104 matches found
Vulnerability in the Jupiter Theme and JupiterX Core plugins of the WordPress content management system, allowing attackers to increase their privileges
The vulnerability in the Jupiter Theme and JupiterX Core plugins of the WordPress content management system is related to insecure handling of privileges. Exploiting this vulnerability could allow a malicious actor to increase their privileges remotely...
The vulnerability of the Bind Filter Driver for Windows operating systems allows attackers to increase their privileges.
The vulnerability of the Bind Filter Driver for Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Log4j Java logging library lies in its insecure handling of privileges, allowing attackers to escalate their privileges.
The vulnerability of the Log4j Java logging library lies in the insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...
CVE-2022-25782
Improper Handling of Insufficient Privileges vulnerability in Web UI of Secomea GateManager allows logged in user to access and update privileged information. This issue affects: Secomea GateManager versions prior to 9.7...
CVE-2022-25782
Improper Handling of Insufficient Privileges vulnerability in Web UI of Secomea GateManager allows logged in user to access and update privileged information. This issue affects: Secomea GateManager versions prior to 9.7...
The vulnerability of the Windows Common Log File System Driver in the Windows operating system allows a hacker to gain increased privileges.
The vulnerability of the Windows Common Log File System Driver in the operating system is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...
The vulnerability of the Cryptographic Services in the Microsoft Windows operating system allows a perpetrator to enhance their privileges.
The vulnerability of the Cryptographic Services in the Microsoft Windows operating system is related to the insecure management of privileges. Exploiting this vulnerability can allow attackers to enhance their privileges...
SUSE-SU-2022:0735-1 Security update for zsh
This update for zsh fixes the following issues: - CVE-2021-45444: Fixed a vulnerability where arbitrary shell commands could be executed related to prompt expansion bsc1196435. - CVE-2019-20044: Fixed a vulnerability where shell privileges would not be properly dropped when unsetting the PRIVILEG...
Improper privilege handling in Apache Accumulo
Apache Accumulo versions 1.5.0 through 1.10.0 and version 2.0.0 do not properly check the return value of some policy enforcement functions before permitting an authenticated user to perform certain administrative operations. Specifically, the return values of the 'canFlush' and...
Microsoft Windows Update Assistant 权限许可和访问控制问题漏洞
Microsoft Windows Update Assistant, a system update tool from Microsoft Corporation, contains an elevation of privilege vulnerability that stems from a lack of filtering and restriction on privilege handling, which could be exploited by an attacker to The vulnerability is caused by a lack of...
The vulnerability of Visual Studio Code’s source editor lies in its insecure handling of privileges, allowing attackers to elevate their privileges.
The vulnerability of Visual Studio Code’s source editor is related to the insecure management of privileges. Exploiting this vulnerability could allow an attacker to enhance their privileges...
Johnson Controls exacqVision Web Service 安全漏洞
Johnson Controls exacqVision Web Service is a Johnson Controls, Inc. program that supports viewing live video, searching and playing video using a Web browser. A security vulnerability exists in Johnson Controls exacqVision Web Service that stems from the software not properly assigning, modifyin...
PHP 路径遍历漏洞
PHP is a scripting language that executes on the server side. A security vulnerability exists in PHP that arises from a lack of effective privilege-granting and access-control measures in a networked system or product...
CVE-2020-10072
Improper Handling of Insufficient Permissions or Privileges in zephyr. Zephyr versions = v1.14.2, = v2.2.0 contain Improper Handling of Insufficient Permissions or Privileges CWE-280. For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-vf79-hqwm-w4xc...
The vulnerability of the Windows operating system, related to insecure management of privileges, allows a perpetrator to elevate their privileges.
The vulnerability of the Win32k component of the Windows operating system is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...
SUSE-SU-2021:0551-1 Security update for avahi
This update for avahi fixes the following issues: - CVE-2021-26720: drop privileges when invoking avahi-daemon-check-dns.sh bsc1180827 - Update avahi-daemon-check-dns.sh from Debian. Our previous version relied on ifconfig, route, and init.d. - Add sudo to requires: used to drop privileges...
The vulnerability of the Spring Framework software platform, related to insecure management of privileges, allows attackers to compromise the confidentiality and integrity of protected information.
The vulnerability of the Spring Framework software platform is related to insecure management of privileges. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality and integrity of the protected information...
CVE-2020-8290
Backblaze for Windows and Backblaze for macOS before 7.0.0.439 suffer from improper privilege management in bztransmit helper due to lack of permission handling and validation before creation of client update directories allowing for local escalation of privilege via rogue client update binary...
The vulnerability of the Print Configuration configuration implementation in Windows operating systems allows attackers to exploit their privileges.
The vulnerability of the Print Configuration configuration on Windows operating systems is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...
The vulnerability of the Port Class Library in the Windows operating system allows attackers to enhance their privileges.
The vulnerability of the Port Class Library in the Windows operating system is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...