53 matches found
CVE-2025-25055
Authentication bypass by spoofing issue exists in FileMegane versions above 1.0.0.0 prior to 3.4.0.0, which may lead to user impersonation. If exploited, restricted file contents may be accessed...
CVE-2025-25055
Authentication bypass by spoofing issue exists in FileMegane versions above 1.0.0.0 prior to 3.4.0.0, which may lead to user impersonation. If exploited, restricted file contents may be accessed...
CVE-2025-25055
Authentication bypass by spoofing issue exists in FileMegane versions above 1.0.0.0 prior to 3.4.0.0, which may lead to user impersonation. If exploited, restricted file contents may be accessed...
CVE-2024-40617
Path traversal vulnerability exists in FUJITSU Network Edgiot GW1500 M2M-GW for FENICS. If a remote authenticated attacker with User Class privilege sends a specially crafted request to the affected product, access restricted files containing sensitive information may be accessed. As a result,...
Insomnia security breach
Insomnia is an open source, cross-platform API client from Insomnia for GraphQL, REST, WebSockets, server-sent events, and gRPC. A security vulnerability exists in Insomnia version 2023.4.0 that stems from the use of the DYLDINSERTLIBRARIES environment variable that can execute code and access...
SAP NetWeaver 路径遍历漏洞
SAP NetWeaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform mainly for SAP applications to provide development and runtime environment. A path traversal vulnerability exists in SAP NetWeaver, which results from the program failing to properl...
CVE-2022-41720 Restricted file access on Windows in os and net/http
On Windows, restricted files can be accessed via os.DirFS and http.Dir. The os.DirFS function and http.Dir type provide access to a tree of files rooted at a given directory. These functions permit access to Windows device files under that root. For example, os.DirFS"C:/tmp".Open"COM1" opens the...
CVE-2022-41720
On Windows, restricted files can be accessed via os.DirFS and http.Dir. The os.DirFS function and http.Dir type provide access to a tree of files rooted at a given directory. These functions permit access to Windows device files under that root. For example, os.DirFS"C:/tmp".Open"COM1" opens the...
CVE-2022-41720 Restricted file access on Windows in os and net/http
On Windows, restricted files can be accessed via os.DirFS and http.Dir. The os.DirFS function and http.Dir type provide access to a tree of files rooted at a given directory. These functions permit access to Windows device files under that root. For example, os.DirFS"C:/tmp".Open"COM1" opens the...
PT-2022-11594 · Sapido · Sapido Rb1732 +3
Name of the Vulnerable Software and Affected Versions: Sapido BR270n affected versions not specified Sapido BRC76n affected versions not specified Sapido GR297 affected versions not specified Sapido RB1732 affected versions not specified Description: A critical issue affects some unknown...
PT-2022-18033 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to macOS Monterey 12.4 macOS versions prior to macOS Big Sur 11.6.6 macOS Catalina versions prior to Security Update 2022-004 Description: A malicious application may be able to access restricted files due to this issue...
CVE-2022-26949
Archer 6.x through 6.9 SP2 P1 6.9.2.1 contains an improper access control vulnerability on attachments. A remote authenticated malicious user could potentially exploit this vulnerability to gain access to files that should only be allowed by extra privileges...
Apple Mac OS X Security Update (HT213054)
Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PT-2021-18917 · Apple · Ipados +5
Name of the Vulnerable Software and Affected Versions: macOS Catalina versions prior to Security Update 2021-005 iOS versions prior to 14.8 iPadOS versions prior to 14.8 iOS version 15 iPadOS version 15 watchOS version 8 macOS Big Sur version 11.6 Description: A validation issue existed in the...
AZL-36988 CVE-2020-14318 affecting package samba for versions less than 4.18.3-1
A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be unavailable to the attacker...
Apple has multiple product access control error vulnerabilities
Apple iOS and Apple watchOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple watchOS is an operating system for smartwatches. A security vulnerability exists in several Apple products that stems from insufficient checking of vulnerable code,...
CVE-2019-8532
A permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in watchOS 5.2, iOS 12.2. A malicious application may be able to access restricted files...
USN-4577-1 linux-hwe, linux-gke-5.0, linux-gke-5.3, linux-oem-osp1, linux-raspi2-5.3 vulnerabilities
Hadar Manor discovered that the DCCP protocol implementation in the Linux kernel improperly handled socket reuse, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2020-16119 Giuseppe Scriva...
CVE-2020-7325
Privilege Escalation vulnerability in McAfee MVISION Endpoint prior to 20.9 Update allows local users to access files which the user otherwise would not have access to via manipulating symbolic links to redirect McAfee file operations to an unintended file...
About the security content of iOS 11 - Apple Support
About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...