Lucene search
K

10 matches found

Positive Technologies
Positive Technologies
added 2024/02/28 12:0 a.m.3 views

PT-2024-21277

Name of the Vulnerable Software and Affected Versions Apache Superset versions prior to 3.0.4 Apache Superset versions 3.1.0 through 3.1.0 Description A low privilege authenticated user could import an existing dashboard or chart that they do not have access to and then modify its metadata, there...

5.4CVSS6AI score0.00866EPSS
Exploits0References14
ATTACKERKB
ATTACKERKB
added 2023/11/03 5:15 a.m.5 views

CVE-2023-41914

SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files...

7CVSS5.8AI score0.00196EPSS
Exploits0References5
OSV
OSV
added 2023/11/03 5:15 a.m.1 views

DEBIAN-CVE-2023-41914

SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files...

7CVSS6.9AI score0.00196EPSS
Exploits0References1
OSV
OSV
added 2023/11/03 5:15 a.m.2 views

UBUNTU-CVE-2023-41914

SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files...

7CVSS5.8AI score0.00196EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/10/14 1:12 a.m.2 views

SUSE CVE-2023-41914

SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files...

8.8CVSS6.9AI score0.00196EPSS
Exploits0References27
CNVD
CNVD
added 2018/05/11 12:0 a.m.2 views

Aurora DAO Denial of Service Vulnerability

Aurora DAO AURA is a decentralized trading system for Ether ECR-20 tokens. A security vulnerability exists in the Owned smart contract implementation in AURA. An attacker could exploit the vulnerability to gain ownership of the contract, causing a denial of service...

7.5CVSS6.9AI score0.01109EPSS
Exploits2References1
CNVD
CNVD
added 2018/03/21 12:0 a.m.7 views

Pivotal Spring Boot Elevation of Privilege Vulnerability

Pivotal Spring Boot is the U.S. Pivotal Software, Inc. of a new framework used to simplify the initial setup of new Spring applications as well as the development process. A security vulnerability exists in Pivotal Spring Boot versions 1.5.0 through 1.5.9 and 2.0.0.M1 through 2.0.0.M7. An attacke...

5.9CVSS7.1AI score0.01235EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2018/02/13 8:0 p.m.2 views

CVE-2018-6954

systemd-tmpfiles in systemd through 237 mishandles symlinks present in non-terminal path components, which allows local users to obtain ownership of arbitrary files via vectors involving creation of a directory and a file under that directory, and later replacing that directory with a symlink. Th...

7.4AI score0.00532EPSS
Exploits1References6
CNVD
CNVD
added 2016/06/08 12:0 a.m.1 views

CRIU Privilege Acquisition Vulnerability

CRIU Checkpoint/Restore In Userspace is a set of Linux userspace userspace on the implementation of the checkpoint/restore function of the software to freeze and restore the execution of tools. The tool supports freezing or partially freezing the execution of an application and saving its executi...

7.8CVSS6.9AI score0.00386EPSS
Exploits0References1
Prion
Prion
added 2016/06/07 2:6 p.m.14 views

Path traversal

The service daemon in CRIU creates log and dump files insecurely, which allows local users to create arbitrary files and take ownership of existing files via unspecified vectors related to a directory path...

7.2CVSS6.9AI score0.00386EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder