201 matches found
PT-2023-24470 · Teleadapt · Teleadapt Roomcast Ta-2400
Name of the Vulnerable Software and Affected Versions: TeleAdapt RoomCast TA-2400 versions 1.0 through 3.1 Description: The issue concerns Improper Privilege Management. After establishing an adb connection, accessing the shell and entering the su command provides root access without requiring a...
CVE-2023-34844
Play With Docker 0.0.2 has an insecure CAPSYSADMIN privileged mode causing the docker container to escape...
HCL Technologies BigFix Insights 安全漏洞
HCL Technologies BigFix Insights is HCL Technologies' accelerates risk identification and decision making through elevated views of endpoint queue data, rich reporting, and integration with existing business intelligence tools. A security vulnerability exists in HCL Technologies BigFix Insights...
CVE-2023-2983 Privilege Defined With Unsafe Actions in pimcore/pimcore
Privilege Defined With Unsafe Actions in GitHub repository pimcore/pimcore prior to 10.5.23...
PT-2023-3760 · Suse · Suse Rancher
Name of the Vulnerable Software and Affected Versions: SUSE Rancher versions 2.6.0 through 2.6.12 SUSE Rancher versions 2.7.0 through 2.7.3 Description: The issue is related to improper privilege management in SUSE Rancher, allowing standard users to manipulate Kubernetes secrets in the local...
CVE-2023-21458
Improper privilege management vulnerability in PhoneStatusBarPolicy in System UI prior to SMR Mar-2023 Release 1 allows attacker to turn off Do not disturb via unprotected intent...
CVE-2022-48365
An issue was discovered in eZ Platform Ibexa Kernel before 1.3.26. The Company admin role gives excessive privileges...
SUSE CVE-2007-4133
The 1 hugetlbvmtruncatelist and 2 hugetlbvmtruncate functions in fs/hugetlbfs/inode.c in the Linux kernel before 2.6.19-rc4 perform certain priotree calculations using HPAGESIZE instead of PAGESIZE units, which allows local users to cause a denial of service panic via unspecified vectors...
SUSE CVE-2009-1715
Cross-site scripting XSS vulnerability in Web Inspector in WebKit in Apple Safari before 4.0 allows user-assisted remote attackers to inject arbitrary web script or HTML, and read local files, via vectors related to script execution with incorrect privileges...
SUSE CVE-2021-4200
A Improper Privilege Management vulnerability in SUSE Rancher allows write access to the Catalog for any user when restricted-admin role is enabled. This issue affects: SUSE Rancher Rancher versions prior to 2.5.13; Rancher versions prior to 2.6.4...
CVE-2022-4270
Incorrect privilege assignment issue in M-Files Web in M-Files Web versions before 22.5.11436.1 could have changed permissions accidentally...
CVE-2022-32820
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. An app may be able to execute arbitrary code with kernel privileges...
Jenkins SCM HttpClient Plugin 安全漏洞
Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...
Apple macOS Monterey 和 Big Sur 权限许可和访问控制问题漏洞
Apple macOS Big Sur and Apple macOS Monterey are products of Apple Inc. Apple macOS Big Sur is the 17th major release of Apple's macOS operating system for the MAC. apple macOS Monterey is the 18th major release of Apple's macOS desktop operating system for the MAC. Apple macOS Monterey is the 18...
DEBIAN-CVE-2022-29526
Go before 1.17.10 and 1.18.x before 1.18.2 has Incorrect Privilege Assignment. When called with a non-zero flags parameter, the Faccessat function could incorrectly report that a file is accessible...
AZL-43915 CVE-2022-29526 affecting package buildah 1.18.0-29
Go before 1.17.10 and 1.18.x before 1.18.2 has Incorrect Privilege Assignment. When called with a non-zero flags parameter, the Faccessat function could incorrectly report that a file is accessible...
AZL-43858 CVE-2022-29526 affecting package podman 4.1.1-26
Go before 1.17.10 and 1.18.x before 1.18.2 has Incorrect Privilege Assignment. When called with a non-zero flags parameter, the Faccessat function could incorrectly report that a file is accessible...
CVE-2022-2063
Improper Privilege Management in GitHub repository nocodb/nocodb prior to 0.91.7+...
CVE-2022-30739
Improper privilege management vulnerability in Samsung Account prior to 13.2.00.6 allows attackers to get an user email or phone number with a normal level permission...
Apple macOS Big Sur 权限许可和访问控制问题漏洞
Apple macOS Big Sur is the 17th major version of Apple's macOS Big Sur, the operating system used by Apple for the MAC operating system macOS. Apple macOS Big Sur suffers from a privilege permission and access control issue vulnerability that stems from improper security checks in the CoreTypes...