19 matches found
EUVD-2024-23259
Malicious code in bioql PyPI...
CVE-2024-25956
Dell Grab for Windows, versions 5.0.4 and below, contains an improper file permissions vulnerability. A locally authenticated attacker could potentially exploit this vulnerability, leading to the information disclosure of certain system information...
CVE-2024-25958
Dell Grab for Windows, versions up to and including 5.0.4, contain Weak Application Folder Permissions vulnerability. A local authenticated attacker could potentially exploit this vulnerability, leading to privilege escalation, unauthorized access to application data, unauthorized modification of...
CVE-2024-25956
Dell Grab for Windows, versions 5.0.4 and below, contains an improper file permissions vulnerability. A locally authenticated attacker could potentially exploit this vulnerability, leading to the information disclosure of certain system information...
CVE-2024-25957
Dell Grab for Windows, versions 5.0.4 and below, contains a cleartext storage of sensitive information vulnerability in its appsync module. An authenticated local attacker could potentially exploit this vulnerability, leading to information disclosure that could be used to access the appsync...
CVE-2024-25957
Dell Grab for Windows, versions 5.0.4 and below, contains a cleartext storage of sensitive information vulnerability in its appsync module. An authenticated local attacker could potentially exploit this vulnerability, leading to information disclosure that could be used to access the appsync...
CVE-2024-25958
Dell Grab for Windows, versions up to and including 5.0.4, contain Weak Application Folder Permissions vulnerability. A local authenticated attacker could potentially exploit this vulnerability, leading to privilege escalation, unauthorized access to application data, unauthorized modification of...
CVE-2024-25956
Dell Grab for Windows, versions 5.0.4 and below, contains an improper file permissions vulnerability. A locally authenticated attacker could potentially exploit this vulnerability, leading to the information disclosure of certain system information...
CVE-2024-25956
Dell Grab for Windows, versions 5.0.4 and below, contains an improper file permissions vulnerability. A locally authenticated attacker could potentially exploit this vulnerability, leading to the information disclosure of certain system information...
CVE-2024-25956
Dell Grab for Windows (Dell Grab) vulnerable in versions 5.0.4 and below due to improper file permissions. A locally authenticated attacker could potentially disclose certain system information. Root cause: incorrect/absent restrictive permissions on affected files. Impact is confidentiality risk...
CVE-2024-25957
Dell Grab for Windows, versions 5.0.4 and below, contains a cleartext storage of sensitive information vulnerability in its appsync module. An authenticated local attacker could potentially exploit this vulnerability, leading to information disclosure that could be used to access the appsync...
CVE-2024-25957
Dell Grab for Windows, versions 5.0.4 and below, contains a cleartext storage of sensitive information vulnerability in its appsync module. An authenticated local attacker could potentially exploit this vulnerability, leading to information disclosure that could be used to access the appsync...
CVE-2024-25957
Dell Grab for Windows (5.0.4 and earlier) has a vulnerability in the appsync module where sensitive data is stored in plaintext, allowing an authenticated local attacker to disclose information that could grant access to the appsync application with elevated privileges. This is a locally exploita...
CVE-2024-25958
Dell Grab for Windows, versions up to and including 5.0.4, contain Weak Application Folder Permissions vulnerability. A local authenticated attacker could potentially exploit this vulnerability, leading to privilege escalation, unauthorized access to application data, unauthorized modification of...
CVE-2024-25958
Dell Grab for Windows (up to 5.0.4) contains a Weak Application Folder Permissions vulnerability that can be exploited by a local authenticated attacker to achieve privilege escalation, access/modify application data, and potentially disrupt services. Root cause is improper folder permissions wit...
Dell Grab 日志信息泄露漏洞
Dell Grab is a configuration technology from Dell, Inc. It is used to collect data on hosts connected to Dell EMC storage devices. A log information disclosure vulnerability exists in Dell Grab 5.0.4 and prior versions, which stems from the appsync module containing sensitive information stored i...
Dell Grab 安全漏洞
Dell Grab is a configuration technology from Dell, Inc. It is used to collect data on hosts connected to Dell EMC storage devices. A security vulnerability exists in Dell Grab version 5.0.4 and earlier, which stems from a system containing an incorrect file permission vulnerability that results i...
PT-2024-21242 · Dell · Dell Grab For Windows
Name of the Vulnerable Software and Affected Versions: Dell Grab for Windows versions up to and including 5.0.4 Description: The issue allows a local authenticated attacker to potentially exploit Weak Application Folder Permissions, leading to privilege escalation, unauthorized access to...
Dell Grab 安全漏洞
Dell Grab is a configuration technology from Dell, Inc. It is used to collect data on hosts connected to Dell EMC storage devices. A security vulnerability exists in Dell Grab 5.0.4 and prior versions, which stems from a vulnerability in application folder permissions that could be exploited by a...