Lucene search
K

6 matches found

CNNVD
CNNVD
added 2024/11/18 12:0 a.m.5 views

Moodle 授权问题漏洞

Moodle is Moodle open source set of free e-learning software platform, also known as course management system, learning management system or virtual learning environment. Moodle suffers from an authorization issue vulnerability that stems from the need to perform additional checks to ensure that ...

4.3CVSS7AI score0.00281EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/06/19 12:0 a.m.7 views

The vulnerability of the Windows SMB Witness service allows a hacker to bypass access control procedures for RPC processes.

The vulnerability of the Windows SMB Witness service for Windows operating systems is related to security configuration errors. Exploiting this vulnerability could allow a malicious actor to bypass access checks for RPC procedures using a specially created script...

7.5CVSS7.4AI score0.01203EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/06/13 12:0 a.m.2 views

PT-2023-3123 · Microsoft · Windows Server +1

Name of the Vulnerable Software and Affected Versions: Windows Server Service affected versions not specified Description: The issue is related to errors in security settings of the Windows Server operating system, allowing a remote attacker to bypass access checks to RPC procedures using a...

8CVSS9.3AI score0.00773EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2020/11/04 1:45 a.m.4 views

squid: Improper input validation in URI processor

An issue was discovered in Squid before 4.9. When handling a URN request, a corresponding HTTP request is made. This HTTP request doesn't go through the access checks that incoming HTTP requests go through. This causes all access checks to be bypassed and allows access to restricted HTTP servers,...

9.1CVSS5.8AI score0.04302EPSS
Exploits0References5
OSV
OSV
added 2019/11/26 5:15 p.m.3 views

DEBIAN-CVE-2019-12523

An issue was discovered in Squid before 4.9. When handling a URN request, a corresponding HTTP request is made. This HTTP request doesn't go through the access checks that incoming HTTP requests go through. This causes all access checks to be bypassed and allows access to restricted HTTP servers,...

9.1CVSS6.7AI score0.04302EPSS
Exploits0References1
OSV
OSV
added 2018/01/25 4:29 p.m.3 views

ALPINE-CVE-2017-15365

sql/eventdataobjects.cc in MariaDB before 10.1.30 and 10.2.x before 10.2.10 and Percona XtraDB Cluster before 5.6.37-26.21-3 and 5.7.x before 5.7.19-29.22-3 allows remote authenticated users with SQL access to bypass intended access restrictions and replicate data definition language DDL statemen...

8.8CVSS7.4AI score0.03287EPSS
Exploits0References1
Rows per page
Query Builder