Lucene search
K

256 matches found

RedHat Linux
RedHat Linux
added 2023/01/23 9:0 a.m.86 views

Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.8CVSS7.3AI score0.55367EPSS
Exploits20References2
OSV
OSV
added 2023/01/23 8:23 a.m.31 views

RLSA-2023:0284 Important: sudo security update

The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fixes: sudo: arbitrary file write with privileges of...

7.8CVSS8.2AI score0.55367EPSS
Exploits20References2
AlmaLinux
AlmaLinux
added 2023/01/23 12:0 a.m.70 views

Important: sudo security update

The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fixes: sudo: arbitrary file write with privileges of...

7.8CVSS8.2AI score0.55367EPSS
Exploits20References4
AlmaLinux
AlmaLinux
added 2023/01/23 12:0 a.m.57 views

Important: sudo security update

The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fixes: sudo: arbitrary file write with privileges of...

7.8CVSS8.2AI score0.55367EPSS
Exploits20References4
OSV
OSV
added 2022/12/08 6:15 p.m.3 views

CVE-2022-46831

In JetBrains TeamCity between 2022.10 and 2022.10.1 connecting to AWS using the "Default Credential Provider Chain" allowed TeamCity project administrators to access AWS resources normally limited to TeamCity system administrators...

4.9CVSS5.8AI score0.00449EPSS
Exploits0References1
Kitploit
Kitploit
added 2022/09/28 8:31 p.m.87 views

Psudohash - Password List Generator That Focuses On Keywords Mutated By Commonly Used Password Creation Patterns

psudohash is a password list generator for orchestrating brute force attacks. It imitates certain password creation patterns commonly used by humans, like substituting a word's letters with symbols or numbers, using char-case variations, adding a common padding before or after the word and more. ...

7.2AI score
Exploits0References3
Kitploit
Kitploit
added 2022/09/12 11:30 a.m.60 views

PersistenceSniper - Powershell Script That Can Be Used By Blue Teams, Incident Responders And System Administrators To Hunt Persistences Implanted In Windows Machines

PersistenceSniper is a Powershell script that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. The script is also available on Powershell Gallery. --- The Why Why writing such a tool, you might ask. Well, for starters, I...

7.5AI score
Exploits0References8
OpenVAS
OpenVAS
added 2022/07/31 12:0 a.m.7 views

Fedora: Security Advisory for cheat (FEDORA-2022-5ef0bd9a27)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2022/07/30 1:55 a.m.19 views

[SECURITY] Fedora 36 Update: cheat-4.2.2-5.fc36

Cheat allows you to create and view interactive cheatsheets on the command- line. It was designed to help remind nix system administrators of options for commands that they use frequently, but not frequently enough to remember...

7.5AI score
Exploits0
OpenVAS
OpenVAS
added 2022/07/21 12:0 a.m.25 views

Fedora: Security Advisory for cheat (FEDORA-2022-3e1ade35db)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS8.9AI score0.05416EPSS
Exploits4References2
Fedora
Fedora
added 2022/07/20 1:40 a.m.36 views

[SECURITY] Fedora 35 Update: cheat-4.2.2-4.fc35

Cheat allows you to create and view interactive cheatsheets on the command- line. It was designed to help remind nix system administrators of options for commands that they use frequently, but not frequently enough to remember...

9.3CVSS9AI score0.05416EPSS
Exploits4
Fedora
Fedora
added 2022/07/13 2:0 a.m.32 views

[SECURITY] Fedora 36 Update: cheat-4.2.2-4.fc36

Cheat allows you to create and view interactive cheatsheets on the command- line. It was designed to help remind nix system administrators of options for commands that they use frequently, but not frequently enough to remember...

9.3CVSS9AI score0.05416EPSS
Exploits4
ThreatPost
ThreatPost
added 2022/06/08 1:36 p.m.37 views

Taming the Digital Asset Tsunami

Internet Protocol IP addresses and the devices, web services and cloud assets behind them are the lifeblood of modern businesses. But too often companies amass thousands of digital assets, creating an unmanageable mess for IT and security teams. Left unchecked, a single forgotten, abandoned or...

6.5AI score
Exploits0References3
CNNVD
CNNVD
added 2022/06/02 12:0 a.m.4 views

PbootCMS 跨站请求伪造漏洞

PbootCMS is PbootCMS individual developers of an open source enterprise website content management system CMS developed using the PHP language. A security vulnerability exists in PbootCMS v2.0.3, which can be exploited by an attacker to view the added system administrators via the...

8.8CVSS7.9AI score0.00508EPSS
Exploits1References2
OSV
OSV
added 2022/05/24 5:21 p.m.7 views

GHSA-8QG8-C7MW-6FJ7 Mattermost Server is vulnerable to Directory Traversal by System Admins

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used. A System Admin can achieve directory traversal...

6.5CVSS6.6AI score0.01233EPSS
Exploits0References6
OSV
OSV
added 2022/05/24 5:21 p.m.3 views

GHSA-MJ8V-773W-5QHJ Mattermost Server allows System Admin to modify LDAP account names and email addresses

An issue was discovered in Mattermost Server before 3.0.0. It has a superfluous API in which the System Admin can change the account name and e-mail address of an LDAP account...

2.7CVSS7AI score0.00624EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/05/24 5:21 p.m.7 views

Mattermost Server is vulnerable to Directory Traversal by System Admins

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used. A System Admin can achieve directory traversal...

6.5CVSS6.8AI score0.01233EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2022/05/04 6:15 p.m.5 views

CVE-2022-25786

Unprotected Alternate Channel vulnerability in debug console of GateManager allows system administrator to obtain sensitive information. This issue affects: GateManager all versions prior to 9.7...

4.9CVSS5.8AI score0.00688EPSS
Exploits0References1
OSV
OSV
added 2022/03/18 6:0 p.m.17 views

CVE-2022-1003 Sysadmin can override existing configs & bypass restrictions like EnableUploads

One of the API in Mattermost version 6.3.0 and earlier fails to properly protect the permissions, which allows the system administrators to combine the two distinct privileges/capabilities in a way that allows them to override certain restricted configurations like EnableUploads...

3.3CVSS6AI score0.00482EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/03/18 12:0 a.m.6 views

Mattermost 安全漏洞

A security vulnerability exists in Mattermost, an open source collaboration platform from Mattermost, a US-based company, which allows system administrators to combine two different permissions/features in a way that allows them to override certain restricted configurations e.g. EnableUploads. No...

4.9CVSS5.5AI score0.00482EPSS
Exploits0References2
Rows per page
Query Builder