3662 matches found
CVE-2019-0121
Improper permissions in IntelR Matrix Storage Manager 8.9.0.1023 and before may allow an authenticated user to potentially enable escalation of privilege via local access...
Input validation
Improper permissions in IntelR Matrix Storage Manager 8.9.0.1023 and before may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2019-0121
CVE-2019-0121 affects Intel Matrix Storage Manager (MSM) ≤ 8.9.0.1023. The issue is improper permissions that could allow an authenticated, local attacker to escalate privileges. Affected product is MSM as listed in Intel’s advisory (Intel‑SA‑00216) with CVSS‑3.0 vector AV:L/AC:L/PR:L/UI:N/S:C/C:...
CVE-2019-0121
Improper permissions in IntelR Matrix Storage Manager 8.9.0.1023 and before may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2019-1003031
A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM...
Security feature bypass
A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM...
CVE-2019-1003031
A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM...
CVE-2019-1003031
A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM...
EUVD-2022-5059
A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM...
CVE-2019-1003031
CVE-2019-1003031 describes a sandbox bypass in the Jenkins Matrix Project Plugin (versions up to 1.13) where an attacker with Job/Configure permission can execute arbitrary code on the Jenkins master JVM via FilterScript.java. This undermines containment of code execution with high impact on conf...
PT-2019-2301 · Jenkins · Jenkins Matrix Project Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Matrix Project Plugin versions 1.13 and earlier Description: A sandbox bypass issue exists, related to errors in input data processing during code parsing in components such as pom.xml and FilterScript.java. This allows attackers with...
Schneider Electric MatriX Detection (Windows SMB Login)
SMB login-based detection of Schneider Electric MatriX. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[ASA-201901-12] matrix-synapse: private key recovery
Arch Linux Security Advisory ASA-201901-12 ========================================== Severity: High Date : 2019-01-24 CVE-ID : CVE-2019-5885 Package : matrix-synapse Type : private key recovery Remote : No Link : https://security.archlinux.org/AVG-846 Summary ======= The package matrix-synapse...
[SECURITY] Fedora 28 Update: matrix-synapse-0.34.0.1-2.fc28
Matrix is an ambitious new ecosystem for open federated Instant Messaging a nd VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is inten ded to showcase the concept of Matrix and let folks see the spec i...
Fedora 29 : matrix-synapse (2019-4d914f9257)
Fix for CVE-2019-5885 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security,...
Fedora Update for matrix-synapse FEDORA-2019-c6044b3fce
The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 28 : matrix-synapse (2019-c6044b3fce)
Fix for CVE-2019-5885 Upgrade notes available at https://github.com/matrix-org/synapse/blob/v0.34.0/UPGRADE.rstupgradi ng-to-v0340 - Note this continues to use Python 2. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...
[SECURITY] Fedora 29 Update: matrix-synapse-0.34.0.1-1.fc29
Matrix is an ambitious new ecosystem for open federated Instant Messaging a nd VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is inten ded to showcase the concept of Matrix and let folks see the spec i...
FreeBSD : py-matrix-synapse -- undisclosed vulnerability (383931ba-1818-11e9-92ea-448a5b29e8a9)
Matrix developers report : The matrix team announces the availablility of synapse security releases 0.34.0.1 and 0.34.1.1, fixing CVE-2019-5885. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright...
MLMPro 1.0 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Matrix MLM Script 1.0 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://royallifefoundation.org/ Software Link: https://codecanyon.net/item/mlmpro-multistage-forced-matrix-mlm-script/23050292 Version: 1.0...