Lucene search
K

201 matches found

CNVD
CNVD
added 2020/01/07 12:0 a.m.3 views

Schneider Electric EcoStruxure Geo SCADA Expert Privilege Permission and Access Control Issues Vulnerability

Schneider Electric EcoStruxure Geo SCADA Expert is a suite of data acquisition and monitoring software SCADA from Schneider Electric, France. A vulnerability exists in a folder in Schneider Electric EcoStruxure Geo SCADA Expert ClearSCADA with privilege permission and access control issues. The...

7.8CVSS7AI score0.00167EPSS
Exploits0References1
OSV
OSV
added 2019/12/18 10:15 p.m.5 views

CVE-2019-11109

Logic issue in the subsystem for IntelR SPS before versions SPSE504.01.04.275.0, SPSSoC-X04.00.04.100.0 and SPSSoC-A04.00.04.191.0 may allow a privileged user to potentially enable denial of service via local access...

4.4CVSS6.6AI score0.00332EPSS
Exploits0References2
CNVD
CNVD
added 2019/09/08 12:0 a.m.5 views

Harbor Privilege Permission and Access Control Issues Vulnerability

Harbor is an open source trusted cloud native registry. The product is primarily used to store, sign and scan container images for vulnerabilities. A privilege permission and access control issue vulnerability exists in the core/api/user.go file in Harbor versions 1.7.0 through 1.8.2, which can b...

6.5CVSS7.1AI score0.23284EPSS
Exploits5References1
Positive Technologies
Positive Technologies
added 2019/08/13 12:0 a.m.5 views

PT-2019-2991 · Microsoft · Visual Studio +1

Name of the Vulnerable Software and Affected Versions: Microsoft Visual Studio affected versions not specified Git for Visual Studio affected versions not specified Description: The issue is related to errors in privilege management in the Git component of Microsoft Visual Studio. It allows an...

7.3CVSS6.8AI score0.01654EPSS
Exploits0References3
CNVD
CNVD
added 2019/06/13 12:0 a.m.5 views

Microsoft Windows Common Log File System Driver Privilege Permission and Access Control Issues Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. Windows Common Log File System Driver is one of the common log file system drivers. A...

7.8CVSS7.6AI score0.03035EPSS
Exploits1References1
CNVD
CNVD
added 2019/05/22 12:0 a.m.2 views

Intel SCS Discovery Utility Privilege Permission and Access Control Issues Vulnerability

Intel SCS Discovery Utility is a utility program from Intel Corporation USA for obtaining detailed data about Intel AMT. The Intel SCS Discovery Utility is vulnerable to a privilege permission and access control issue. The vulnerability stems from a lack of effective privilege permission and acce...

6.7CVSS8.6AI score0.00357EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/04/16 12:0 a.m.1 views

PT-2019-2000 · Mysql Server +5 · Mysql Server +5

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.15 and prior Description: A vulnerability in the MySQL Server component allows a high-privileged attacker with network access via multiple protocols to compromise the server. Successful attacks can result in the...

9.8CVSS6.6AI score0.17139EPSS
Exploits1References502
CNVD
CNVD
added 2019/04/12 12:0 a.m.3 views

Rancher Labs Rancher Privilege Permission and Access Control Issues Vulnerability

Rancher Labs Rancher is the United States Rancher Labs, Inc. of a set of open source enterprise-class container management platform. A vulnerability exists in Rancher Labs Rancher versions 2.0.0 through 2.1.5 for privilege licensing and access control issues. The vulnerability stems from a lack o...

8.1CVSS6.8AI score0.01048EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/12 12:0 a.m.3 views

Rancher Labs Rancher Privilege Permission and Access Control Issues Vulnerability (CNVD-2019-43043)

Rancher Labs Rancher is the United States Rancher Labs, Inc. of a set of open source enterprise-class container management platform. A vulnerability exists in Rancher Labs Rancher for privilege permission and access control issues. The vulnerability stems from a lack of effective privilege...

9CVSS7AI score0.01799EPSS
Exploits0References1
CNVD
CNVD
added 2019/04/03 12:0 a.m.2 views

Synology Android Moments Privilege Permission and Access Control Issues Vulnerability

Synology Android Moments is an Android-based application from Synology Inc. of Taiwan, China for viewing various documents stored in Synology Drive. A vulnerability exists in the privacy page of Synology Android Moments prior to version 1.2.3-199 due to privilege permission and access control...

8.1CVSS7.6AI score0.00936EPSS
Exploits0References1
OSV
OSV
added 2018/09/10 7:29 p.m.5 views

UBUNTU-CVE-2018-14635

When using the Linux bridge ml2 driver, non-privileged tenants are able to create and attach ports without specifying an IP address, bypassing IP address validation. A potential denial of service could occur if an IP address, conflicting with existing guests or routers, is then assigned from...

6.5CVSS5.8AI score0.02527EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2008/11/03 12:0 a.m.23 views

Fedora 9 : phpMyAdmin-3.0.1.1-1.fc9 (2008-9316)

This update by upstream to phpMyAdmin 3.0.1.1 solves CVE-2008-4775, a XSS issue in pmdpdf.php via db parameter when registerglobals is enabled. - GUI SQL error after sorting a subset - lang Catalan update - lang Russian update - import Temporary uploaded file not deleted - auth Cannot create...

2.6CVSS5.5AI score0.0606EPSS
Exploits0References3
Cvelist
Cvelist
added 2007/08/18 9:0 p.m.26 views

CVE-2007-4417

IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 does not properly revoke privileges on methods, which allows remote authenticated users to execute a method after revocation until the routine auth cache is flushed...

6.4AI score0.01343EPSS
Exploits0References9
NVD
NVD
added 2007/06/14 11:30 p.m.21 views

CVE-2007-2448

Subversion 1.4.3 and earlier does not properly implement the "partial access" privilege for users who have access to changed paths but not copied paths, which allows remote authenticated users to obtain sensitive information revision properties via svn 1 propget, 2 proplist, or 3 propedit...

2.1CVSS5.8AI score0.01525EPSS
Exploits0References9
Cvelist
Cvelist
added 2005/02/10 5:0 a.m.20 views

CVE-2005-0261

lspath in AIX 5.2, 5.3, and possibly earlier versions, does not drop privileges before processing the -f option, which allows local users to read one line of arbitrary files...

6.4AI score0.00342EPSS
Exploits0References6
OSV
OSV
added 2004/02/03 5:0 a.m.1 views

DEBIAN-CVE-2003-0949

xsok 1.02 does not properly drop privileges before finding and executing the "gunzip" program, which allows local users to execute arbitrary commands...

4.6CVSS7.2AI score0.00413EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2002/08/06 12:0 a.m.33 views

Microsoft Windows XP/2000/NT 4.0 - Window Message Subsystem Design Error (4)

// source: https://www.securityfocus.com/bid/5408/info A serious design error in the Win32 API has been reported. The issue is related to the inter-window message passing system. This vulnerability is wide-ranging and likely affects almost every Win32 window-based application. Attackers with loca...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2001/07/19 12:0 a.m.25 views

[SNS Advisory No.37] HTTProtect allows attackers to change the protected file using a symlink

----------------------------------------------------------------------- SNS Advisory No.37 HTTProtect allows attackers to change the protected file using a symlink Problem first discovered: Mon, 4 Jun 2001 Published: Wed, 18 Jul 2001...

0.7AI score
Exploits0
NVD
NVD
added 2001/07/02 4:0 a.m.17 views

CVE-2001-0424

BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local users to execute arbitrary commands with the kmem group id...

7.2CVSS7.2AI score0.00389EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2000/09/22 12:0 a.m.21 views

tco.txt

Synnergy Laboratories Advisory SLA-2000-14 NAME BSD/Linux telnet client overflow AFFECTED Linux Debian Redhat Mandrake Slackware possibly others BSD FreeBSD possible others SYNOPSIS Synnergy Labs has found a bug in the telnet client that causes a stack overflow by filling the DISPLAY environment...

7.4AI score
Exploits0
Rows per page
Query Builder