408 matches found
CVE-2023-44282
Dell Repository Manager, 3.4.3 and prior, contains an Improper Access Control vulnerability in its installation module. A local low-privileged attacker could potentially exploit this vulnerability, leading to gaining escalated privileges...
CVE-2023-44282
Dell Repository Manager (3.4.3 and earlier) contains an Improper Access Control vulnerability in the installation module that could allow a local, low-privilege attacker to escalate privileges. This is supported by multiple sources in the connected documents. Public remediation details are not co...
CVE-2023-44282
Dell Repository Manager, 3.4.3 and prior, contains an Improper Access Control vulnerability in its installation module. A local low-privileged attacker could potentially exploit this vulnerability, leading to gaining escalated privileges...
PT-2023-29187 · Dell · Dell Repository Manager
Name of the Vulnerable Software and Affected Versions: Dell Repository Manager versions 3.4.3 and prior Description: The issue is related to an Improper Access Control vulnerability in the installation module. A local low-privileged attacker could potentially exploit this vulnerability, leading t...
PT-2023-29193 · Dell · Dell Repository Manager
Name of the Vulnerable Software and Affected Versions: Dell Repository Manager versions 3.4.3 and prior Description: The issue is related to an Improper Access Control vulnerability in the installation module. A local low-privileged attacker could potentially exploit this vulnerability, leading t...
Dell EMC Repository Manager 安全漏洞
Dell EMC Repository Manager is an application within the Dell OpenManage portfolio from Dell USA that enables IT administrators to easily manage system updates.Dell Repository Manager provides a searchable interface for creating customized collections of software that are bundles and repositories...
SUSE CVE-2019-9629
Sonatype Nexus Repository Manager before 3.17.0 establishes a default administrator user with weak defaults fixed credentials...
Vulnerability fixed in Dell Repository Manager
Dell has fixed a vulnerability in Repository Manager. A local malicious person could exploit the vulnerability to execute arbitrary code on the underlying operating system. The vulnerability can be exploited during the installation of systems. Dell has released updates to fix the vulnerability in...
WEIPDCRM 跨站脚本漏洞
WEIPDCRM is a Cydia repo manager open-sourced by 82Flex. A cross-site scripting vulnerability exists in WEIPDCRM. An attacker could exploit this vulnerability to perform cross-site scripting attacks...
Malicious Package
Overview git-repo-manager is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...
HPE Version Control Repository Manager Elevation of Privilege Vulnerability
HPE Version Control Repository Manager is a version control repository manager from Wise and Technology HPE. An elevation of privilege vulnerability exists in HPE Version Control Repository Manager versions prior to 7.6.14.0, which stems from an incorrectly programmed call to an advanced local...
CVE-2022-28619
The CVE-2022-28619 issue affects the HPE Version Control Repository Manager installer. Affected component: the VCRM installer (version 7.6.14.0 fixes the vulnerability). Root cause: an incorrectly programmed call to an advanced local procedure leads to an elevation of privilege. Impact: local esc...
CVE-2022-28619
A potential security vulnerability has been identified in the installer of HPE Version Control Repository Manager. The vulnerability could allow local escalation of privilege. HPE has made the following software update to resolve the vulnerability in HPE Version Control Repository Manager install...
GHSA-HMJV-PX3J-933C Unrestricted Upload of File with Dangerous Type in Sonatype Nexus Repository Manager
Sonatype Nexus Repository Manager 2.x before 2.14.15 and 3.x before 3.19, and IQ Server before 72, has remote code execution...
Unrestricted Upload of File with Dangerous Type in Sonatype Nexus Repository Manager
Sonatype Nexus Repository Manager 2.x before 2.14.15 and 3.x before 3.19, and IQ Server before 72, has remote code execution...
Dell EMC Password Storage Vulnerability
Dell EMC is a repository manager. A plain text password storage vulnerability exists in Dell EMC. A local attacker could exploit this vulnerability to cause the disclosure of certain user credentials. An attacker could use this vulnerability to be able to use publicly available credentials to...
CVE-2022-26856
Dell EMC Repository Manager version 3.4.0 contains a plain-text password storage vulnerability. A local attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable...
Design/Logic Flaw
Dell EMC Repository Manager version 3.4.0 contains a plain-text password storage vulnerability. A local attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable...
CVE-2022-26856
Dell EMC Repository Manager version 3.4.0 contains a plain-text password storage vulnerability. A local attacker could potentially exploit this vulnerability, leading to the disclosure of certain user credentials. The attacker may be able to use the exposed credentials to access the vulnerable...
CVE-2022-26856
Dell EMC Repository Manager (version 3.4.0) contains a plain-text password storage vulnerability. A local attacker could disclose credentials and use them to access the vulnerable application's database with privileges of the compromised account. The available documents do not specify exploit cod...