EUVD-2024-23259

Malicious code in bioql PyPI...

CVE-2024-25956

Dell Grab for Windows, versions 5.0.4 and below, contains an improper file permissions vulnerability. A locally authenticated attacker could potentially exploit this vulnerability, leading to the information disclosure of certain system information...

CVE-2024-25956

Dell Grab for Windows, versions 5.0.4 and below, contains an improper file permissions vulnerability. A locally authenticated attacker could potentially exploit this vulnerability, leading to the information disclosure of certain system information...

CVE-2024-25957

Dell Grab for Windows, versions 5.0.4 and below, contains a cleartext storage of sensitive information vulnerability in its appsync module. An authenticated local attacker could potentially exploit this vulnerability, leading to information disclosure that could be used to access the appsync...

CVE-2024-25958

Dell Grab for Windows, versions up to and including 5.0.4, contain Weak Application Folder Permissions vulnerability. A local authenticated attacker could potentially exploit this vulnerability, leading to privilege escalation, unauthorized access to application data, unauthorized modification of...

CVE-2024-25956

Dell Grab for Windows, versions 5.0.4 and below, contains an improper file permissions vulnerability. A locally authenticated attacker could potentially exploit this vulnerability, leading to the information disclosure of certain system information...

CVE-2024-25956

Dell Grab for Windows (Dell Grab) vulnerable in versions 5.0.4 and below due to improper file permissions. A locally authenticated attacker could potentially disclose certain system information. Root cause: incorrect/absent restrictive permissions on affected files. Impact is confidentiality risk...

CVE-2024-25957

Dell Grab for Windows, versions 5.0.4 and below, contains a cleartext storage of sensitive information vulnerability in its appsync module. An authenticated local attacker could potentially exploit this vulnerability, leading to information disclosure that could be used to access the appsync...

CVE-2024-25957

Dell Grab for Windows (5.0.4 and earlier) has a vulnerability in the appsync module where sensitive data is stored in plaintext, allowing an authenticated local attacker to disclose information that could grant access to the appsync application with elevated privileges. This is a locally exploita...

CVE-2024-25958

Dell Grab for Windows (up to 5.0.4) contains a Weak Application Folder Permissions vulnerability that can be exploited by a local authenticated attacker to achieve privilege escalation, access/modify application data, and potentially disrupt services. Root cause is improper folder permissions wit...