Lucene search
K

10 matches found

OSV
OSV
added 2026/03/26 5:48 p.m.2 views

SUSE-SU-2026:1091-1 Security update for kea

This update for kea fixes the following issues: Update to release 2.6.3 bsc1243240: - CVE-2025-32801: Fixed loading a malicious hook library can lead to local privilege escalation. - CVE-2025-32802: Fixed insecure handling of file paths allows multiple local attacks. - CVE-2025-32803: Fixed...

7.8CVSS5.9AI score0.00235EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/16 3:12 p.m.16 views

Security Bulletin: File permission modification, improper access control, and other vulnerabilities might affect IBM Storage Defender - Resiliency Service

Summary IBM Storage Defender - Resiliency Service is vulnerable to file permission modification, improper access control, and others. The vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2026-24049 DESCRIPTION: wheel is a command line tool for manipulating Python wheel files, ...

8.8CVSS8.9AI score0.01495EPSS
Exploits3Affected Software1
EUVD
EUVD
added 2025/12/23 12:30 a.m.7 views

EUVD-2022-55752

Wondershare MirrorGo 2.0.11.346 contains a local privilege escalation vulnerability due to incorrect file permissions on executable files. Unprivileged local users can replace the ElevationService.exe with a malicious file to execute arbitrary code with LocalSystem privileges...

8.5CVSS7.3AI score0.00112EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/02/26 9:3 p.m.30 views

CVE-2024-27456

An insecure file permission flaw was found in rack-cors. The permissions for .rb files distributed with rack-cors ruby gem are set to 0666 by default, which may allow users with low privileges to edit files. This issue impacts integrity, confidentiality, and availability...

7.8CVSS6.8AI score0.00771EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/03/28 12:0 a.m.5 views

SDM600 代码问题漏洞

ABB SDM600 is a system data manager from ABB Switzerland. A security vulnerability exists in SDM600 versions prior to 1.2.23000.291, which stems from the presence of a file permission validation vulnerability that could be exploited by an attacker to cause arbitrary code execution...

9.9CVSS8.6AI score0.00781EPSS
Exploits0References3
OSV
OSV
added 2022/05/17 8:15 p.m.4 views

CVE-2022-0486

Improper file permissions in the CommandPost, Collector, Sensor, and Sandbox components of Fidelis Network and Deception enables an attacker with local, administrative access to the CLI to modify affected files and enable escalation of privileges equivalent to the root user. The vulnerability is...

7.8CVSS5.8AI score0.00375EPSS
Exploits1References1
OSV
OSV
added 2021/07/19 10:15 p.m.5 views

CVE-2020-29503

Dell EMC PowerStore versions prior to 1.0.3.0.5.xxx contain a file permission Vulnerability. A locally authenticated attacker could potentially exploit this vulnerability, leading to the information disclosure of certain system directory...

4.4CVSS5.8AI score0.00203EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2021/02/11 3:31 p.m.30 views

CVE-2021-20188

A flaw was found in podman before 1.7.0. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the container to access any other file in the container, even if owned by the root user inside the...

7CVSS6.6AI score0.00261EPSS
Exploits0
OSV
OSV
added 2020/04/30 10:15 p.m.7 views

CVE-2020-1817

Huawei PCManager with versions earlier than 10.0.1.36 has a privilege escalation vulnerability. Due to improper permission management of specific files, local attackers with low permissions can inject commands to exploit this vulnerability. Successful exploit may cause privilege escalation...

7.8CVSS7.1AI score0.00221EPSS
Exploits0References1
Veracode
Veracode
added 2019/05/02 4:53 a.m.29 views

Denial Of Service (DoS)

kernel-rt is vulnerable to denial of service. A flaw was found in the way file permission checks for the /dev/kmsg file were performed in restricted root environments for example, when using a capability-based security model. A local user able to write to this file could cause a denial of service...

4CVSS5.4AI score0.00377EPSS
Exploits0References12Affected Software1
Rows per page
Query Builder