3977 matches found
CVE-2021-36279
Dell EMC PowerScale OneFS versions 8.2.x–9.2.x are affected by an Incorrect Permission Assignment for a Critical Resource vulnerability. The root cause is misconfigured permissions that can allow a user with ISI_PRIV_LOGIN_SSH or ISI_PRIV_LOGIN_CONSOLE to access privileged cluster information. Im...
Dell EMC PowerScale 安全漏洞
Dell EMC PowerScale OneFS is an API-driven file system. version 8.2.-9.2. of Dell EMC PowerScale OneFS is vulnerable to incorrect critical resource privilege assignment. An attacker could use this vulnerability to gain unauthorized access to cluster-related information...
OpenSSL: DoS Vulnerability (CVE-2004-0079) - Windows
OpenSSL is prone to a denial of service DoS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...
The vulnerability of Kubernets Rancher cluster management software, related to errors in privilege assignment, allows a hacker to modify resources within a cluster.
The vulnerability of Kubernets Rancher cluster management software is related to errors in privilege assignment. Exploiting this vulnerability allows a remote attacker to modify resources within the cluster...
Microsoft Windows Update Service Incorrect Permission Assignment Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Windows Update...
Abb Base Incorrect Permission Assignment for Critical Resource
Insufficient folder permissions used by system functions in ABB System 800xA products OPCServer for AC800M versions 6.0 and earlier and Control Builder M Professional, MMSServer for AC800M, Base Software for SoftControl version 6.1 and earlier allow low privileged users to read, modify, add and...
CVE-2021-32464
An incorrect permission assignment privilege escalation vulnerability in Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security Services could allow an attacker to modify a specific script before it is executed. Please note: an attacker must first obtain the ability to execu...
CVE-2021-32464
An incorrect permission assignment privilege escalation vulnerability in Trend Micro Apex One, Apex One as a Service and Worry-Free Business Security Services could allow an attacker to modify a specific script before it is executed. Please note: an attacker must first obtain the ability to execu...
Pimcore SQL注入漏洞
Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management, e-commerce framework and product information management applications. A security vulnerability exists in Pimcore that...
Trend Micro Worry-Free Business Security Incorrect Permission Assignment Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Worry-Free Business Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...
You’ve Found a Vulnerability! Now What? A Guide to Responsible Disclosure.
Information security researchers make a valuable contribution to our online security by finding vulnerabilities and facilitating getting them fixed. Wordfence has been finding and disclosing vulnerabilities in WordPress core, WordPress plugins, and WordPress themes since 2011. Our research has...
Exploit for CVE-2021-36934
CVE-2021-36934 !Screenshothttps://github...
Exploit for CVE-2021-36934
Invoke-HiveNightmare PowerShell-based PoC for CVE-2021-36934,...
Exploit for CVE-2021-36934
This is a PoC exploit for CVE-2021-36934, a vulnerability in the...
Exploit for CVE-2021-36934
ShadowSteal | CVE-2021-36934 Pure Nim implementation for explo...
CVE-2021-36746
Blackboard Learn through 9.1 allows XSS by an authenticated user via the Assignment Instructions HTML editor...
CVE-2021-36746
Blackboard Learn through 9.1 allows XSS by an authenticated user via the Assignment Instructions HTML editor...
Design/Logic Flaw
Blackboard Learn through 9.1 allows XSS by an authenticated user via the Assignment Instructions HTML editor...
CVE-2021-36746
Blackboard Learn (through version 9.1) is vulnerable to cross-site scripting (XSS) when an authenticated user uses the Assignment Instructions HTML editor. The issue is documented across multiple sources as an XSS flaw affecting Blackboard Learn 9.1, with the underlying cause described as a secur...
Design/Logic Flaw
An incorrect permission assignment denial-of-service vulnerability in Trend Micro Apex One, Apex One as a Service SaaS, Worry-Free Business Security 10.0 SP1 and Worry-Free Servgices could allow a local attacker to escalate privileges and delete files with system privileges on affected...