CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-1470 – Elevation of Privilege attack on NetIQ Client login extension
https://notcve.org/view.php?id=CVE-2024-1470
20 Feb 2024 — Authorization Bypass Through User-Controlled Key vulnerability in NetIQ (OpenText) Client Login Extension on Windows allows Privilege Escalation, Code Injection.This issue only affects NetIQ Client Login Extension: 4.6. La vulnerabilidad de omisión de autorización a través de clave controlada por el usuario en la extensión de inicio de sesión del cliente NetIQ (OpenText) en Windows permite la escalada de privilegios y la inyección de código. Este problema solo afecta a la extensión de inicio de sesión del c... • https://portal.microfocus.com/s/article/KM000026667?language=en_US • CWE-639: Authorization Bypass Through User-Controlled Key •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-22097
https://notcve.org/view.php?id=CVE-2024-22097
20 Feb 2024 — A specially crafted .vdhr file can lead to arbitrary code execution. • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OIRLGNQM33KAWVWP5RPMAPHWNP3IY5YW • CWE-415: Double Free •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-23305
https://notcve.org/view.php?id=CVE-2024-23305
20 Feb 2024 — A specially crafted .vmrk file can lead to arbitrary code execution. • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OIRLGNQM33KAWVWP5RPMAPHWNP3IY5YW • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-23809
https://notcve.org/view.php?id=CVE-2024-23809
20 Feb 2024 — A specially crafted .vdhr file can lead to arbitrary code execution. • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OIRLGNQM33KAWVWP5RPMAPHWNP3IY5YW • CWE-415: Double Free •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-21795
https://notcve.org/view.php?id=CVE-2024-21795
20 Feb 2024 — A specially crafted .egi file can lead to arbitrary code execution. • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OIRLGNQM33KAWVWP5RPMAPHWNP3IY5YW • CWE-122: Heap-based Buffer Overflow •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-21812
https://notcve.org/view.php?id=CVE-2024-21812
20 Feb 2024 — A specially crafted .famos file can lead to an out-of-bounds write which in turn can lead to arbitrary code execution. • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OIRLGNQM33KAWVWP5RPMAPHWNP3IY5YW • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-23313
https://notcve.org/view.php?id=CVE-2024-23313
20 Feb 2024 — A specially crafted .famos file can lead to an out-of-bounds write which in turn can lead to arbitrary code execution. • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OIRLGNQM33KAWVWP5RPMAPHWNP3IY5YW • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-23310
https://notcve.org/view.php?id=CVE-2024-23310
20 Feb 2024 — A specially crafted .famos file can lead to arbitrary code execution. • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OIRLGNQM33KAWVWP5RPMAPHWNP3IY5YW • CWE-825: Expired Pointer Dereference •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2024-23606
https://notcve.org/view.php?id=CVE-2024-23606
20 Feb 2024 — A specially crafted .famos file can lead to arbitrary code execution. • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OIRLGNQM33KAWVWP5RPMAPHWNP3IY5YW • CWE-131: Incorrect Calculation of Buffer Size •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2023-45318
https://notcve.org/view.php?id=CVE-2023-45318
20 Feb 2024 — A specially crafted network packet can lead to arbitrary code execution. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1843 • CWE-122: Heap-based Buffer Overflow •