CVE-2024-47157

CVE-2024-47157 concerns Honor products running MagicOS with an incorrect privilege assignment vulnerability. The issue stems from a privilege assignment error in the affected software/component, which could, if exploited, lead to device service exceptions. Public details indicate local access is ...

Honor MagicOS 安全漏洞

Honor MagicOS is a mobile device operating system by Chinese company Honor Honor. A security vulnerability exists in Honor MagicOS version 8.0.0.157, which stems from a privilege assignment error and can be successfully exploited to cause a device service exception...

Honor MagicOS 安全漏洞

Honor MagicOS is a mobile device operating system from Chinese company Honor Honor. A security vulnerability exists in Honor MagicOS version 8.0.0.64, which stems from the presence of a privilege assignment error, and successful exploitation may result in a device service exception...

PT-2024-32435 · Huawei · Honor

Name of the Vulnerable Software and Affected Versions: Honor products affected versions not specified Description: The issue is related to incorrect privilege assignment, which could lead to device service exceptions if successfully exploited. Recommendations: At the moment, there is no informati...

PT-2024-32436 · Huawei · Honor

Name of the Vulnerable Software and Affected Versions: Honor products affected versions not specified Description: The issue is related to incorrect privilege assignment, which could lead to device service exceptions if successfully exploited. Recommendations: At the moment, there is no informati...

Honor MagicOS 安全漏洞

Honor MagicOS is a mobile device operating system from Chinese company Honor Honor. A security vulnerability exists in Honor MagicOS version 8.0.1.112, which stems from the presence of a privilege assignment error and can be successfully exploited to cause a device service exception...

Trend Micro Deep Security 安全漏洞

Trend Micro Deep Security is a server deep security protection system client from Trend Micro. A security vulnerability exists in Trend Micro Deep Security that stems from the inclusion of a privilege assignment error vulnerability that could allow a local attacker to elevate the privileges of an...

K000149092: PostgreSQL vulnerability CVE-2024-10978

Security Advisory Description Incorrect privilege assignment in PostgreSQL allows a less-privileged application user to view or change different rows from those intended. An attack requires the application to use SET ROLE, SET SESSION AUTHORIZATION, or an equivalent feature. The problem arises wh...

PT-2024-36678 · Vibethemes · Wplms

Name of the Vulnerable Software and Affected Versions: WPLMS versions 1.9.9 and earlier Description: The issue is related to an Incorrect Privilege Assignment vulnerability, which allows Privilege Escalation. This vulnerability affects the VibeThemes WPLMS plugin. Recommendations: For versions...

GO-2024-3354 Hashicorp Nomad Incorrect Privilege Assignment vulnerability in github.com/hashicorp/nomad

Hashicorp Nomad Incorrect Privilege Assignment vulnerability in github.com/hashicorp/nomad...

CVE-2024-54383

Incorrect Privilege Assignment vulnerability in wpweb WooCommerce PDF Vouchers allows Privilege Escalation.This issue affects WooCommerce PDF Vouchers: from n/a before 4.9.9...

CVE-2024-54383

Incorrect Privilege Assignment vulnerability in wpweb WooCommerce PDF Vouchers woocommerce-pdf-vouchers allows Privilege Escalation.This issue affects WooCommerce PDF Vouchers: from n/a through 4.9.9...

CVE-2024-54229

Incorrect Privilege Assignment vulnerability in straightvisions GmbH SV100 Companion sv100-companion allows Privilege Escalation.This issue affects SV100 Companion: from n/a through = 2.0.02...

CVE-2024-54365

CVE-2024-54365: KH Easy User Settings suffers an Authenticated Privilege Escalation (Authenticated Subscriber+) caused by Incorrect Privilege Assignment, affecting KH Easy User Settings up to version 1.0.0. CVSS v3.1 base score 8.8 (HIGH); impacts: confidentiality, integrity, and availability. Af...

PT-2024-36251 · Unknown · Halim Kh Easy User Settings

Name of the Vulnerable Software and Affected Versions: Halim KH Easy User Settings versions n/a through 1.0.0 Description: The issue is related to an Incorrect Privilege Assignment, which allows Privilege Escalation. Recommendations: For Halim KH Easy User Settings versions n/a through 1.0.0, at...

PT-2024-36107 · Unknown · Sv100 Companion

Name of the Vulnerable Software and Affected Versions: SV100 Companion versions n/a through 2.0.02 Description: The issue is related to an Incorrect Privilege Assignment, which allows Privilege Escalation. This can lead to unauthorized access and control. Recommendations: For versions n/a through...

CVE-2024-54293

Incorrect Privilege Assignment vulnerability in CE21 CE21 Suite ce21-suite allows Privilege Escalation.This issue affects CE21 Suite: from n/a through = 2.2.0...

CVE-2024-54293

CVE-2024-54293 is an authenticated-privilege-escalation issue reported in the CE21 Suite (CE21 CE21 Suite) affecting versions from n/a up to 2.2.0. The vulnerability allows privilege escalation without authentication. The CVSS score in the initial report is 9.8 (Network, High confidentiality/inte...

PT-2024-36174 · Unknown · Ce21 Suite

Name of the Vulnerable Software and Affected Versions: CE21 Suite versions n/a through 2.2.0 Description: The issue is related to an Incorrect Privilege Assignment vulnerability, which allows Privilege Escalation in CE21 Suite. Recommendations: For versions n/a through 2.2.0, at the moment, there...

Important: postgresql15

Issue Overview: Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended. CVE-2023-2455 and CVE-2016-2193 fixed most interaction between row security and user ID changes. They missed cases where a subquery, WITH query...