7263 matches found
Design/Logic Flaw
An execution with unnecessary privileges vulnerability CWE-250 in FortiClientWindows 7.0.0 through 7.0.3, 6.4.0 through 6.4.7, 6.2.0 through 6.2.9, 6.0.0 through 6.0.10 may allow a local attacker to perform an arbitrary file write on the system...
CVE-2022-26113
Fortinet FortiClient for Windows is affected by an execution with unnecessary privileges (CWE-250) vulnerability that permits a local attacker to perform an arbitrary file write. Affected versions cover FortiClientWindows 7.0.0–7.0.3, 6.4.0–6.4.7, 6.2.0–6.2.9, and 6.0.0–6.0.10. The issue is confi...
CVE-2022-26113
An execution with unnecessary privileges vulnerability CWE-250 in FortiClientWindows 7.0.0 through 7.0.3, 6.4.0 through 6.4.7, 6.2.0 through 6.2.9, 6.0.0 through 6.0.10 may allow a local attacker to perform an arbitrary file write on the system...
CVE-2022-26113
An execution with unnecessary privileges vulnerability CWE-250 in FortiClientWindows 7.0.0 through 7.0.3, 6.4.0 through 6.4.7, 6.2.0 through 6.2.9, 6.0.0 through 6.0.10 may allow a local attacker to perform an arbitrary file write on the system...
EulerOS Virtualization 2.10.0 : gzip (EulerOS-SA-2022-2089)
According to the versions of the gzip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - gzip: arbitrary-file-write vulnerability CVE-2022-1271 Note that Tenable Network Security has extracted the preceding description...
EulerOS Virtualization 2.10.1 : gzip (EulerOS-SA-2022-2109)
According to the versions of the gzip packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - gzip: arbitrary-file-write vulnerability CVE-2022-1271 Note that Tenable Network Security has extracted the preceding description...
EulerOS Virtualization 2.10.1 : xz (EulerOS-SA-2022-2124)
According to the versions of the xz packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - gzip: arbitrary-file-write vulnerability CVE-2022-1271 Note that Tenable Network Security has extracted the preceding description blo...
Huawei EulerOS: Security Advisory for gzip (EulerOS-SA-2022-2089)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for gzip (EulerOS-SA-2022-2109)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for xz (EulerOS-SA-2022-2124)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP9 : xz (EulerOS-SA-2022-2015)
According to the versions of the xz packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a...
EulerOS 2.0 SP9 : gzip (EulerOS-SA-2022-1998)
According to the versions of the gzip package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, ...
EulerOS 2.0 SP9 : xz (EulerOS-SA-2022-1985)
According to the versions of the xz packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a...
EulerOS 2.0 SP9 : gzip (EulerOS-SA-2022-1968)
According to the versions of the gzip package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, ...
Huawei EulerOS: Security Advisory for xz (EulerOS-SA-2022-2015)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for gzip (EulerOS-SA-2022-1968)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for gzip (EulerOS-SA-2022-1998)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for xz (EulerOS-SA-2022-1985)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
postgresql-jdbc: Arbitrary File Write Vulnerability
A flaw was found in Postgres JDBC. This flaw allows an attacker to use a method to write arbitrary files through the connection properties settings. For example, an attacker can create an executable file under the server the application is running and make it a new part of the application or serv...
Oracle Linux 9 : xz (ELSA-2022-4940)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-4940 advisory. 5.2.5-8 - Fix arbitrary file write vulnerability Resolves: CVE-2022-1271 Tenable has extracted the preceding description block directly from the Oracle Linux...