Lucene search
K

1904 matches found

RedHat Linux
RedHat Linux
added 2026/05/04 10:5 a.m.8 views

OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode

A flaw was found in OpenSSH. When the scp command is used by a root user to download a file with the legacy protocol option -O and without preserving original file permissions -p, the downloaded file can be installed with elevated privileges setuid or setgid. This unexpected behavior could allow ...

8.1CVSS5.8AI score0.00419EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2026/05/04 9:57 a.m.4 views

OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode

A flaw was found in OpenSSH. When the scp command is used by a root user to download a file with the legacy protocol option -O and without preserving original file permissions -p, the downloaded file can be installed with elevated privileges setuid or setgid. This unexpected behavior could allow ...

8.1CVSS5.8AI score0.00419EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/04/25 12:0 a.m.9 views

PT-2026-37272

Name of the Vulnerable Software and Affected Versions MinIO versions RELEASE.2022-07-24T01-54-52Z through RELEASE.2025-09-07T16-13-09Z Description A path traversal issue in the ReadMultiple internode storage-REST endpoint allows an attacker with the cluster root JWT to read files outside the...

6.9CVSS6AI score0.08457EPSS
Exploits0References8
EUVD
EUVD
added 2026/04/21 12:1 p.m.5 views

EUVD-2026-24085

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Erlang OTP ssh sshsftpd module allows an authenticated SFTP user to modify file attributes outside the configured chroot directory. The SFTP daemon sshsftpd stores the raw, user-supplied path in file...

5.3CVSS5.8AI score0.00354EPSS
Exploits0References5
NVD
NVD
added 2026/04/08 2:16 p.m.13 views

CVE-2025-57854

A container privilege escalation flaw was found in certain OpenShift Update Service OSUS images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, ev...

6.4CVSS0.00145EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/08 1:55 p.m.3 views

CVE-2025-57853

A container privilege escalation flaw was found in certain Web Terminal images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root...

6.4CVSS6.1AI score0.00158EPSS
Exploits0References3
CVE
CVE
added 2026/04/08 1:55 p.m.10 views

CVE-2025-57853

CVE-2025-57853 describes a container privilege escalation in certain Web Terminal images. The issue arises from /etc/passwd being created with group-writable permissions at build time. Under certain conditions, a non-root container user who can run commands can leverage root-group membership to m...

6.4CVSS6.1AI score0.00158EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/04/08 1:55 p.m.12 views

CVE-2025-57854

The CVE-2025-57854 issue affects OpenShift Update Service (OSUS) images where the /etc/passwd file is created with group-writable permissions during build. Under certain conditions, a non-root user who can run commands in an affected container could leverage membership in the root group to modify...

6.4CVSS6AI score0.00145EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/04/08 1:55 p.m.25 views

CVE-2025-57851 Mce: privilege escalation via excessive /etc/passwd permissions

A container privilege escalation flaw was found in certain Multicluster Engine for Kubernetes images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected containe...

6.4CVSS0.00113EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/08 1:55 p.m.9 views

CVE-2025-57853

A container privilege escalation flaw was found in certain Web Terminal images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root...

6.4CVSS6.1AI score0.00158EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/08 1:55 p.m.3 views

CVE-2025-57851 Mce: privilege escalation via excessive /etc/passwd permissions

A container privilege escalation flaw was found in certain Multicluster Engine for Kubernetes images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected containe...

6.4CVSS6.1AI score0.00113EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/08 1:49 p.m.5 views

CVE-2025-58713

A container privilege escalation flaw was found in certain Red Hat Process Automation Manager images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected containe...

6.4CVSS6.1AI score0.00145EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/02 4:30 p.m.3 views

Improper Preservation of Permissions

Overview Affected versions of this package are vulnerable to Improper Preservation of Permissions in the scp when the legacy protocol option -O is used by a root user without preserving original file permissions -p. An attacker can gain elevated privileges by supplying a malicious file that, when...

8.1CVSS6AI score0.00419EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/25 12:17 p.m.4 views

CVE-2026-31788

A flaw was found in the Linux kernel's Xen privcmd driver. This vulnerability allows a root user process within an unprivileged guest domU to issue arbitrary hypercalls. Such an action could enable the process to modify the kernel's memory, thereby undermining the secure boot feature designed to...

6.7CVSS5.8AI score0.00154EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/15 6:34 p.m.24 views

CVE-2013-20005 Qool CMS 2.0 RC2 Cross-Site Request Forgery via adduser

Qool CMS 2.0 RC2 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions by tricking logged-in users into visiting malicious web pages. Attackers can forge POST requests to the /admin/adduser endpoint with parameters like username, password,...

6.9CVSS0.00232EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/15 6:34 p.m.1 views

CVE-2013-20005

Qool CMS 2.0 RC2 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions by tricking logged-in users into visiting malicious web pages. Attackers can forge POST requests to the /admin/adduser endpoint with parameters like username, password,...

5.7AI score0.00232EPSS
Exploits1References3Affected Software1
EUVD
EUVD
added 2026/03/13 9:31 p.m.5 views

EUVD-2025-208627

A container privilege escalation flaw was found in certain Fuse images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, ca...

6.4CVSS5.9AI score0.00208EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/02/25 4:16 p.m.8 views

CVE-2026-27208

bleon-ethical/api-gateway-deploy provides API gateway deployment. Version 1.0.0 is vulnerable to an attack chain involving OS Command Injection and Privilege Escalation. This allows an attacker to execute arbitrary commands with root privileges within the container, potentially leading to a...

9.2CVSS6AI score0.00655EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.11 views

PT-2026-21954

Name of the Vulnerable Software and Affected Versions Cisco Catalyst SD-WAN Controller affected versions not specified Cisco Catalyst SD-WAN Manager affected versions not specified Cisco Catalyst SD-WAN Validator affected versions not specified Description A flaw in the peering authentication...

10CVSS7.6AI score0.57793EPSS
Exploits9References348
NVD
NVD
added 2026/02/24 3:21 p.m.13 views

CVE-2026-27208

bleon-ethical/api-gateway-deploy provides API gateway deployment. Version 1.0.0 is vulnerable to an attack chain involving OS Command Injection and Privilege Escalation. This allows an attacker to execute arbitrary commands with root privileges within the container, potentially leading to a...

9.2CVSS0.00655EPSS
Exploits0References2
Rows per page
Query Builder