Lucene search
K

156 matches found

Positive Technologies
Positive Technologies
added 2023/12/01 12:0 a.m.13 views

PT-2023-29471 · Huddly · Huddlycameraservice

Name of the Vulnerable Software and Affected Versions: Huddly HuddlyCameraService versions prior to 8.0.7, excluding version 7.99 Description: An issue in HuddlyCameraService allows attackers to manipulate files and escalate privileges via the RollingFileAppender.DeleteFile method performed by th...

7.8CVSS7.7AI score0.00316EPSS
Exploits2References9
OSV
OSV
added 2023/11/21 7:15 p.m.8 views

CVE-2023-20274

A vulnerability in the installer script of Cisco AppDynamics PHP Agent could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient permissions that are set by the PHP Agent Installer on the PHP Agent install directory. An...

7.8CVSS5.8AI score0.00189EPSS
Exploits0References1
NVD
NVD
added 2023/11/21 7:15 p.m.26 views

CVE-2023-20274

A vulnerability in the installer script of Cisco AppDynamics PHP Agent could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient permissions that are set by the PHP Agent Installer on the PHP Agent install directory. An...

7.8CVSS0.00189EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/21 6:49 p.m.39 views

CVE-2023-20274

A vulnerability in the installer script of Cisco AppDynamics PHP Agent could allow an authenticated, local attacker to elevate privileges on an affected device. This vulnerability is due to insufficient permissions that are set by the PHP Agent Installer on the PHP Agent install directory. An...

6.3CVSS7.7AI score0.00189EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/07/27 12:0 a.m.9 views

PT-2023-14293 · Arm · Arm Compiler 5 (Ac5) +11

Name of the Vulnerable Software and Affected Versions: Software affected versions not specified Description: The issue arises when the installation directory lacks sufficiently restrictive file permissions, allowing an attacker to modify files and execute malicious code. Recommendations: At the...

7.8CVSS6.7AI score0.00173EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 6:1 a.m.6 views

SUSE CVE-2009-3897

Dovecot 1.2.x before 1.2.8 sets 0777 permissions during creation of certain directories at installation time, which allows local users to access arbitrary user accounts by replacing the auth socket, related to the parent directories of the basedir directory, and possibly the basedir directory...

5.5CVSS6.8AI score0.00375EPSS
Exploits0References4
NVD
NVD
added 2022/08/31 4:15 p.m.27 views

CVE-2022-2006

AutomationDirect DirectLOGIC has a DLL vulnerability in the install directory that may allow an attacker to execute code during the installation process. This issue affects: AutomationDirect C-more EA9 EA9-T6CL versions prior to 6.73; EA9-T6CL-R versions prior to 6.73; EA9-T7CL versions prior to...

7.8CVSS0.00337EPSS
Exploits0References1
OSV
OSV
added 2022/08/31 4:15 p.m.4 views

CVE-2022-2006

AutomationDirect DirectLOGIC has a DLL vulnerability in the install directory that may allow an attacker to execute code during the installation process. This issue affects: AutomationDirect C-more EA9 EA9-T6CL versions prior to 6.73; EA9-T6CL-R versions prior to 6.73; EA9-T7CL versions prior to...

7.8CVSS5.9AI score0.00337EPSS
Exploits0References1
Prion
Prion
added 2022/08/31 4:15 p.m.21 views

Code injection

AutomationDirect DirectLOGIC has a DLL vulnerability in the install directory that may allow an attacker to execute code during the installation process. This issue affects: AutomationDirect C-more EA9 EA9-T6CL versions prior to 6.73; EA9-T6CL-R versions prior to 6.73; EA9-T7CL versions prior to...

4.4CVSS7.6AI score0.00337EPSS
Exploits0References1Affected Software12
ATTACKERKB
ATTACKERKB
added 2022/08/30 9:15 p.m.3 views

CVE-2022-36562

Incorrect access control in the install directory C:\Ruby31-x64 of Rubyinstaller2 v3.1.2 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory...

8.8CVSS7.7AI score0.00814EPSS
Exploits0References2
OSV
OSV
added 2022/08/30 9:15 p.m.3 views

CVE-2022-36565

Incorrect access control in the install directory C:\Wamp64 of Wamp v3.2.6 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory...

8.8CVSS6.1AI score
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/08/30 9:15 p.m.8 views

CVE-2022-37172

Incorrect access control in the install directory C:\msys64 of Msys2 v20220603 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory...

7.8CVSS7.5AI score0.00216EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/08/30 9:15 p.m.4 views

CVE-2022-36563

Incorrect access control in the install directory C:\RailsInstaller of Rubyinstaller2 v3.1.2 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory...

8.8CVSS7.7AI score0.00814EPSS
Exploits0References2
NVD
NVD
added 2022/08/30 9:15 p.m.15 views

CVE-2022-36565

Incorrect access control in the install directory C:\Wamp64 of Wamp v3.2.6 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory...

8.8CVSS0.00814EPSS
Exploits0References1
OSV
OSV
added 2022/08/30 9:15 p.m.6 views

CVE-2022-37172

Incorrect access control in the install directory C:\msys64 of Msys2 v20220603 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory...

7.8CVSS6.1AI score0.00216EPSS
Exploits0References1
OSV
OSV
added 2022/08/30 9:15 p.m.6 views

CVE-2022-36562

Incorrect access control in the install directory C:\Ruby31-x64 of Rubyinstaller2 v3.1.2 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory...

8.8CVSS6.1AI score0.00814EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/08/30 9:15 p.m.13 views

CVE-2022-36564

Incorrect access control in the install directory C:\Strawberry of StrawberryPerl v5.32.1.1 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory...

8.8CVSS7.7AI score0.00814EPSS
Exploits0References2
OSV
OSV
added 2022/08/30 9:15 p.m.13 views

CVE-2022-36563

Incorrect access control in the install directory C:\RailsInstaller of Rubyinstaller2 v3.1.2 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory...

8.8CVSS6.1AI score0.00814EPSS
Exploits0References1
OSV
OSV
added 2022/08/30 9:15 p.m.16 views

CVE-2022-36564

Incorrect access control in the install directory C:\Strawberry of StrawberryPerl v5.32.1.1 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory...

8.8CVSS6.1AI score0.00814EPSS
Exploits0References1
NVD
NVD
added 2022/08/30 9:15 p.m.24 views

CVE-2022-36563

Incorrect access control in the install directory C:\RailsInstaller of Rubyinstaller2 v3.1.2 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory...

8.8CVSS0.00814EPSS
Exploits0References1
Rows per page
Query Builder