Lucene search
K

59 matches found

Positive Technologies
Positive Technologies
added 6 days ago7 views

PT-2026-52474

Name of the Vulnerable Software and Affected Versions Vim versions prior to 9.2.0663 Description A Vimscript code injection issue exists in the s:NetrwLocalRmFile function within the netrw plugin runtime/pack/dist/opt/netrw/autoload/netrw.vim when deleting a local file from the browser. The probl...

8.4CVSS6.1AI score0.00154EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/03 10:40 a.m.11 views

EUVD-2026-34076

The ugw-restoreinfo method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input...

8.1CVSS6AI score0.0037EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/03 10:39 a.m.12 views

EUVD-2026-34075

The ugw-restore method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input...

8.1CVSS6AI score0.0037EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/03 10:39 a.m.6 views

CVE-2026-35078

The ugw-logstop method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input...

8.1CVSS6AI score0.0037EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/03 10:39 a.m.6 views

CVE-2026-35077

The ugw-delete-file method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input...

8.1CVSS6AI score0.0037EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.18 views

PT-2026-45919

The ugw-logstop method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-controlled input...

8.1CVSS6AI score0.0037EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/03 12:0 a.m.6 views

MBS多款产品 安全漏洞

MBS Single-A and other products are a series of industrial communication gateways developed by the German company MBS. Several MBS products have security vulnerabilities. These vulnerabilities stem from insufficient validation of user-controlled inputs using the ugw-logstop method, which could...

8.1CVSS5.5AI score0.0037EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/13 2:21 p.m.8 views

CVE-2026-44127

SEPPmail Secure Email Gateway before version 15.0.4 contains an unauthenticated path traversal vulnerability in the identifier parameter of /api.app/attachment/preview that allows remote attackers to read arbitrary local files and trigger deletion of files in the targeted directory with the...

8.8CVSS5.9AI score0.15653EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:30 a.m.4 views

CVE-2023-43803

Arduino Create Agent is a package to help manage Arduino development. This vulnerability affects the endpoint /v2/pkgs/tools/installed and the way it handles plugin names supplied as user input. A user who has the ability to perform HTTP requests to the localhost interface, or is able to bypass t...

7.1CVSS6.9AI score0.00326EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/08 4:27 a.m.13 views

CVE-2025-21015

Path Traversal in Document scanner prior to SMR Aug-2025 Release 1 allows local attackers to delete file with Document scanner's privilege...

4CVSS6.1AI score0.00141EPSS
Exploits0References1
OSV
OSV
added 2025/08/06 5:15 a.m.2 views

CVE-2025-21015

Path Traversal in Document scanner prior to SMR Aug-2025 Release 1 allows local attackers to delete file with Document scanner's privilege...

7.1CVSS5.8AI score0.00141EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/15 2:21 p.m.5 views

CVE-2025-36633

In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could arbitrarily delete local system files with SYSTEM privilege, potentially leading to local privilege escalation...

8.8CVSS8.4AI score0.00169EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:13 p.m.13 views

CVE-2021-39746

In PermissionController, there is a possible way to delete some local files due to an unsafe PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID:...

7.8CVSS7AI score0.00107EPSS
Exploits0References1
OSV
OSV
added 2023/06/13 6:15 p.m.2 views

CVE-2023-28603

Zoom VDI client installer prior to 5.14.0 contains an improper access control vulnerability. A malicious user may potentially delete local files without proper permissions...

7.1CVSS5.8AI score0.00157EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/06/13 12:0 a.m.4 views

Zoom VDI client installer 安全漏洞

Zoom VDI client installer is a client installer from Zoom USA. A security vulnerability exists in Zoom VDI client installer versions prior to 5.14.0 that stems from incorrect access control. An attacker can exploit the vulnerability to delete local files without proper privileges...

7.7CVSS7.1AI score0.00157EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/06/13 12:0 a.m.5 views

PT-2023-21840 · Zoom · Zoom Vdi Client

Name of the Vulnerable Software and Affected Versions: Zoom VDI client installer versions prior to 5.14.0 Description: The issue is related to improper access control, allowing a malicious user to potentially delete local files without proper permissions. Recommendations: For versions prior to...

7.7CVSS7AI score0.00157EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/04/20 12:0 a.m.38 views

Palo Alto Networks PAN-OS 8.1.x < 8.1.24 / 9.0.x < 9.0.17 / 9.1.x < 9.1.15 / 10.0.x < 10.0.11 / 10.1.x < 10.1.6 Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is 8.1.x prior to 8.1.24 or 9.0.x prior to 9.0.17 or 9.1.x prior to 9.1.15 or 10.0.x prior to 10.0.11 or 10.1.x prior to 10.1.6. It is, therefore, affected by a vulnerability. - A local file deletion vulnerability in Palo Alto...

6.5CVSS6.6AI score0.01125EPSS
Exploits0References2
OSV
OSV
added 2023/04/12 5:15 p.m.3 views

CVE-2023-0004

A local file deletion vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to delete files from the local file system with elevated privileges. These files can include logs and system components that impact the integrity and availability of PAN-OS software...

6.5CVSS5.8AI score0.01125EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2023/04/12 4:41 p.m.6 views

CVE-2023-0006 GlobalProtect App: Local File Deletion Vulnerability

A local file deletion vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a user to delete system files from the endpoint with elevated privileges through a race condition...

6.3CVSS6.7AI score0.00111EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/12 4:41 p.m.14 views

CVE-2023-0006 GlobalProtect App: Local File Deletion Vulnerability

A local file deletion vulnerability in the Palo Alto Networks GlobalProtect app on Windows devices enables a user to delete system files from the endpoint with elevated privileges through a race condition...

6.3CVSS6.5AI score0.00111EPSS
Exploits0References1
Rows per page
Query Builder