09.2015
CORE
Med.
Microsoft XP SP3 MQAC.sys Arbitrary Write Privilege Escalation
22.07.2014
Matt Bergin of KoreLog...
Med.
Microsoft XP SP3 BthPan.sys Arbitrary Write Privilege Escalation
22.07.2014
Matt Bergin of KoreLog...
Med.
Oracle VirtualBox Guest Additions Arbitrary Write Privilege Escalation
16.07.2014
Matt Bergin of KoreLog...


CVEMAP Search Results

CVE
Details
Description
2021-10-22
Waiting for details
CVE-2021-42540

Updating...
 

 
The affected product is vulnerable to a unsanitized extract folder for system configuration. A low-privileged user can leverage this logic to overwrite the settings and other key functionality.

 
Waiting for details
CVE-2021-38449

Updating...
 

 
Some API functions permit by-design writing or copying data into a given buffer. Since the client controls these parameters, an attacker could rewrite the memory in any location of the affected product.

 
2021-10-12
High
CVE-2021-38180

Vendor: SAP
Software: Business one
 

 
SAP Business One - version 10.0, allows an attacker to inject formulas when exporting data to Excel (CSV injection) due to improper sanitation during the data export. An attacker could thereby execute arbitrary commands on the victim's computer but only if the victim allows to execute macros while opening the file and the security settings of Excel allow for command execution.

 
2021-09-30
High
CVE-2021-24016

Vendor: Fortinet
Software: Fortimanager
 

 
An improper neutralization of formula elements in a csv file in Fortinet FortiManager version 6.4.3 and below, 6.2.7 and below allows attacker to execute arbitrary commands via crafted IPv4 field in policy name, when exported as excel file and opened unsafely on the victim host.

 
2021-09-29
Medium
CVE-2021-25962

Vendor: Shuup
Software: Shuup
 

 

 
Medium
CVE-2021-25960

Vendor: Salesagility
Software: Suitecrm
 

 

 
2021-09-01
Low
CVE-2021-36057

Vendor: Adobe
Software: Xmp toolkit sdk
 

 
XMP Toolkit SDK version 2020.1 (and earlier) is affected by a write-what-where condition vulnerability caused during the application's memory allocation process. This may cause the memory management functions to become mismatched resulting in local application denial of service in the context of the current user.

 
2021-08-30
Medium
CVE-2021-27020

Vendor: Puppet
Software: Puppet enter...
 

 
Puppet Enterprise presented a security risk by not sanitizing user input when doing a CSV export.

 
2021-08-18
Medium
CVE-2021-37702

Vendor: Pimcore
Software: Pimcore
 

 
Pimcore is an open source data & experience management platform. Prior to version 10.1.1, Data Object CSV import allows formular injection. The problem is patched in 10.1.1. Aside from upgrading, one may apply the patch manually as a workaround.

 
2021-08-09
High
CVE-2021-33256

Vendor: Zohocorp
Software: Manageengine...
 

 
A CSV injection vulnerability on the login panel of ManageEngine ADSelfService Plus Version: 6.1 Build No: 6101 can be exploited by an unauthenticated user. The j_username parameter seems to be vulnerable and a reverse shell could be obtained if a privileged user exports "User Attempts Audit Report" as CSV file.

 

 


Copyright 2021, cxsecurity.com

 

Back to Top