343 matches found
SUSE CVE-2017-7530
In CloudForms Management Engine cfme before 5.7.3 and 5.8.x before 5.8.1, it was found that privilege check is missing when invoking arbitrary methods via filtering on VMs that MiqExpression will execute that is triggerable by API users. An attacker could use this to execute actions they should n...
Qualcomm 芯片安全漏洞
A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc., and is often manufactured on the surface of semiconductor wafers. A security vulnerability exists in the Qualcomm chip wlan driver, which stem...
Qualcomm 芯片输入验证错误漏洞
A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way of miniaturizing circuits mainly semiconductor devices, but also passive components, etc., and often manufactured on the surface of semiconductor wafers. A security vulnerability exists in Qualcomm's chip engineermode services, which...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a security vulnerability that stems from an interface that does not perform privilege checks, which could be exploited by an...
Jenkins Plugin RabbitMQ Consumer 安全漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...
CVE-2022-39087
In network service, there is a missing permission check. This could lead to local escalation of privilege with System execution privileges needed...
UNISOC chipset 安全漏洞
UNISOC chipset is an integrated circuit chipset from China's Zilight Zhanrui UNISOC. A security vulnerability exists in UNISOC chipsets SC9863A, SC9832E, SC7731E, T610, T310, T606, T760, T610, T618, T606, T612, T616, T760, T770, T820, S8000, which originates from a lack of privilege checking in t...
UNISOC chipset 安全漏洞
The UNISOC chipset is an integrated circuit chipset from China's Unisoc Corporation. A security vulnerability exists in the UNISOC chipset, which stems from a lack of privilege checking in its power management service that allows an attacker to set up the power management service without requirin...
CVE-2021-25059
The Download Plugin WordPress plugin before 2.0.0 does not properly validate a user has the required privileges to access a backup's nonce identifier, which may allow any users with an account on the site such as subscriber to download a full copy of the website...
Jenkins Plugin Delete log 安全漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project.Jenkins Plugin is a software application. A security vulnerability...
Inside Raccoon Stealer V2
Raccoon Stealer is back on the news again. US officials arrested Mark Sokolovsky, one of the malware actors behind this program. In July 2022, after several months of the shutdown, a Raccoon Stealer V2 went viral. Last week, the Department of Justice's press release stated that the malware...
Apple macOS Big Sur和macOS Monterey 安全漏洞
Apple macOS Big Sur and Apple macOS Monterey are products of Apple Inc. Apple macOS Big Sur is the 17th major release of Apple's macOS operating system for the MAC. apple macOS Monterey is the 18th major release of Apple's macOS desktop operating system for the MAC. Apple macOS Monterey is the 18...
UNISOC chipset 安全漏洞
UNISOC chipset is an integrated circuit chipset from China's Unisoc Corporation. A security vulnerability exists in the UNISOC chipset, which stems from a lack of privilege checking in the music service, and can be exploited by an attacker to cause a local denial of service in the kernel. The...
UNISOC chipset 安全漏洞
UNISOC chipset is an integrated circuit chipset from China's Unisoc Corporation. A security vulnerability exists in UNISOC chipset due to a lack of privilege checking in the messaging service, which can be exploited by an attacker to cause a local denial of service in the kernel. The following...
UNISOC chipset 安全漏洞
UNISOC chipset is an integrated circuit chipset from China's Unisoc Corporation. A security vulnerability exists in UNISOC chipset, which stems from a lack of privilege checking in telephony services, and can be exploited by an attacker to potentially cause the disclosure of local information. Th...
UNISOC chipset 安全漏洞
UNISOC chipset is an integrated circuit chipset from China's Unisoc Corporation. A security vulnerability exists in UNISOC chipset due to a lack of privilege checking in the messaging service, which can be exploited by an attacker to potentially cause a local information disclosure, and the...
UNISOC chipset 安全漏洞
UNISOC chipset is an integrated circuit chipset from China's Unisoc Corporation. A security vulnerability exists in the UNISOC chipset, which stems from a lack of privilege checking in the music service, and can be exploited by an attacker to cause a local denial of service in the music service...
UNISOC chipset 安全漏洞
UNISOC chipset is an integrated circuit chipset from China's Unisoc Corporation. A security vulnerability exists in the UNISOC chipset, which stems from a lack of privilege checking in the music service, and can be exploited by an attacker to cause a local denial of service in the music service...
Jenkins CONS3RT Plugin 安全漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...
CVE-2022-20348
In updateState of LocationServicesWifiScanningPreferenceController.java, there is a possible admin restriction bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...