2184 matches found
CVE-2024-3980
The MicroSCADA Pro/X SYS600 product allows an authenticated user input to control or influence paths or file names that are used in filesystem operations. If exploited the vulnerability allows the attacker to access or modify system files or other files that are critical to the application...
CVE-2024-4956
Path Traversal in Sonatype Nexus Repository 3 allows an unauthenticated attacker to read system files. Fixed in version 3.68.1...
CVE-2025-24891
Dumb Drop is a file upload application. Users with permission to upload to the service are able to exploit a path traversal vulnerability to overwrite arbitrary system files. As the container runs as root by default, there is no limit to what can be overwritten. With this, it's possible to inject...
Dumb Drop 安全漏洞
Dumb Drop is an open source application from DumbWare. A security vulnerability exists in Dumb Drop that stems from a path traversal issue that allows users with upload privileges to overwrite arbitrary system files, potentially leading to malicious code injection...
PT-2025-5594 · Dumb Drop · Dumb Drop
Name of the Vulnerable Software and Affected Versions: Dumb Drop affected versions not specified Description: The issue concerns a path traversal vulnerability in the Dumb Drop file upload application. Users with permission to upload to the service can exploit this vulnerability to overwrite...
CVE-2025-23007
A vulnerability in the NetExtender Windows client log export function allows unauthorized access to sensitive Windows system files, potentially leading to privilege escalation...
CVE-2025-23007
A vulnerability in the NetExtender Windows client log export function allows unauthorized access to sensitive Windows system files, potentially leading to privilege escalation...
SonicWall NetExtender Local Privilege Escalation via Arbitrary SYSTEM File Read
A vulnerability in the NetExtender Windows client log export function allows unauthorized access to sensitive Windows system files, potentially leading to privilege escalation. CVE: CVE-2025-23007 Last updated: March 24, 2025, 5:22 a.m...
CVE-2025-0374 Unprivileged access to system files
When etcupdate encounters conflicts while merging files, it saves a version containing conflict markers in /var/db/etcupdate/conflicts. This version does not preserve the mode of the input file, and is world-readable. This applies to files that would normally have restricted visibility, such as...
CVE-2025-0374 Unprivileged access to system files
When etcupdate encounters conflicts while merging files, it saves a version containing conflict markers in /var/db/etcupdate/conflicts. This version does not preserve the mode of the input file, and is world-readable. This applies to files that would normally have restricted visibility, such as...
CVE-2025-0374
CVE-2025-0374 affects FreeBSD etcupdate. When conflicts arise during file merges, etcupdate saves a temporary file in /var/db/etcupdate/conflicts without preserving the input file’s mode, making it world-readable. This can allow an unprivileged local user to read encrypted root/user passwords fro...
FreeBSD : FreeBSD -- Unprivileged access to system files (fa9ae646-debc-11ef-87ba-002590c1f29c)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the fa9ae646-debc-11ef-87ba-002590c1f29c advisory. When etcupdate encounters conflicts while merging files, it saves a version containing conflict markers...
SonicWALL NetExtender 安全漏洞
SonicWall NetExtender Windows client is a software application from SonicWALL USA that allows remote users to connect to remote networks in a secure manner. Provides simple and secure access for Windows and Linux users. An elevation of privilege vulnerability exists in the SonicWall NetExtender...
FreeBSD 安全漏洞
FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. FreeBSD suffers from an information disclosure vulnerability that is caused by a failure to properly assign privileges flaw. An attacker could exploit this vulnerability to access system files...
PT-2025-4763 · Sonicwall · Sonicwall Netextender
Name of the Vulnerable Software and Affected Versions: SonicWall NetExtender versions up to 10.3.0 Description: A vulnerability in the NetExtender Windows client log export function allows unauthorized access to sensitive Windows system files, potentially leading to privilege escalation...
FreeBSD-SA-25:03.etcupdate
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-25:03.etcupdate Security Advisory The FreeBSD Project Topic: Unprivileged access to system files Category: core Module: etcupdate Announced: 2025-01-29 Credits:...
FreeBSD -- Unprivileged access to system files
Problem Description: When etcupdate encounters conflicts while merging files, it saves a version containing conflict markers in /var/db/etcupdate/conflicts. This version does not preserve the mode of the input file, and is world-readable. This applies to files that would normally have restricted...
CVE-2025-24104
This issue was addressed with improved handling of symlinks. This issue is fixed in iPadOS 17.7.4, iOS 18.3 and iPadOS 18.3. Restoring a maliciously crafted backup file may lead to modification of protected system files...
CVE-2025-24104
This issue was addressed with improved handling of symlinks. This issue is fixed in iPadOS 17.7.4, iOS 18.3 and iPadOS 18.3. Restoring a maliciously crafted backup file may lead to modification of protected system files...
CVE-2025-24104
CVE-2025-24104 concerns Apple platforms (iPadOS 17.7.4, iOS 18.3, iPadOS 18.3) where the backup restore process could incorrectly handle symlinks, allowing a malicious backup to point system file reads/writes and potentially modify protected system files. Apple’s advisories indicate the issue is ...