GHSA-GRV5-W5VR-8H98 Path Traversal in droppy

This affects all versions of package droppy. It is possible to traverse directories to fetch configuration files from a droopy server...

susi_server 路径遍历漏洞

susiserver is a software application. It provides the ability to perform actions such as playing music, making task lists, setting alerts, streaming podcasts, playing audiobooks, and providing weather, traffic, and other real-time information through the use of an API that is capable of chatting...

EulerOS 2.0 SP3 : spamassassin (EulerOS-SA-2021-1851)

According to the versions of the spamassassin package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Apache SpamAssassin before 3.4.3, nefarious CF files can be configured to run system commands without any output or errors. With this,...

Arbitrary Code Execution

NetHack is vulmnerable to arbitrary code execution. A buffer overflow vulnerability when reading very long lines from configuration files allows an attacker to exploit the vulnerability to obtain arbitrary code execution on the host OS...

CVE-2021-3451

A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.400.3252, that could allow configuration files to be written to non-standard locations...

CVE-2021-3451

A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.400.3252, that could allow configuration files to be written to non-standard locations...

Denial of service

A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.400.3252, that could allow configuration files to be written to non-standard locations...

CVE-2021-3451

A denial of service vulnerability was reported in Lenovo PCManager, prior to version 3.0.400.3252, that could allow configuration files to be written to non-standard locations...

Lenovo PCManager 安全漏洞

Lenovo Lenovo Pcmanager Lenovo Computer Manager is a software program from Lenovo, China that allows comprehensive management of Pc devices. A security vulnerability exists in Lenovo PCManager that allows configuration files to be written to non-standard locations...

Authentication bypass in FortiWAN

A relative path traversal vulnerability CWE-23 in FortiWAN may allow a remote non-authenticated attacker to delete files on the system by sending a crafted POST request. In particular, deleting specific configuration files will reset the Admin password to its default value...

The vulnerability of the programmable logic controller Schneider Electric Modicon Quantum, related to the insufficient reliability of passwords, allows a intruder to alter the contents of configuration files.

The vulnerability of the programmable logic controller Schneider Electric Modicon Quantum is related to the insufficient security of passwords. Exploiting this vulnerability could allow an attacker to modify the contents of configuration files using the built-in FTP server passwords...

Wowza Media Systems Streaming Engine Permission License and Access Control Issues Vulnerability

Wowza Media Systems Streaming Engine is a suite of streaming media server software from Wowza Media Systems in the United States. A privilege-granting and access-control issue vulnerability exists in Wowza Media Systems Streaming Engine 4.8.5 and earlier versions, which stems from a file-permissi...

Fedora: Security Advisory for containers-common (FEDORA-2021-ec00da7faa)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for containers-common (FEDORA-2021-83b3740389)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 34 Update: containers-common-1-15.fc34

This package contains common configuration files and documentation for cont ainer tools ecosystem, such as Podman, Buildah and Skopeo. It is required because the most of configuration files and docs come from p rojects which are vendored into Podman, Buildah, Skopeo, etc. but they are not pack ag...

[SECURITY] Fedora 33 Update: containers-common-1-15.fc33

This package contains common configuration files and documentation for cont ainer tools ecosystem, such as Podman, Buildah and Skopeo. It is required because the most of configuration files and docs come from p rojects which are vendored into Podman, Buildah, Skopeo, etc. but they are not pack ag...

CVE-2021-22682

Cscape All versions prior to 9.90 SP4 is configured by default to be installed for all users, which allows full permissions, including read/write access. This may allow unprivileged users to modify the binaries and configuration files and lead to local privilege escalation...

CVE-2021-31540

Wowza Streaming Engine through 4.8.5 in a default installation has incorrect file permissions of configuration files in the conf/ directory. A regular local user is able to read and write to all the configuration files, e.g., modify the application server configuration...

CVE-2021-31540

Wowza Streaming Engine through 4.8.5 in a default installation has incorrect file permissions of configuration files in the conf/ directory. A regular local user is able to read and write to all the configuration files, e.g., modify the application server configuration...

Design/Logic Flaw

Wowza Streaming Engine through 4.8.5 in a default installation has incorrect file permissions of configuration files in the conf/ directory. A regular local user is able to read and write to all the configuration files, e.g., modify the application server configuration...