Approved changes feed: RSS · Atom

cpe:2.3:a:10-strike:network_inventory_explorer:9.31:*:*:*:pro:*:*:*

part: a version: 9.31 update: *

Vendor10 Strike (81ff7946-e220-5176-923f-d7892756b5f6)
ProductNetwork Inventory Explorer (0becb103-ba3a-5fc3-a3f5-9309fc7510ca)
Edition*
Language*
Software editionpro
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-47772 vulnerable 2026-06-08 05:38:07.602930 10-Strike Network Inventory Explorer Pro 9.31 - Buffer Overflow (SEH)
CRITICAL (9.8)
10-Strike Network Inventory Explorer Pro 9.31 contains a buffer overflow vulnerability in the text file import functionality that allows remote code execution. Attackers can craft a malicious text file with carefully constructed payload to trigger a reverse shell and execute arbitrary code on the target system.
Published: 2026-01-15T15:52:11.805Z
Updated: 2026-01-15T18:26:45.942Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-47767 vulnerable 2026-06-08 05:38:07.595561 10-Strike Network Inventory Explorer Pro 9.31 - 'srvInventoryWebServer' Unquoted Service Path
HIGH (7.8)
10-Strike Network Inventory Explorer Pro 9.31 contains an unquoted service path vulnerability in the srvInventoryWebServer service running with LocalSystem privileges. Attackers can exploit the unquoted path by placing malicious executables in potential path segments to achieve privilege escalation and execute code with system-level permissions.
Published: 2026-01-15T15:52:09.919Z
Updated: 2026-01-15T18:27:09.610Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-25344 vulnerable 2026-06-08 05:11:29.813405 10-Strike Network Inventory Explorer 8.54 Buffer Overflow SEH
HIGH (8.4)
10-Strike Network Inventory Explorer 8.54 contains a stack-based buffer overflow vulnerability in the registration key input field that allows local attackers to execute arbitrary code by triggering a structured exception handler overwrite. Attackers can craft a malicious registration key string with 4188 bytes of padding followed by SEH chain values and shellcode, then paste it into the registration dialog to achieve code execution with application privileges.
Published: 2026-05-23T18:30:46.677Z
Updated: 2026-05-26T13:27:33.215Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.