Lucene search
K

256 matches found

NVD
NVD
added 2024/02/14 8:15 a.m.22 views

CVE-2023-39249

Dell SupportAssist for Business PCs version 3.4.0 contains a local Authentication Bypass vulnerability that allows locally authenticated non-admin users to gain temporary privilege within the SupportAssist User Interface on their respective PC. The Run as Admin temporary privilege feature enables...

6.3CVSS6.5AI score0.00223EPSS
Exploits0References1
CVE
CVE
added 2024/02/14 7:36 a.m.35 views

CVE-2023-39249

CVE-2023-39249 affects Dell SupportAssist for Business PCs ver. 3.4.0. The issue is a local authentication bypass that lets locally authenticated non-admin users obtain temporary privilege within the SupportAssist UI via the Run as Admin feature; the privilege is limited to the UI and expires aft...

6.3CVSS6.4AI score0.00223EPSS
Exploits0References1Affected Software1
AlmaLinux
AlmaLinux
added 2024/02/14 12:0 a.m.58 views

Moderate: sudo security update

The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Bug Fixes and Enhancements: CVE-2023-28487 sudo: Sudo does no...

7CVSS7.2AI score0.00953EPSS
Exploits1References8
Kitploit
Kitploit
added 2024/01/09 11:30 a.m.48 views

Nysm - A Stealth Post-Exploitation Container

A stealth post-exploitation container. Introduction With the raise in popularity of offensive tools based on eBPF, going from credential stealers to rootkits hiding their own PID, a question came to our mind: Would it be possible to make eBPFinvisible in its own eyes? From there, we created nysm,...

6.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/11/09 12:0 a.m.16 views

Fedora 38 : matrix-synapse (2023-f8d216faed)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-f8d216faed advisory. Update to 1.95.1 CVE-2023-43796 ---- Update to v1.95.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note...

5.3CVSS6.1AI score0.00897EPSS
Exploits0References2
NVD
NVD
added 2023/10/31 5:15 p.m.14 views

CVE-2023-43796

Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver. System administrators are encouraged to upgrade to Synapse 1.95.1 or...

5.3CVSS5AI score0.00897EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2023/10/31 5:15 p.m.24 views

CVE-2023-43796

Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver. System administrators are encouraged to upgrade to Synapse 1.95.1 or...

5.3CVSS6.6AI score0.00897EPSS
Exploits0References4
Prion
Prion
added 2023/10/31 5:15 p.m.25 views

Design/Logic Flaw

Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver. System administrators are encouraged to upgrade to Synapse 1.95.1 or...

5CVSS5AI score0.00897EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2023/10/31 4:52 p.m.25 views

CVE-2023-43796 Synapse vulnerable to leak of remote user device information

Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver. System administrators are encouraged to upgrade to Synapse 1.95.1 or...

5.3CVSS5.7AI score0.00897EPSS
Exploits0References7
Cvelist
Cvelist
added 2023/10/31 4:52 p.m.39 views

CVE-2023-43796 Synapse vulnerable to leak of remote user device information

Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver. System administrators are encouraged to upgrade to Synapse 1.95.1 or...

5.3CVSS5.3AI score0.00897EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2023/10/31 4:52 p.m.20 views

CVE-2023-43796

Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver. System administrators are encouraged to upgrade to Synapse 1.95.1 or...

5.3CVSS5.7AI score0.00897EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2023/10/31 4:52 p.m.21 views

CVE-2023-43796

Synapse is an open-source Matrix homeserver Prior to versions 1.95.1 and 1.96.0rc1, cached device information of remote users can be queried from Synapse. This can be used to enumerate the remote users known to a homeserver. System administrators are encouraged to upgrade to Synapse 1.95.1 or...

5.3CVSS5.1AI score0.00897EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/05/23 9:30 a.m.25 views

Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

7.8CVSS7.3AI score0.55367EPSS
Exploits20References2
RedHat Linux
RedHat Linux
added 2023/05/23 9:28 a.m.37 views

Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

7.8CVSS7.3AI score0.55367EPSS
Exploits20References2
Cvelist
Cvelist
added 2023/05/11 12:0 a.m.24 views

CVE-2023-0857

Unintentional change of settings during initial registration of system administrators which uses control protocols. The affected Office / Small Office Multifunction Printers and Laser Printers may allow an attacker on the network segment to trigger unauthorized access to the product. :Satera...

5.9CVSS7.7AI score0.0061EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/01/23 9:31 a.m.245 views

Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.8CVSS7.3AI score0.55367EPSS
Exploits20References2
RedHat Linux
RedHat Linux
added 2023/01/23 9:27 a.m.94 views

Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 6 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS7.3AI score0.55367EPSS
Exploits20References2
RedHat Linux
RedHat Linux
added 2023/01/23 9:23 a.m.56 views

Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security...

7.8CVSS7.3AI score0.55367EPSS
Exploits20References2
RedHat Linux
RedHat Linux
added 2023/01/23 9:22 a.m.76 views

Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.8CVSS7.3AI score0.55367EPSS
Exploits20References2
RedHat Linux
RedHat Linux
added 2023/01/23 9:21 a.m.47 views

Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

7.8CVSS7.3AI score0.55367EPSS
Exploits20References2
Rows per page
Query Builder