1649 matches found
SUSE-SU-2024:4295-1 Security update for socat
This update for socat fixes the following issues: - CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory in socat readline.sh bsc1225462...
Security update for socat
This update for socat fixes the following issues: CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory bsc1225462 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...
CVE-2024-41972 WAGO: Arbitrary File Overwrite Leading to Privileged File Read in Multiple Devices
A low privileged remote attacker can overwrite an arbitrary file on the filesystem which may lead to an arbitrary file read with root privileges...
CVE-2024-41971 WAGO: Arbitrary File Overwrite in Multiple Devices
A low privileged remote attacker can overwrite an arbitrary file on the filesystem leading to a DoS and data loss...
PT-2024-29671 · Wago · Cc100 0751-9X01 +10
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A low privileged remote attacker can overwrite an arbitrary file on the filesystem, leading to a Denial of Service DoS and data loss. Recommendations: A...
CVE-2023-20091 Cisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Overwrite Vulnerability
A vulnerability in the CLI of Cisco TelePresence CE and RoomOS could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device. This vulnerability is due to improper access controls on files that are on the local file system. An attacker...
CVE-2023-20091 Cisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Overwrite Vulnerability
A vulnerability in the CLI of Cisco TelePresence CE and RoomOS could allow an authenticated, local attacker to overwrite arbitrary files on the local file system of an affected device. This vulnerability is due to improper access controls on files that are on the local file system. An attacker...
Arbitrary File Overwrite in download_model_with_test_data in onnx/onnx
...
CVE-2024-34014
Arbitrary file overwrite during recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 1.8.3.818, Acronis Backup plugin for cPanel & WHM Linux before build 1.9.1.892, Acronis Backup extension for Plesk Linux...
CVE-2024-34014
Arbitrary file overwrite during recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 1.8.3.818, Acronis Backup plugin for cPanel & WHM Linux before build 1.9.1.892, Acronis Backup extension for Plesk Linux...
CVE-2024-34014
Arbitrary file overwrite during recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 1.8.3.818, Acronis Backup plugin for cPanel & WHM Linux before build 1.9.1.892, Acronis Backup extension for Plesk Linux...
CVE-2024-34014
CVE-2024-34014 affects Acronis Backup plugin for cPanel & WHM (Linux) prior to builds 1.8.3.818 and 1.9.1.892, Acronis Backup extension for Plesk prior to 1.8.6.599, and Acronis Backup plugin for DirectAdmin prior to 1.2.2.181. The vulnerability is an arbitrary file overwrite during recovery caus...
PT-2024-34531 · Hornetq · Hornetq
Name of the Vulnerable Software and Affected Versions: hornetq version 2.4.9 Description: An issue in the createTempFile method allows attackers to arbitrarily overwrite files or access sensitive information. Recommendations: For hornetq version 2.4.9, consider disabling the createTempFile method...
HornetQ 安全漏洞
HornetQ is an open source project from HornetQ Open Source for building multi-protocol, embeddable, very high performance clustered asynchronous messaging systems. A security vulnerability exists in HornetQ version v2.4.9, which stems from the createTempFile function allowing an attacker to...
CVE-2024-41183
Trend Micro VPN, version 5.8.1012 and below is vulnerable to an arbitrary file overwrite under specific conditions that can lead to elevation of privileges...
CVE-2024-41183
Trend Micro VPN, version 5.8.1012 and below is vulnerable to an arbitrary file overwrite under specific conditions that can lead to elevation of privileges...
CVE-2024-41183
Trend Micro VPN, version 5.8.1012 and below is vulnerable to an arbitrary file overwrite under specific conditions that can lead to elevation of privileges...
CVE-2024-41183
Trend Micro VPN, version 5.8.1012 and below is vulnerable to an arbitrary file overwrite under specific conditions that can lead to elevation of privileges...
CVE-2024-41183
CVE-2024-41183 affects Trend Micro VPN/VPN Proxy One Pro. Concrete details in connected sources show a local-privilege-escalation via arbitrary file overwrite in the DEP Manager (for Trend Micro VPN Proxy One Pro) and a similar path in VpnBackgroundController for Trend Micro VPN Proxy One Pro. Af...
Arbitrary File Overwrite
github.com/fkie-cad/yapscan is vulnerable to Arbitrary File Overwrite. The vulnerability is due to lack of client authentication and improper server permissions, allowing an attacker to forge requests that overwrite arbitrary files on the host system, potentially leading to data loss...