12 matches found
CVE-2025-12801
A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exporte...
EUVD-2022-37792
Malicious code in bioql PyPI...
CVE-2022-34888
The Remote Mount feature can potentially be abused by valid, authenticated users to make connections to internal services that may not normally be accessible to users. Internal service access controls, as applicable, remain in effect...
CVE-2022-34888
The Remote Mount feature can potentially be abused by valid, authenticated users to make connections to internal services that may not normally be accessible to users. Internal service access controls, as applicable, remain in effect...
CVE-2022-34888
The Remote Mount feature can potentially be abused by valid, authenticated users to make connections to internal services that may not normally be accessible to users. Internal service access controls, as applicable, remain in effect...
Remote file inclusion
The Remote Mount feature can potentially be abused by valid, authenticated users to make connections to internal services that may not normally be accessible to users. Internal service access controls, as applicable, remain in effect...
CVE-2022-34888
The Remote Mount feature can potentially be abused by valid, authenticated users to make connections to internal services that may not normally be accessible to users. Internal service access controls, as applicable, remain in effect...
CVE-2022-34888
CVE-2022-34888 affects Lenovo XClarity Controller (XCC) via the Remote Mount feature. A remote authenticated attacker could exploit this to connect to internal services that are normally not accessible, bypassing limited access controls for this feature. The vulnerability is tied to the Remote Mo...
CVE-2022-34888
The Remote Mount feature can potentially be abused by valid, authenticated users to make connections to internal services that may not normally be accessible to users. Internal service access controls, as applicable, remain in effect...
Lenovo XClarity Controller 安全漏洞
Lenovo XClarity Controller XCC is a server-embedded management engine from Lenovo China that is used to standardize and automate basic server management tasks. The Lenovo XClarity Controller suffers from a security vulnerability that stems from its Remote Mount feature that allows an authenticate...
PT-2022-3667 · Lenovo · Lenovo Thinksystem +3
Name of the Vulnerable Software and Affected Versions: Lenovo ThinkSystem versions affected versions not specified Lenovo ThinkStation versions affected versions not specified Lenovo ThinkEdge versions affected versions not specified Lenovo ThinkAgile versions affected versions not specified...
Lenovo XClarity Controller (XCC) Vulnerabilities - Lenovo Support US
No description provided...