850 matches found
CVE-2024-7062
Nimble Commander suffers from a privilege escalation vulnerability due to the server info.filesmanager.Files.PrivilegedIOHelperV2 performing improper/insufficient validation of a client’s authorization before executing an operation. Consequently, it is possible to execute system-level commands as...
CVE-2024-7062
Nimble Commander suffers from a privilege escalation vulnerability due to the server info.filesmanager.Files.PrivilegedIOHelperV2 performing improper/insufficient validation of a client’s authorization before executing an operation. Consequently, it is possible to execute system-level commands as...
CVE-2024-7062 Local Privilege Escalation in Nimble Commander <= v1.6.0, Build 4087
Nimble Commander suffers from a privilege escalation vulnerability due to the server info.filesmanager.Files.PrivilegedIOHelperV2 performing improper/insufficient validation of a client’s authorization before executing an operation. Consequently, it is possible to execute system-level commands as...
CVE-2024-7062
CVE-2024-7062 affects Nimble Commander. The vulnerability is located in the server component info.filesmanager.Files.PrivilegedIOHelperV2 and arises from improper/insufficient validation of a client’s authorization before executing an operation. As described in the connected documents, this can e...
CVE-2024-7062 Local Privilege Escalation in Nimble Commander <= v1.6.0, Build 4087
Nimble Commander suffers from a privilege escalation vulnerability due to the server info.filesmanager.Files.PrivilegedIOHelperV2 performing improper/insufficient validation of a client’s authorization before executing an operation. Consequently, it is possible to execute system-level commands as...
PT-2024-38051 · Unknown · Nimble Commander
Name of the Vulnerable Software and Affected Versions: Nimble Commander affected versions not specified Description: The issue arises from the server's improper validation of a client's authorization, specifically in the info.filesmanager.Files.PrivilegedIOHelperV2 component. This allows for the...
Softvelum Nimble Commander 安全漏洞
Softvelum Nimble Commander is a media server software from Softvelum Inc. It is used to stream live and on-demand video and audio to desktop computers, mobile devices, Internet-connected TVs, and more. A security vulnerability exists in Softvelum Nimble Commander that originates from incorrect or...
Cybrosys Techno Solutions Text Commander 安全漏洞
Cybrosys Techno Solutions Text Commander is an application from Cybrosys Techno Solutions. A security vulnerability exists in Cybrosys Techno Solutions Text Commander versions 16.0 through 16.0.1. A remote attacker can exploit the vulnerability to gain privileges via the data parameter of...
CVE-2024-34534
A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module aka textcommander 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/irmodel.py:IrModel::chechmodel...
CVE-2024-34534
A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module aka textcommander 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/irmodel.py:IrModel::chechmodel...
PT-2024-25954 · Cybrosys Techno Solutions · Text Commander
Name of the Vulnerable Software and Affected Versions: Cybrosys Techno Solutions Text Commander module aka text commander versions 16.0 through 16.0.1 Description: A SQL injection vulnerability in the Text Commander module allows a remote attacker to gain privileges via the data parameter to...
CVE-2024-34534
CVE-2024-34534 affects Cybrosys Techno Solutions Text Commander module (text_commander) versions 16.0–16.0.1. A SQL injection via the data parameter to models/ir_model.py:IrModel::chech_model allows a remote attacker to gain privileges. CVSS v3.1: Networking, Low confidentiality/integrity/availab...
Hackers Target Middle East Governments with Evasive "CR4T" Backdoor
Government entities in the Middle East have been targeted as part of a previously undocumented campaign to deliver a new backdoor dubbed CR4T. Russian cybersecurity company Kaspersky said it discovered the activity in February 2024, with evidence suggesting that it may have been active since at...
SUSE CVE-2023-45925
GNU Midnight Commander 4.8.29-146-g299d9a2fb was discovered to contain a NULL pointer dereference via the function xerrorhandler at tty/x11conn.c. NOTE: this is disputed because it should be categorized as a usability problem an X operation silently fails...
CVE-2023-45925
GNU Midnight Commander 4.8.29-146-g299d9a2fb was discovered to contain a NULL pointer dereference via the function xerrorhandler at tty/x11conn.c. NOTE: this is disputed because it should be categorized as a usability problem an X operation silently fails...
DEBIAN-CVE-2023-45925
GNU Midnight Commander 4.8.29-146-g299d9a2fb was discovered to contain a NULL pointer dereference via the function xerrorhandler at tty/x11conn.c. NOTE: this is disputed because it should be categorized as a usability problem an X operation silently fails...
CVE-2023-45925
GNU Midnight Commander 4.8.29-146-g299d9a2fb was discovered to contain a NULL pointer dereference via the function xerrorhandler at tty/x11conn.c. NOTE: this is disputed because it should be categorized as a usability problem an X operation silently fails...
UBUNTU-CVE-2023-45925
DISPUTED GNU Midnight Commander 4.8.29-146-g299d9a2fb was discovered to contain a NULL pointer dereference via the function xerrorhandler at tty/x11conn.c. NOTE: this is disputed because it should be categorized as a usability problem an X operation silently fails...
CVE-2023-45925
GNU Midnight Commander 4.8.29-146-g299d9a2fb was discovered to contain a NULL pointer dereference via the function xerrorhandler at tty/x11conn.c. NOTE: this is disputed because it should be categorized as a usability problem an X operation silently fails...
GNU Midnight Commander 安全漏洞
GNU Midnight Commander is a visual file manager. A security vulnerability exists in GNU Midnight Commander version 4.8.29-146-g299d9a2fb, which stems from the discovery of a null pointer dereference vulnerability via the function xerrorhandler in tty/x11conn.c. The vulnerability is caused by the...