EUVD-2025-37961

Improper handling of the authentication token in the Amazon WorkSpaces client for Linux, versions 2023.0 through 2024.8, may expose the authentication token for DCV-based WorkSpaces to other local users on the same client machine. Under certain circumstances, a local user may be able to extract...

CVE-2022-41982

Uncontrolled search path element in the IntelR VTuneTM Profiler software before version 2023.0 may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2022-41658

Insecure inherited permissions in the IntelR VTuneTM Profiler software before version 2023.0 may allow an authenticated user to potentially enable escalation of privilege via local access...

Esri ArcGIS SQL注入漏洞

Esri ArcGIS is a powerful desktop GIS software from Esri. A SQL injection vulnerability exists in Esri ArcGIS Monitor versions 2023.0 through 2024.x. The vulnerability stems from allowing a low-privileged user to read limited database schema information...

CVE-2023-35801

A directory traversal vulnerability in Safe Software FME Server before 2022.2.5 allows an attacker to bypass validation when editing a network-based resource connection, resulting in the unauthorized reading and writing of arbitrary files. Successful exploitation requires an attacker to have acce...

CVE-2023-35801

A directory traversal vulnerability in Safe Software FME Server before 2022.2.5 allows an attacker to bypass validation when editing a network-based resource connection, resulting in the unauthorized reading and writing of arbitrary files. Successful exploitation requires an attacker to have acce...

Puppet 安全漏洞

Puppet is a set of configuration management tools based on client/server C/S architecture from Puppet Labs in the United States, which can be used to manage configuration files, users, cron tasks, packages, system services, and more. A security vulnerability exists in Puppet Enterprise versions...

CVE-2022-41658

Insecure inherited permissions in the IntelR VTuneTM Profiler software before version 2023.0 may allow an authenticated user to potentially enable escalation of privilege via local access...

PT-2023-14008 · Intel · Intel Vtune Profiler

Name of the Vulnerable Software and Affected Versions: IntelR VTuneTM Profiler versions prior to 2023.0 Description: The issue concerns insecure inherited permissions that may allow an authenticated user to potentially enable escalation of privilege via local access. Recommendations: For versions...

Intel VTune Profiler 代码问题漏洞

Intel VTune Profiler is a performance testing tool for optimized software from Intel USA. The software performs performance testing of IoT embedded applications, media software, Java applications, and high-performance computing applications. A security vulnerability exists in Intel VTune Profiler...

Intel VTune Profiler 安全漏洞

Intel VTune Profiler is a performance testing tool for optimized software from Intel USA. The software performs performance testing of IoT embedded applications, media software, Java applications, and high-performance computing applications. A security vulnerability exists in versions prior to...