31 matches found
DarkSword iPhone Exploit Leaked Online, Hundreds of Millions at Risk
DarkSword exploit leak puts up to 270 million iPhones at risk, with hackers able to access data through…...
MiracleLinux 3 : xorg-x11-server-1.1.1-48.76.1.0.1.AXS3 (AXSA:2010-270:03)
The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2010-270:03 advisory. The X.Org X11 X server Security issues fixed with this release: CVE-2010-1166 No description available at the time of writing, please use the link provided...
CVE-2025-46406
CVE-2025-46406 describes a Privilege Context Switching Error (CWE-270) in Gallagher Command Centre Server. A privileged Operator with high-level access in one Division could perform limited privileged activities across the Division boundary, potentially enabling cross-division elevation of privil...
CVE-2023-0270
The YaMaps for WordPress Plugin WordPress plugin before 0.6.26 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting...
CVE-2024-36513
CVE-2024-36513 describes a privilege context switching error (CWE-270) in FortiClient for Windows. Publicly documented affected versions include FortiClient Windows 7.2.4 and below, 7.0.12 and below, and 6.4 across all versions, where an authenticated user may escalate privileges via lua auto pat...
cockpit: command injection when deleting a sosreport with a crafted name
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer...
cockpit: command injection when deleting a sosreport with a crafted name
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer...
SUSE CVE-2024-2947
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer...
DEBIAN-CVE-2024-2947
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer...
UBUNTU-CVE-2024-2947
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer...
Slackware: Security Advisory (SSA:2017-270-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Google: We're Tracking 270 State-Sponsored Hacker Groups From Over 50 Countries
Google's Threat Analysis Group TAG on Thursday said it's tracking more than 270 government-backed threat actors from more than 50 countries, adding it has approximately sent 50,000 alerts of state-sponsored phishing or malware attempts to customers since the start of 2021. The warnings mark a 33%...
pycnet-audio (>=0.5.1 <=0.5.8) potentially affected by CVE-2020-15190 via tensorflow-cpu (=2.2.0)
tensorflow-cpu PYPI version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on tensorflow-cpu and may be impacted: - pycnet-audio =0.5.1, =0.5.8 Source cves: CVE-2020-15190 Source advisory: OSV:PYSEC-2020-270...
fujifilm-store-nrw.de Cross Site Scripting vulnerability
Security Researcher MitRauch Helped patch 270 vulnerabilities Received 3 Coordinated Disclosure badges Received 5 recommendations , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting fujifilm-store-nrw.de website and its users. Following...
CVE-2019-11271
Cloud Foundry BOSH 270.x versions prior to v270.1.1, contain a BOSH Director that does not properly redact credentials when configured to use a MySQL database. A local authenticated malicious user may read any credentials that are contained in a BOSH manifest...
CVE-2019-11271 Bosh Deployment logs leak sensitive information
Cloud Foundry BOSH 270.x versions prior to v270.1.1, contain a BOSH Director that does not properly redact credentials when configured to use a MySQL database. A local authenticated malicious user may read any credentials that are contained in a BOSH manifest...
Schneider Electric PowerLogic ION6200 Power Meter Detection
Binary data 270.prm...
[SECURITY] [DLA 1715-1] linux-4.9 security update
Package : linux-4.9 Version : 4.9.144-3.1deb8u1 CVE ID : CVE-2017-18249 CVE-2018-1128 CVE-2018-1129 CVE-2018-3639 CVE-2018-5391 CVE-2018-5848 CVE-2018-6554 CVE-2018-12896 CVE-2018-13053 CVE-2018-13096 CVE-2018-13097 CVE-2018-13100 CVE-2018-13406 CVE-2018-14610 CVE-2018-14611 CVE-2018-14612...
Debian DSA-4313-1 : linux - security update
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks. - CVE-2018-15471 XSA-270 Felix Wilhelm of Google Project Zero discovered a flaw in the hash handling of the xen-netback Linux kernel module. A maliciou...
CVE-2018-1000400
Kubernetes CRI-O version prior to 1.9 contains a Privilege Context Switching Error CWE-270 vulnerability in the handling of ambient capabilities that can result in containers running with elevated privileges, allowing users abilities they should not have. This attack appears to be exploitable via...