Lucene search
K

168 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:41 p.m.8 views

CVE-2020-7583

A vulnerability has been identified in Automation License Manager 5 All versions, Automation License Manager 6 All versions V6.0.8. The application does not properly validate the users' privileges when executing some operations, which could allow a user with low permissions to arbitrary modify...

7.8CVSS6.8AI score0.00268EPSS
Exploits0References1
CNVD
CNVD
added 2025/05/20 12:0 a.m.4 views

Mattermost Permission Issues Vulnerability

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from insufficient privilege validation, which can be exploited by an attacker to view group information via an API request...

4.3CVSS6.4AI score0.00257EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/15 12:0 a.m.3 views

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from insufficient privilege validation, which can be exploited by an attacker to add guest users via the API...

4.3CVSS6.8AI score0.00198EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/15 12:0 a.m.5 views

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from insufficient privilege validation, which can be exploited by an attacker to view group information via an API request...

4.3CVSS6.2AI score0.00257EPSS
Exploits0References2
CNVD
CNVD
added 2025/04/25 12:0 a.m.6 views

Mattermost Authorization Issues Vulnerability

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an authorization issue vulnerability that stems from improper privilege validation, which can be exploited by an attacker to make unauthorized changes to the system administrato...

4.9CVSS7.1AI score0.00198EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/14 12:0 a.m.4 views

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an authorization issue vulnerability that stems from improper privilege validation, which can be exploited by an attacker to make unauthorized changes to the system administrato...

4.9CVSS6.8AI score0.00198EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/04/03 12:0 a.m.3 views

student-manage 安全漏洞

student-manage is a student grade management system by the individual developer Yongkang Huang in China. A security vulnerability exists in student-manage version 1, which stems from an insecure privilege validation that could lead to elevated privileges...

7.8CVSS6.7AI score0.00159EPSS
Exploits1References1
CNVD
CNVD
added 2025/03/27 12:0 a.m.12 views

lunary authorization issue vulnerability (CNVD-2025-07603)

lunary is lunary open source a production toolkit for LLM . An authorization issue vulnerability exists in lunary that stems from the checklists.post endpoint not being properly privilege-validated and can be exploited by an attacker to cause unauthorized creation or modification of checklists...

7.1CVSS6.7AI score0.0051EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/03/20 12:0 a.m.5 views

Lunary 授权问题漏洞

lunary is lunary open source a production toolkit for LLM . An authorization issue vulnerability exists in lunary that stems from the checklists.post endpoint not being properly privilege-validated and can be exploited by an attacker to cause unauthorized creation or modification of checklists...

7.1CVSS6.8AI score0.0051EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.4 views

Joomla! 代码问题漏洞

Joomla! is a free, open source content management system from Joomla! open source. A code issue vulnerability exists in Joomla! that stems from insufficient privilege validation and could lead to a user changing a file extension...

7.1CVSS6.7AI score0.00453EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.5 views

GitLab 安全漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery, and other features. A security vulnerability exists in GitLab, which stems from improper privilege...

4.3CVSS6.7AI score0.00276EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/02/05 2:12 p.m.9 views

CVE-2020-11466

An issue was discovered in Deskpro before 2019.8.0. The /api/tickets endpoint failed to properly validate a user's privilege, allowing an attacker to retrieve arbitrary information about all helpdesk tickets stored in database with numerous filters. This leaked sensitive information to unauthoriz...

7.6CVSS6.5AI score0.01234EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/01/30 12:0 a.m.5 views

Wildfly Server Role Based Access Control (RBAC) provider 安全漏洞

Wildfly is a powerful, modular and lightweight application server from Wildfly. A security vulnerability exists in the Wildfly Server Role Based Access Control RBAC provider, which stems from a lack of privilege validation for the Suspend and Resume operations, which allows an unprivileged user t...

6.5CVSS6.6AI score0.00648EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.2 views

SROS 2 安全漏洞

SROS 2 is a ROS 2 open source tool for generating and distributing SROS keys. A security vulnerability exists in SROS 2 that stems from the presence of a non-compliant implementation of privilege document validation, which could lead to an attacker being able to construct a malicious DDS...

8.2CVSS7.1AI score0.00329EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.3 views

SROS 2 安全漏洞

SROS 2 is a ROS 2 open source tool for generating and distributing SROS keys. A security vulnerability exists in SROS 2 that stems from the presence of a non-compliant implementation of privilege document validation, which could lead to an attacker being able to construct a malicious DDS...

8.2CVSS7.1AI score0.00271EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.3 views

SROS 2 安全漏洞

SROS 2 is a ROS 2 open source tool for generating and distributing SROS keys. A security vulnerability exists in SROS 2 that stems from the presence of a non-compliant implementation of privilege document validation, which could lead to an attacker being able to construct a malicious DDS...

8.2CVSS6.8AI score0.00326EPSS
Exploits0References2
CNVD
CNVD
added 2024/09/11 12:0 a.m.2 views

Huawei HarmonyOS and EMUI Privilege Authentication Vulnerability

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scene distributed operating system based on a microkernel.Huawei EMUI is an emotional operating system developed by Huawei based on Android Android. Huawei HarmonyOS and EMUI suffer from a privilege...

7.5CVSS6.8AI score0.00182EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/04 12:0 a.m.4 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scene distributed operating system based on a microkernel.Huawei EMUI is an emotional operating system developed by Huawei based on Android Android. Huawei HarmonyOS and EMUI suffer from a privilege...

7.5CVSS6.7AI score0.00182EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/09/04 12:0 a.m.10 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scene distributed operating system based on a microkernel.Huawei EMUI is an emotional operating system developed by Huawei based on Android Android. Huawei HarmonyOS and EMUI are vulnerable to an access...

5.5CVSS6.7AI score0.00113EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/08/08 12:0 a.m.5 views

Huawei EMUI和Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. It provides a full-scene distributed operating system based on a microkernel.Huawei EMUI is an emotional operating system developed by Huawei based on Android Android. Huawei HarmonyOS and EMUI are vulnerable to an access...

5.5CVSS6.7AI score0.0011EPSS
Exploits0References2
Rows per page
Query Builder