arc 5.21j and earlier create temporary files with world-readable permissions, which allows local users to read sensitive information from files created by (1) arc (arc.c) or (2) marc (marc.c).
5.5AI Score
0.0004EPSS
arc 5.21j and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different type of vulnerability than CVE-2005-2945.
6.1AI Score
0.0004EPSS
5.3CVSS
5.1AI Score
0.001EPSS
An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4., that allows attackers to escalate privileges within the application, since all permission checks are done client-side, not server-side.
8.8CVSS
8.7AI Score
0.001EPSS
An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4. There is storage of Passwords in a Recoverable Format.
5.9CVSS
5.7AI Score
0.001EPSS
An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4. There is Improper Handling of Case Sensitivity, which makes password guessing easier.
7.5CVSS
7.6AI Score
0.001EPSS
An issue was discovered in Softwarebuero Zauner ARC 4.2.0.4. There is Cleartext Transmission of Sensitive Information.
5.9CVSS
5.7AI Score
0.001EPSS
CData RSB Connect v22.0.8336 was discovered to contain a Server-Side Request Forgery (SSRF).
7.5CVSS
7.6AI Score
0.016EPSS