PT-2023-4690 · Unknown · Sicam Toolbox Ii

Name of the Vulnerable Software and Affected Versions: SICAM TOOLBOX II versions prior to V07.10 Description: A vulnerability has been identified in the SICAM TOOLBOX II application, where the database service is executed as NT AUTHORITYSYSTEM. This could allow a local attacker to execute operati...

The vulnerability of Huawei 535-232a router’s micro-programming software, related to access control errors when processing domain names, allows a hacker to intercept packets.

The vulnerability of Huawei 535-232a router’s microprogramming software is related to access control errors during the processing of domain names. Exploiting this vulnerability allows a remote attacker to intercept packets...

The vulnerability of the built-in software of the ARIS controller, related to access control errors, allows a intruder to increase their privileges within the system.

The vulnerability of the built-in software of the ARIS controller is related to access control errors. Exploiting this vulnerability can allow a malicious actor, operating remotely, to increase their privileges within the system...

PT-2023-3140 · Huawei · Huawei Ar Routers

Name of the Vulnerable Software and Affected Versions: Huawei routers affected versions not specified Description: The issue is related to a traffic hijacking vulnerability. It can be exploited to hijack packets by attackers. The vulnerability is associated with errors in access control when...

The vulnerability of microprogramming software in Hikvision Hybrid SAN storage systems, related to access control errors, allows attackers to elevate their privileges to the level of administrators.

The vulnerability of the microprogramming software of Hikvision Hybrid SAN storage systems is related to access control errors. Exploiting this vulnerability can allow a malicious actor, operating remotely, to elevate their privileges to the level of an administrator...

Vulnerability in the Azure application service in Azure Stack, allowing attackers to escalate their privileges

The vulnerability of Azure application services in Azure Stack is related to access control errors. Exploiting this vulnerability could allow a malicious actor to increase their privileges remotely...

PT-2023-1421 · Microsoft · Azure App Service

Name of the Vulnerable Software and Affected Versions: Azure App Service on Azure Stack Hub affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in Azure App Service on Azure Stack Hub. It is associated with access control errors. Exploitati...

The vulnerability of the log management tool vRealize Log Insight and the VMware Cloud Foundation virtualization platform, related to access control errors, allows a perpetrator to execute arbitrary code.

The vulnerability of the log management tool vRealize Log Insight and the virtualization platform VMware Cloud Foundation is related to access control errors. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the MasterUserEdit application interface of the cloud-based corporate solution for planning and managing Jira Align (formerly AgileCraft) programs and IT projects allows a malicious individual to increase their privileges.

The vulnerability of the MasterUserEdit application interface of the cloud-based corporate solution for planning and managing Jira Align formerly AgileCraft programs and IT projects is related to access control errors. Exploiting this vulnerability can allow a malicious actor to increase their...

PT-2022-5943 · Hikvision · Hikvision Ds-3Wf01C-2N/O +1

Name of the Vulnerable Software and Affected Versions: Hikvision DS-3WF0AC-2NT versions affected versions not specified Hikvision DS-3WF01C-2N/O versions affected versions not specified Description: The issue is related to access control errors in the web server of certain Hikvision wireless brid...

The vulnerability of the Azure Arc for local infrastructure connection software in Azure Stack Edge storage services allows a perpetrator to escalate their privileges.

The vulnerability of the Azure Arc for local infrastructure connection software in Azure Stack Edge storage solutions is related to access control errors. Exploiting this vulnerability could allow an attacker to increase their privileges remotely...

The vulnerability of the shell command line interface in IPython’s interactive computing environment allows a hacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the shell command line interface for interactive IPython computations is related to access control errors. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the Windows operating system’s kernel, which allows a hacker to disclose protected information

The vulnerability of the Windows operating system’s kernel is related to access control errors. Exploiting this vulnerability can allow an attacker to disclose protected information through a specially created application...

The vulnerability of the Azure RTOS GUIX Studio development environment, related to access segmentation faults, allows attackers to disclose protected information.

The vulnerability of the Azure RTOS GUIX Studio development environment is related to access control errors. Exploiting this vulnerability could allow an attacker to disclose sensitive information through a specially created application...

The vulnerability of microprogrammed software in Digi ConnectPort X2D port converters, related to access control errors, allows a hacker to execute arbitrary code.

The vulnerability of the microprogrammed software for Digi ConnectPort X2D converters is related to access control errors. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by loading specially crafted Python files...

PT-2022-4558 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue is related to an elevation-of-privilege vulnerability in the Microsoft Windows operating system, specifically concerning errors in access control. This vulnerability can...

PT-2022-4422 · Microsoft · Azure Rtos Guix Studio

Name of the Vulnerable Software and Affected Versions: Azure RTOS GUIX Studio affected versions not specified Description: The issue is related to access control errors in the Azure RTOS GUIX Studio development environment, which can lead to information disclosure. An attacker could exploit this ...

The vulnerability of the ImageCast X ballot marking device’s software, related to access control errors, allows a violator to execute arbitrary code.

The vulnerability of the ImageCast X ballot marking device’s software is related to access control errors. Exploiting this vulnerability could allow a perpetrator to execute arbitrary code using a specially created binary file with the setuid flag...

The vulnerability of the OCI (Open Container Initiative) Hotdog function, related to access control errors, allows attackers to increase their privileges.

The vulnerability of the OCI Open Container Initiative Hotdog function is related to access control errors. Exploiting this vulnerability can allow attackers to enhance their privileges...

PT-2022-3558 · Hotdog · Hotdog

Name of the Vulnerable Software and Affected Versions: Hotdog versions prior to 1.0.1 Description: The issue is related to errors in access control, allowing a container to gain full privileges on the host and bypass restrictions set on the container. This could enable an attacker to elevate thei...