BACK TO INTEL

Archives

Classification

Clear Filter

No categories extracted.

FeedEnterprise Software

Verified advisories, vulnerability disclosures, and architectural research.

CVE-2023-22527

CVE-2023-22527: Critical Unauthenticated RCE in Atlassian Confluence Data Center and Server

Atlassian Confluence Data Center and Server contain an unauthenticated OGNL template injection vulnerability that can lead to remote code execution.

Confluence Data Center and Server
View Detail
CVE-2026-6973

CVE-2026-6973: Critical RCE Vulnerability in Ivanti Endpoint Manager Mobile (EPMM)

Ivanti Endpoint Manager Mobile (EPMM) contains an improper input validation vulnerability that allows a remotely authenticated user with administrative access to achieve remote code execution.

Endpoint Manager Mobile (EPMM)
View Detail
CVE-2023-24955

CVE-2023-24955: Critical Microsoft SharePoint Server Code Injection Advisory

Microsoft SharePoint Server contains a code injection vulnerability that allows an authenticated attacker with Site Owner privileges to execute code remotely.

SharePoint Server
View Detail
CVE-2025-53770

CVE-2025-53770: Critical Remote Code Execution Vulnerability in Microsoft SharePoint Server

CVE-2025-53770 is a critical deserialization vulnerability in Microsoft SharePoint Server (CVSS 9.8) exploited in the wild, acting as a patch bypass for CVE-2025-49704.

SharePoint
View Detail
CVE-2025-49704

CVE-2025-49704: Critical Microsoft SharePoint Code Injection Vulnerability Advisory

Microsoft SharePoint contains a code injection vulnerability that could allow an authorized attacker to execute code over a network. This vulnerability could be chained with CVE-2025-49706. CVE-2025-53770 is a patch bypass for CVE-2025-49704, and the updates for CVE-2025-53770 include more robust protection than those for CVE-2025-49704.

SharePoint
View Detail
CVE-2025-61884

CVE-2025-61884: Critical SSRF in Oracle E-Business Suite Oracle Configurator

Oracle E-Business Suite contains a server-side request forgery (SSRF) vulnerability in the Runtime component of Oracle Configurator. This vulnerability is remotely exploitable without authentication.

E-Business Suite
View Detail
12