201 matches found
Ivanti Desktop and Server Management 安全漏洞
Ivanti Desktop and Server Management Ivanti DSM is a multi-platform, unified endpoint management solution from Ivanti Corporation. Ivanti Desktop and Server Management suffers from a privilege issue vulnerability that stems from insufficient privileges. An attacker could exploit this vulnerabilit...
Huawei HarmonyOS Permission Issues Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a privilege issue vulnerability that stems from a vulnerability in the Parallel Vision module that enables application privileg...
Ivanti Secure Access Client Privilege Issue Vulnerability
Ivanti Secure Access Client is a security software client developed by Ivanti, Inc. that is primarily used to enable remote secure access with support for enterprise-class VPN connections and encrypted access to resources. Ivanti Secure Access Client is vulnerable to a privilege issue vulnerabili...
FreeBSD : PostgreSQL -- SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID (12e3feab-a29f-11ef-af48-6cc21735f730)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 12e3feab-a29f-11ef-af48-6cc21735f730 advisory. PostgreSQL project reports: Incorrect privilege assignment in PostgreSQL allows a less-privileged...
Ivanti Secure Access Client 安全漏洞
Ivanti Secure Access Client is a security software client developed by Ivanti, Inc. to enable remote secure access, supporting enterprise-class VPN connections and encrypted access to resources. An elevation of privilege vulnerability exists in Ivanti Secure Access Client, which stems from the...
Ivanti Secure Access Client 安全漏洞
Ivanti Secure Access Client is a security software client developed by Ivanti, Inc. that is primarily used to enable remote secure access with support for enterprise-class VPN connections and encrypted access to resources. Ivanti Secure Access Client is vulnerable to a privilege issue vulnerabili...
NVIDIA ConnectX Privilege Issue Vulnerability
NVIDIA ConnectX is a series of intelligent network interface cards. A privilege issue vulnerability exists in NVIDIA ConnectX that stems from mishandling of a privilege issue and can be exploited by an attacker to cause a denial of service, data tampering, and information disclosure...
Huawei HarmonyOS Privilege Issue Vulnerability (CNVD-2025-13357)
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a privilege issue vulnerability that stems from a privilege control in the ability module. An attacker could exploit this...
CVE-2024-45103
A valid, authenticated LXCA user may be able to unmanage an LXCA managed device in through the LXCA web interface without sufficient privileges...
SAMSUNG Mobile devices 安全漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices SMR Sep-2024 Release 1 version and earlier versions, which stems from the KnoxMiscPolicy...
Google Chrome 安全漏洞
Google Chrome is a free web browser developed by Google. It is the world's largest browser in terms of market share due to its speed, security, simplicity, multi-platform support and built-in privacy protection. Google Chrome suffers from a privilege issue vulnerability that can be exploited by...
ARM Bifrost GPU Kernel Driver、Valhall GPU Kernel Driver和ARM 5th Gen GPU Architecture Kernel Driver 安全漏洞
ARM Valhall GPU Kernel Driver and others are products of ARM UK.Valhall GPU Kernel Driver is a Valhall GPU Kernel Driver.ARM Bifrost GPU Kernel Driver is a GPU Kernel Driver.ARM 5th Gen The ARM Bifrost GPU Kernel Driver is a GPU kernel driver. A security vulnerability exists in the ARM Bifrost GP...
PT-2024-6028 · Dell · Powerscale Onefs
Name of the Vulnerable Software and Affected Versions: Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 Description: The issue is related to an incorrect privilege assignment in the PowerScale OneFS operating system. This could allow a local high-privileged attacker to potentially exploit t...
PPGo_Job Security Vulnerabilities
PPGoJob is a lightweight timed task management system, go language development, super easy to deploy, low resource consumption, stable operation. A security vulnerability exists in PPGoJob version 2.8.0, which stems from an insecure privilege issue that allows an authenticated attacker to...
PT-2024-3323
Name of the Vulnerable Software and Affected Versions: PostgreSQL versions prior to 14.12 PostgreSQL versions prior to 15.7 PostgreSQL versions prior to 16.3 Description: The issue is related to errors in managing privileges in the PostgreSQL database system, specifically in the pg stats ext and ...
The vulnerability of the microprogrammed software of the MELSEC iQ-R Series Safety CPU and Series SIL2 Process CPU modules, related to incorrect privilege assignment, allows an intruder to gain unauthorized access to protected information.
The vulnerability of the microprogramming software for MELSEC iQ-R Series Safety CPUs and Series SIL2 Process CPUs is related to the improper assignment of privileges. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information usi...
CVE-2023-23430
Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions...
CVE-2022-29526
...
PT-2023-7306 · Zyxel · Zyxel Nwa50Ax +8
Name of the Vulnerable Software and Affected Versions: Zyxel ATP series versions 4.32 through 5.37 Zyxel USG FLEX series versions 4.50 through 5.37 Zyxel USG FLEX 50W series versions 4.16 through 5.37 Zyxel USG20W-VPN series versions 4.16 through 5.37 Zyxel VPN series versions 4.30 through 5.37...
CVE-2023-20598
An improper privilege management in the AMD Radeon™ Graphics driver may allow an authenticated attacker to craft an IOCTL request to gain I/O control over arbitrary hardware ports or physical addresses resulting in a potential arbitrary code execution...