Vulnerabilities > Vxsearch

DATE CVE VULNERABILITY TITLE RISK
2023-03-16 CVE-2023-24671 Unquoted Search Path or Element vulnerability in Vxsearch VX Search 13.8/14.7
VX Search v13.8 and v14.7 was discovered to contain an unquoted service path vulnerability which allows attackers to execute arbitrary commands at elevated privileges via a crafted executable file.
local
low complexity
vxsearch CWE-428
7.8
2017-08-31 CVE-2017-13708 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Vxsearch VX Search 10.0.14
Buffer overflow in the web server service in VX Search Enterprise 10.0.14 allows remote attackers to execute arbitrary code via a crafted GET request.
network
low complexity
vxsearch CWE-119
critical
9.8