CVE-2022-24312

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause modification of an existing file by adding at end of file or create a new file in the context of the Data Server potentially leading to remote code execution when an attacker sends a...

CVE-2022-24312

A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists that could cause modification of an existing file by adding at end of file or create a new file in the context of the Data Server potentially leading to remote code execution when an attacker sends a...

The vulnerability of operating systems iPadOS, watchOS, iOS, tvOS, and Mac OS, related to security configuration errors, allows attackers to modify arbitrary files.

The vulnerabilities of operating systems iPadOS, watchOS, iOS, tvOS, and Mac OS are related to security configuration errors. Exploiting these vulnerabilities can allow attackers to modify arbitrary files...

CVE-2022-22789 Charactell - FormStorm Enterprise Account Take Over

Charactell - FormStorm Enterprise Account takeover – An attacker can modify add, remove and update passwords file for all the users. The xxusers.ini file in the FormStorm folder contains usernames in cleartext and an obfuscated password. Malicious user can take over an account by replacing existi...

The vulnerability of the Platinum Host Service (PtSvcHost.exe) implementation of Trend Micro Security’s antivirus protection allows a perpetrator to modify arbitrary files or cause service failures.

The vulnerability of the Platinum Host Service PtSvcHost.exe implementation of Trend Micro Security antivirus software is related to errors in handling symbolic links. Exploiting this vulnerability can allow an attacker to modify arbitrary files or cause service failures...

The vulnerability of the Crash Reporter component in operating systems such as Mac OS, tvOS, iOS, iPadOS, and watchOS allows a hacker to modify any files they desire.

The vulnerability of the Crash Reporter component in operating systems such as Mac OS, tvOS, iOS, iPadOS, and watchOS is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to modify arbitrary files...

CVE-2021-44023

A link following denial-of-service DoS vulnerability in the Trend Micro Security Consumer 2021 familiy of products could allow an attacker to abuse the PC Health Checkup feature of the product to create symlinks that would allow modification of files which could lead to a denial-of-service...

CVE-2021-29678

CVE-2021-29678 affects IBM Db2 for Linux, UNIX and Windows (including Db2 Connect Server) versions 9.7, 10.1, 10.5, 11.1, and 11.5. A user with DBADM authority could access other databases and read or modify files, indicating an information disclosure vulnerability. The connected IBM bulletins en...

CVE-2021-43772

Trend Micro Security 2021 v17.0 Consumer contains a vulnerability that allows files inside the protected folder to be modified without any detection...

CVE-2021-43772

Trend Micro Security 2021 v17.0 Consumer contains a vulnerability that allows files inside the protected folder to be modified without any detection...

CVE-2021-43772

Trend Micro Security 2021 v17.0 Consumer contains a vulnerability that allows files inside the protected folder to be modified without any detection...

CVE-2021-43772

Trend Micro Security 2021 family (Consumer) Product: Trend Micro Security 2021 v17.0 (Consumer). Vulnerability: A security feature issue in Folder Shield allows a local user to modify files inside a Folder Shield–protected folder without detection, potentially bypassing protections and compromisi...

GNU Hurd has an unspecified vulnerability (CNVD-2021-100612)

Gnu Hurd is a Gnu project replacement for the Unix kernel. A security vulnerability exists in GNU Hurd, which stems from the fact that in versions of GNU Hurd prior to 0.9 20210404-9 each person who maps a file shares a page navigation port, allowing anyone to modify any file they can read. any...

U.S. Dept Of Defense: Unauthenticated Access to Admin Panel Functions at https://██████████/████████

Description: I discovered that the admin panel at https://████/█████ and all its functions can be accessed without authentication. Impact An attacker is able to use the administrative functions in order to upload, delete or modify files. System Hosts ████████ Affected Products and Versions ██████...

CVE-2021-43413

An issue was discovered in GNU Hurd before 0.9 20210404-9. A single pager port is shared among everyone who mmaps a file, allowing anyone to modify any files that they can read. This can be trivially exploited to get full root access...

CVE-2021-43413

An issue was discovered in GNU Hurd before 0.9 20210404-9. A single pager port is shared among everyone who mmaps a file, allowing anyone to modify any files that they can read. This can be trivially exploited to get full root access...

CVE-2021-43413

The CVE-2021-43413 entry concerns GNU Hurd before 0.9 20210404-9. A single pager port is shared among all processes that mmap a file, enabling any reader to modify files they can read and thereby potentially gain full root access. Available sources (NVD/Red Hat/Debian/CNVD/CVEdoc) reiterate this ...

GNU Hurd 安全漏洞

Gnu Hurd is a Gnu project replacement for the Unix kernel. A security vulnerability exists in GNU Hurd, which stems from the fact that in versions of GNU Hurd prior to 0.9 20210404-9 each person who maps a file shares a page navigation port, allowing anyone to modify any file they can read. any...

CVE-2021-35053

Possible system denial of service in case of arbitrary changing Firefox browser parameters. An attacker could change specific Firefox browser parameters file in a certain way and then reboot the system to make the system unbootable...

CVE-2021-38471

There are multiple API function codes that permit data writing to any file, which may allow an attacker to modify existing files or create new files...