The vulnerability of the Crash Reporter component in operating systems such as Mac OS, tvOS, iOS, iPadOS, and watchOS allows a hacker to modify any files they desire.

The vulnerability of the Crash Reporter component in operating systems such as Mac OS, tvOS, iOS, iPadOS, and watchOS is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to modify arbitrary files...

CVE-2021-44023

A link following denial-of-service DoS vulnerability in the Trend Micro Security Consumer 2021 familiy of products could allow an attacker to abuse the PC Health Checkup feature of the product to create symlinks that would allow modification of files which could lead to a denial-of-service...

CVE-2021-29678

CVE-2021-29678 affects IBM Db2 for Linux, UNIX and Windows (including Db2 Connect Server) versions 9.7, 10.1, 10.5, 11.1, and 11.5. A user with DBADM authority could access other databases and read or modify files, indicating an information disclosure vulnerability. The connected IBM bulletins en...

CVE-2021-43772

Trend Micro Security 2021 v17.0 Consumer contains a vulnerability that allows files inside the protected folder to be modified without any detection...

CVE-2021-43772

Trend Micro Security 2021 v17.0 Consumer contains a vulnerability that allows files inside the protected folder to be modified without any detection...

CVE-2021-43772

Trend Micro Security 2021 v17.0 Consumer contains a vulnerability that allows files inside the protected folder to be modified without any detection...

CVE-2021-43772

Trend Micro Security 2021 family (Consumer) Product: Trend Micro Security 2021 v17.0 (Consumer). Vulnerability: A security feature issue in Folder Shield allows a local user to modify files inside a Folder Shield–protected folder without detection, potentially bypassing protections and compromisi...

GNU Hurd has an unspecified vulnerability (CNVD-2021-100612)

Gnu Hurd is a Gnu project replacement for the Unix kernel. A security vulnerability exists in GNU Hurd, which stems from the fact that in versions of GNU Hurd prior to 0.9 20210404-9 each person who maps a file shares a page navigation port, allowing anyone to modify any file they can read. any...

U.S. Dept Of Defense: Unauthenticated Access to Admin Panel Functions at https://██████████/████████

Description: I discovered that the admin panel at https://████/█████ and all its functions can be accessed without authentication. Impact An attacker is able to use the administrative functions in order to upload, delete or modify files. System Hosts ████████ Affected Products and Versions ██████...

CVE-2021-43413

An issue was discovered in GNU Hurd before 0.9 20210404-9. A single pager port is shared among everyone who mmaps a file, allowing anyone to modify any files that they can read. This can be trivially exploited to get full root access...

CVE-2021-43413

An issue was discovered in GNU Hurd before 0.9 20210404-9. A single pager port is shared among everyone who mmaps a file, allowing anyone to modify any files that they can read. This can be trivially exploited to get full root access...

CVE-2021-43413

The CVE-2021-43413 entry concerns GNU Hurd before 0.9 20210404-9. A single pager port is shared among all processes that mmap a file, enabling any reader to modify files they can read and thereby potentially gain full root access. Available sources (NVD/Red Hat/Debian/CNVD/CVEdoc) reiterate this ...

GNU Hurd 安全漏洞

Gnu Hurd is a Gnu project replacement for the Unix kernel. A security vulnerability exists in GNU Hurd, which stems from the fact that in versions of GNU Hurd prior to 0.9 20210404-9 each person who maps a file shares a page navigation port, allowing anyone to modify any file they can read. any...

CVE-2021-35053

Possible system denial of service in case of arbitrary changing Firefox browser parameters. An attacker could change specific Firefox browser parameters file in a certain way and then reboot the system to make the system unbootable...

CVE-2021-38471

There are multiple API function codes that permit data writing to any file, which may allow an attacker to modify existing files or create new files...

CVE-2021-38471

CVE-2021-38471 affects AUVESY Versiondog. The vulnerability arises from multiple API function codes that permit writing data to arbitrary files, enabling an attacker to modify existing files or create new ones. The NVD entry attributes a high impact (integrity and availability) with a CVSS v3 bas...

CVE-2021-38471 AUVESY Versiondog

There are multiple API function codes that permit data writing to any file, which may allow an attacker to modify existing files or create new files...

CVE-2021-1419

CVE-2021-1419 affects Cisco Access Points (APs) SSH management interface, where improper checking of file operations allows a local, authenticated user to modify files and potentially gain root privileges. The root cause is input/file operation validation within the SSH management feature. Affect...

Cisco Access Points 安全漏洞

Cisco Access Points is a network access point device from Cisco. A security vulnerability exists in the Cisco Access Points platforms, which is caused by an incorrect file operation check in the SSH management interface. An attacker could use this vulnerability to allow a local authenticated user...

CVE-2021-41525

An issue related to modification of otherwise restricted files through a locally authenticated attacker exists in FlexNet inventory agent and inventory beacon versions 2020 R2.5 and prior...