EUVD-2013-5260

Malware in sbrugna...

EUVD-2015-0624

Malware in sbrugna...

CVE-2020-25917

Stratodesk NoTouch Center before 4.4.68 is affected by: Incorrect Access Control. A low privileged user on the platform, for example a user with "helpdesk" privileges, can perform privileged operations including adding a new administrator to the platform via the easyadmin/user/submitCreateTCUser....

5 SaaS Misconfigurations Leading to Major Fu*%@ Ups

With so many SaaS applications, a range of configuration options, API capabilities, endless integrations, and app-to-app connections, the SaaS risk possibilities are endless. Critical organizational assets and data are at risk from malicious actors, data breaches, and insider threats, which pose...

CVE-2020-25917

Stratodesk NoTouch Center before 4.4.68 is affected by: Incorrect Access Control. A low privileged user on the platform, for example a user with "helpdesk" privileges, can perform privileged operations including adding a new administrator to the platform via the easyadmin/user/submitCreateTCUser....

Stratodesk Notouch Center Access Control Error Vulnerability

Stratodesk Notouch Center is a management software for a large number of clients and other devices from Stratodesk USA. The software supports access to, and control of, multiple ADIs from a single location and has the ability to manage X86 and Raspberry Pi devices. An access control error...

CVE-2015-0611

The administrative web-management portal in Cisco IX 8 .0.1 and earlier on Cisco TelePresence IX5000 devices does not properly restrict the device-recovery account's access, which allows remote authenticated users to obtain HelpDesk-equivalent privileges by leveraging device-recovery...

CVE-2013-5420

The IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On ISAM ESSO 8.2 allows remote authenticated users to read log files by leveraging helpdesk privileges for a direct request...

Design/Logic Flaw

The IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On ISAM ESSO 8.2 allows remote authenticated users to read log files by leveraging helpdesk privileges for a direct request...

CVE-2013-5420

IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2’s IMS server prior to Ifix 6 allows remote authenticated users to read log files by leveraging helpdesk privileges for a direct request. This vulnerability affects ISAM ESSO 8.2 prior to Ifix 6; the exact root cause is not ...

CVE-2013-5420

The IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On ISAM ESSO 8.2 allows remote authenticated users to read log files by leveraging helpdesk privileges for a direct request...