Lucene search
K

201 matches found

CNNVD
CNNVD
added 2024/12/10 12:0 a.m.6 views

Ivanti Desktop and Server Management 安全漏洞

Ivanti Desktop and Server Management Ivanti DSM is a multi-platform, unified endpoint management solution from Ivanti Corporation. Ivanti Desktop and Server Management suffers from a privilege issue vulnerability that stems from insufficient privileges. An attacker could exploit this vulnerabilit...

7.1CVSS7AI score0.002EPSS
Exploits0References1
CNVD
CNVD
added 2024/11/19 12:0 a.m.2 views

Huawei HarmonyOS Permission Issues Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a privilege issue vulnerability that stems from a vulnerability in the Parallel Vision module that enables application privileg...

7.5CVSS5.9AI score0.00319EPSS
Exploits0References1
CNVD
CNVD
added 2024/11/15 12:0 a.m.3 views

Ivanti Secure Access Client Privilege Issue Vulnerability

Ivanti Secure Access Client is a security software client developed by Ivanti, Inc. that is primarily used to enable remote secure access with support for enterprise-class VPN connections and encrypted access to resources. Ivanti Secure Access Client is vulnerable to a privilege issue vulnerabili...

7.3CVSS8.9AI score0.0021EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/11/14 12:0 a.m.6 views

FreeBSD : PostgreSQL -- SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID (12e3feab-a29f-11ef-af48-6cc21735f730)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 12e3feab-a29f-11ef-af48-6cc21735f730 advisory. PostgreSQL project reports: Incorrect privilege assignment in PostgreSQL allows a less-privileged...

4.2CVSS6.4AI score0.00705EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/11/12 12:0 a.m.1 views

Ivanti Secure Access Client 安全漏洞

Ivanti Secure Access Client is a security software client developed by Ivanti, Inc. to enable remote secure access, supporting enterprise-class VPN connections and encrypted access to resources. An elevation of privilege vulnerability exists in Ivanti Secure Access Client, which stems from the...

7.8CVSS7.1AI score0.00262EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/12 12:0 a.m.2 views

Ivanti Secure Access Client 安全漏洞

Ivanti Secure Access Client is a security software client developed by Ivanti, Inc. that is primarily used to enable remote secure access with support for enterprise-class VPN connections and encrypted access to resources. Ivanti Secure Access Client is vulnerable to a privilege issue vulnerabili...

7.3CVSS6.9AI score0.0021EPSS
Exploits0References2
CNVD
CNVD
added 2024/11/07 12:0 a.m.3 views

NVIDIA ConnectX Privilege Issue Vulnerability

NVIDIA ConnectX is a series of intelligent network interface cards. A privilege issue vulnerability exists in NVIDIA ConnectX that stems from mishandling of a privilege issue and can be exploited by an attacker to cause a denial of service, data tampering, and information disclosure...

8.9CVSS7AI score0.00273EPSS
Exploits0References1
CNVD
CNVD
added 2024/11/07 12:0 a.m.2 views

Huawei HarmonyOS Privilege Issue Vulnerability (CNVD-2025-13357)

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a privilege issue vulnerability that stems from a privilege control in the ability module. An attacker could exploit this...

6.2CVSS6.3AI score0.00105EPSS
Exploits0References1
OSV
OSV
added 2024/09/13 6:15 p.m.1 views

CVE-2024-45103

A valid, authenticated LXCA user may be able to unmanage an LXCA managed device in through the LXCA web interface without sufficient privileges...

4.3CVSS5.8AI score
Exploits0References1
CNNVD
CNNVD
added 2024/09/04 12:0 a.m.8 views

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices SMR Sep-2024 Release 1 version and earlier versions, which stems from the KnoxMiscPolicy...

5.5CVSS6.6AI score0.00133EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/21 12:0 a.m.5 views

Google Chrome 安全漏洞

Google Chrome is a free web browser developed by Google. It is the world's largest browser in terms of market share due to its speed, security, simplicity, multi-platform support and built-in privacy protection. Google Chrome suffers from a privilege issue vulnerability that can be exploited by...

4.3CVSS6.6AI score0.00415EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/08/05 12:0 a.m.6 views

ARM Bifrost GPU Kernel Driver、Valhall GPU Kernel Driver和ARM 5th Gen GPU Architecture Kernel Driver 安全漏洞

ARM Valhall GPU Kernel Driver and others are products of ARM UK.Valhall GPU Kernel Driver is a Valhall GPU Kernel Driver.ARM Bifrost GPU Kernel Driver is a GPU Kernel Driver.ARM 5th Gen The ARM Bifrost GPU Kernel Driver is a GPU kernel driver. A security vulnerability exists in the ARM Bifrost GP...

7.8CVSS6.8AI score0.00183EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/26 12:0 a.m.7 views

PT-2024-6028 · Dell · Powerscale Onefs

Name of the Vulnerable Software and Affected Versions: Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 Description: The issue is related to an incorrect privilege assignment in the PowerScale OneFS operating system. This could allow a local high-privileged attacker to potentially exploit t...

6.8CVSS6.9AI score0.00156EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/06/12 12:0 a.m.3 views

PPGo_Job Security Vulnerabilities

PPGoJob is a lightweight timed task management system, go language development, super easy to deploy, low resource consumption, stable operation. A security vulnerability exists in PPGoJob version 2.8.0, which stems from an insecure privilege issue that allows an authenticated attacker to...

6.3CVSS6.7AI score0.0025EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/05/08 12:0 a.m.8 views

PT-2024-3323

Name of the Vulnerable Software and Affected Versions: PostgreSQL versions prior to 14.12 PostgreSQL versions prior to 15.7 PostgreSQL versions prior to 16.3 Description: The issue is related to errors in managing privileges in the PostgreSQL database system, specifically in the pg stats ext and ...

8.8CVSS7.4AI score0.04322EPSS
Exploits0References174
BDU FSTEC
BDU FSTEC
added 2024/04/16 12:0 a.m.4 views

The vulnerability of the microprogrammed software of the MELSEC iQ-R Series Safety CPU and Series SIL2 Process CPU modules, related to incorrect privilege assignment, allows an intruder to gain unauthorized access to protected information.

The vulnerability of the microprogramming software for MELSEC iQ-R Series Safety CPUs and Series SIL2 Process CPUs is related to the improper assignment of privileges. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information usi...

6.8CVSS6.5AI score0.00697EPSS
Exploits0References4
OSV
OSV
added 2023/12/29 3:15 a.m.4 views

CVE-2023-23430

Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions...

7.5CVSS5.8AI score0.00305EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2023/11/08 12:0 a.m.6 views

CVE-2022-29526

...

5.3CVSS7AI score0.02593EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2023/10/26 12:0 a.m.5 views

PT-2023-7306 · Zyxel · Zyxel Nwa50Ax +8

Name of the Vulnerable Software and Affected Versions: Zyxel ATP series versions 4.32 through 5.37 Zyxel USG FLEX series versions 4.50 through 5.37 Zyxel USG FLEX 50W series versions 4.16 through 5.37 Zyxel USG20W-VPN series versions 4.16 through 5.37 Zyxel VPN series versions 4.30 through 5.37...

5.5CVSS5.4AI score0.00212EPSS
Exploits0References5
OSV
OSV
added 2023/10/17 2:15 p.m.3 views

CVE-2023-20598

An improper privilege management in the AMD Radeon™ Graphics driver may allow an authenticated attacker to craft an IOCTL request to gain I/O control over arbitrary hardware ports or physical addresses resulting in a potential arbitrary code execution...

7.8CVSS7.1AI score0.0046EPSS
Exploits0References1
Rows per page
Query Builder