401 matches found
CVE-2015-7965
Technical details about CVE-2015-7965 are not publicly available in the provided documents; connected sources list related entries with generic malware notes. Monitor for updates.
CVE-2015-7964
Technical details for CVE-2015-7964 are not publicly available in the provided connected documents; no affected products, vulnerable components, or mitigations are specified here. Monitor for updates.
CVE-2015-7961
Technical details about CVE-2015-7961 are not provided in the connected documents; the Initial Description mentions privilege escalation from weak ACLs but provides no product/version specifics. Monitor for updates.
CVE-2015-7967
CVE-2015-7967 affects SafeNet Authentication Service for Citrix Web Interface Agent. The issue arises from a weak ACL on unspecified installation directories and executable modules, enabling local users to escalate privileges by modifying an executable module. The provided sources include CVSS me...
CVE-2015-7966
Technical details for CVE-2015-7966 are not publicly available in the provided documents; no affected products, versions, or remediation are specified here. Monitor for updates.
CVE-2015-7963
Technical details about CVE-2015-7963 are not publicly available in the provided documents; no affected product/version or fix is described here. Monitor for updates.
CVE-2015-7597
Technical details for CVE-2015-7597 are not publicly available in the provided documents. Monitor for updates.
CVE-2015-7596
Technical details about CVE-2015-7596 are not publicly available in the provided documents; monitor for updates from official advisories and vendors.
CVE-2015-7597
SafeNet Authentication Service IIS Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module...
CVE-2015-7598
SafeNet Authentication Service TokenValidator Proxy Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module...
CVE-2015-7963
SafeNet Authentication Service for AD FS Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module...
CVE-2015-7964
SafeNet Authentication Service for NPS Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module...
CVE-2015-7966
SafeNet Authentication Service Windows Logon Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module, a different vulnerability than CVE-2015-7965...
CVE-2015-7967
SafeNet Authentication Service for Citrix Web Interface Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module...
CVE-2015-7596
SafeNet Authentication Service End User Software Tools for Windows uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module...
Pivotal Cloud Foundry and UAA elevation of privilege vulnerability (CNVD-2018-04368)
Pivotal Cloud Foundry PCF is a product of Pivotal Software, Inc. of the U.S. PCF is an open-source Platform-as-a-Service PaaS cloud computing platform that provides container scheduling, continuous delivery, and automated service deployment, among other capabilities.UAA is an authentication and...
Apache Sling Authentication Service Credential Leakage Vulnerability
Apache Sling is the United States Apache Apache Software Foundation for the Java platform for a set of open source Web framework. The framework can be created in the JCR content repository Java Content Repository on the content-oriented applications . Authentication Service is one of the...
Design/Logic Flaw
A flaw in the org.apache.sling.auth.core.AuthUtilisRedirectValid method in Apache Sling Authentication Service 1.4.0 allows an attacker, through the Sling login form, to trick a victim to send over their credentials...
CVE-2017-15700
A flaw in the org.apache.sling.auth.core.AuthUtilisRedirectValid method in Apache Sling Authentication Service 1.4.0 allows an attacker, through the Sling login form, to trick a victim to send over their credentials...
CVE-2017-15700
A flaw in the org.apache.sling.auth.core.AuthUtilisRedirectValid method in Apache Sling Authentication Service 1.4.0 allows an attacker, through the Sling login form, to trick a victim to send over their credentials...