11 matches found
CVE-2026-47833
setupBpmLogs follows symlink for bpm.log open and chown — container-to-host privilege escalation via /etc/shadow. A compromised process inside a bpm container can cause root to chown an arbitrary host file to vcap and append bpm JSON log lines to it. The chown alone lets the attacker take ownersh...
CVE-2026-47833
The CVE-2026-47833 issue affects bpm-release (all versions prior to v1.4.30). A compromised process inside a bpm container can trigger setupBpmLogs to follow a symlink for bpm.log, then perform chown on a host file to the user vcap, enabling container-to-host privilege escalation via the host’s /...
CVE-2026-29516
Buffalo TeraStation NAS TS5400R firmware version 4.02-0.06 and prior contain an excessive file permissions vulnerability that allows authenticated attackers to read the /etc/shadow file by uploading and executing a PHP file through the webserver. Attackers can exploit world-readable permissions o...
PT-2026-25798
Name of the Vulnerable Software and Affected Versions Buffalo TeraStation NAS TS5400R versions 4.02-0.06 and earlier Description An excessive file permissions issue exists in Buffalo TeraStation NAS TS5400R. Authenticated attackers can read the /etc/shadow file by uploading and executing a PHP fi...
Buffalo TeraStation NAS TS5400R 安全漏洞
The Buffalo TeraStation NAS TS5400R is a rack-mounted network attached storage device from the Japanese company Buffalo. Versions of the Buffalo TeraStation NAS TS5400R between 4.02 and 0.06 and earlier contain security vulnerabilities. These vulnerabilities stem from improper file permission...
EUVD-2002-2198
Malware in sbrugna...
EUVD-2022-4931
Malicious code in bioql PyPI...
DEBIAN-CVE-2025-4598
A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original's privileged process coredump, allowing the attacker to read sensitive data, such as /etc/shadow content, loaded by the origina...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Checkpoint Quantum_Spark_Firmware
CVE-2024-24919POC It's Proof of Concept on CVE-2024-24919-POC...
TOTOLINK A3600R 信任管理问题漏洞
TOTOLINK A3600R is a 6 antenna 1200M wireless router from TOTOLINK China.A security vulnerability exists in TOTOLINK A3600R Firmware V4.1.2cu.5182B20201102 version, which originates from the inclusion of the root password in /etc/shadow.sample. contains the root password. An attacker could exploi...
PT-2021-7656 · Asus · Asus Rt-Ac68U
Name of the Vulnerable Software and Affected Versions: ASUS RT-AC68U router firmware versions prior to 3.0.0.4.386.41634 Description: The issue is related to a SQL injection vulnerability in the Cloud Disk feature of the ASUS RT-AC68U router firmware. This vulnerability allows remote attackers to...