The vulnerability in browser extensions for Safari on operating systems macOS, iOS, iPadOS, and visionOS allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of Safari browser extensions on macOS, iOS, iPadOS, and VisionOS operating systems is related to improper storage of permissions. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and accessibility of protected information...

Vulnerability of macOS operating systems related to improper permission storage. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information.

The vulnerability of macOS operating systems is related to improper storage of permissions. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Couchbase Server, a NoSQL database management system, arises from improper permission storage. This allows attackers to increase their privileges.

The vulnerability of Couchbase Server, a NoSQL database management system, is related to improper permission storage. Exploiting this vulnerability can allow an attacker to enhance their privileges remotely...

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, related to improper storage of permissions, allows attackers to carry out clickjacking attacks.

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to improper storage of permissions. Exploiting this vulnerability can allow a remote attacker to carry out a clickjacking attack...

PT-2025-3199 · Couchbase · Couchbase Server

Name of the Vulnerable Software and Affected Versions: Couchbase Server versions 7.6.x through 7.6.3 Description: An issue was discovered that allows a user with the security admin local role to create a new user in a group that has the admin role. This is related to incorrect permission storage...

The vulnerability of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, related to improper storage of permissions, allows attackers to influence the confidentiality of protected information.

The vulnerabilities of Mozilla Firefox, Firefox ESR, and the email client Thunderbird are related to improper storage of permissions. Exploiting these vulnerabilities can allow remote attackers to influence the confidentiality of protected information...

The vulnerability of the struts2-core library in the Apache Struts software platform allows attackers to induce a service failure.

The vulnerability of the struts2-core library of the Apache Struts software platform is related to errors during permission storage. Exploiting this vulnerability can allow an attacker to cause service failures using specially crafted files...

PT-2024-6089 · Zabbix +2 · Zabbix Agent +3

Name of the Vulnerable Software and Affected Versions: Zabbix Agent versions prior to 7.0.0rc2 Description: The issue is related to improper permission storage in the Zabbix Agent application. This can allow an attacker to elevate their privileges. A non-admin user can change or remove important...

PT-2024-10427 · Zabbix +3 · Zabbix +3

Name of the Vulnerable Software and Affected Versions: Zabbix affected versions not specified Description: The issue is related to incorrect permission storage in the Zabbix monitoring system. This allows an unauthorized user to access and view host count and other statistics through the System...

The vulnerability of the RESTEasy Reactive Java framework component in Quarkus allows attackers to trigger a service failure.

The vulnerability of the RESTEasy Reactive Java framework in Quarkus is related to improper permission storage. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

The vulnerability of ZTE ZXHN H388X router’s micro-programming software, related to improper storage of resolutions, allows attackers to increase their privileges.

The vulnerability of ZTE ZXHN H388X router’s microprogramming software is related to improper storage of permissions. Exploiting this vulnerability can allow attackers to enhance their privileges through specially created requests...

The vulnerability of the Apache Airflow network software, related to improper saving of permissions, allows a malicious actor to gain access to write arbitrary files to the file system.

The vulnerability of the Apache Airflow network software is related to the improper storage of permissions. Exploiting this vulnerability can allow a malicious actor to gain access to and modify any files in the file system remotely...

The vulnerability of the replication function of Docker, a tool for automating the deployment and management of applications in containerized environments, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the replication function of Docker’s containerization and application deployment/management tools is related to improper storage of permissions. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and cause service failures...

The vulnerability of the Runc command-line tool for running isolated containers, related to improper storage of permissions, allows a malicious actor to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the Runc container launch tool is related to improper storage of permissions. Exploiting this vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service failures...

CVE-2023-23600

CVE-2023-23600 affects Firefox for Android (Firefox

The vulnerability of the software for interacting with servers via CURL, related to errors in saving permissions, allows a hacker to expose protected information or cause service failures.

The vulnerability of the software for interacting with servers via CURL is related to errors during permission storage. This vulnerability allows a malicious actor to disclose sensitive information or cause service failures...

The vulnerability in the implementation of the admin/functions.php script of the PuppyCMS CMS system allows a perpetrator to execute arbitrary code.

The vulnerability of the admin/functions.php implementation in the PuppyCMS CMS system is related to incorrect permission storage. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the `copy_page_to_iter_pipe` and `push_pipe` functions in the Linux operating system allows a hacker to overwrite the contents of page cache for arbitrary files.

The vulnerability of the copypagetoiterpipe and pushpipe functions in the Linux operating system is related to errors in permission storage. Exploiting this vulnerability could allow an attacker to rewrite the contents of page cache for arbitrary files...

The vulnerability of Mozilla Firefox’s WebRTC browser extension, which allows a hacker to compromise data integrity.

The vulnerability of the WebRTC extension in Mozilla Firefox relates to errors during permission storage. Exploiting this vulnerability could allow a remote attacker to compromise data integrity...

The vulnerability of the Intel Data Center Manager Console, a software tool for collecting and analyzing data on the performance, power consumption, and temperature of various devices, stems from errors during permission saving. This vulnerability allows attackers to exploit their privileges.

The vulnerability of the Intel Data Center Manager Console, a software tool for collecting and analyzing data on the performance, power consumption, and temperature of various devices, is related to errors during permission storage. Exploiting this vulnerability can allow a malicious actor to gai...