26 matches found
CVE-2025-14604
IBM Storage Scale IBM S through rage Scale 5.2.3.0 - 5.2.3.5, and IBM S through rage Scale 6.0.0.0 - 6.0.0.1 could allow a local user to unintentionally trigger additional permissions for resources in a way that allows that resource to be executed by unintended actors...
CVE-2025-14604
IBM Storage Scale IBM S through rage Scale 5.2.3.0 - 5.2.3.5, and IBM S through rage Scale 6.0.0.0 - 6.0.0.1 could allow a local user to unintentionally trigger additional permissions for resources in a way that allows that resource to be executed by unintended actors...
CVE-2025-14604
IBM Storage Scale IBM S through rage Scale 5.2.3.0 - 5.2.3.5, and IBM S through rage Scale 6.0.0.0 - 6.0.0.1 could allow a local user to unintentionally trigger additional permissions for resources in a way that allows that resource to be executed by unintended actors...
EUVD-2017-10640
Malware in sbrugna...
EUVD-2025-21093
Malicious code in bioql PyPI...
CVE-2024-28023
A vulnerability exists in the message queueing mechanism that if exploited can lead to the exposure of resources or functionality to unintended actors, possibly providing attackers with sensitive information or even execute arbitrary code...
CVE-2024-28023
The CVE-2024-28023 entry concerns a vulnerability in the message queueing mechanism used by Hitachi Energy FOXMAN-UN / UNEM (Hitachi FOXMAN-UN server and related APIGateway components). Connected documents corroborate a risk that exploitation could lead to exposure of resources or functionality t...
Cypress Solutions CTM-200/CTM-ONE - Hard-coded Credentials Remote Root (Telnet/SSH)
Exploit Title: Cypress Solutions CTM-200/CTM-ONE - Hard-coded Credentials Remote Root Telnet/SSH Date: 21.09.2021 Exploit Author: LiquidWorm Vendor Homepage: https://www.cypress.bc.ca !/usr/bin/env python3 Cypress Solutions CTM-200/CTM-ONE Hard-coded Credentials Remote Root Telnet/SSH Vendor:...
Code injection
IBM QRadar SIEM 7.2 and 7.3 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 155350...
CVE-2019-4158
IBM Security Access Manager 9.0.1 through 9.0.6 does not prove that a user's identity is correct which can lead to the exposure of resources or functionality to unintended actors. IBM X-Force ID: 158574...
CVE-2019-4158
IBM Security Access Manager 9.0.1 through 9.0.6 does not prove that a user's identity is correct which can lead to the exposure of resources or functionality to unintended actors. IBM X-Force ID: 158574...
CVE-2018-8848
Philips e-Alert Unit non-medical device, Version R2.1 and prior. The software, upon installation, sets incorrect permissions for an object that exposes it to an unintended actor...
Code injection
Bitcoin Core before v0.13.0 allows denial of service memory exhaustion triggered by the remote network alert system deprecated since Q1 2016 if an attacker can sign a message with a certain private key that had been known by unintended actors, because of an infinitely sized map. This affects othe...
CVE-2016-10724
Bitcoin Core before v0.13.0 allows denial of service memory exhaustion triggered by the remote network alert system deprecated since Q1 2016 if an attacker can sign a message with a certain private key that had been known by unintended actors, because of an infinitely sized map. This affects othe...
CVE-2016-10724
Bitcoin Core before v0.13.0 allows denial of service memory exhaustion triggered by the remote network alert system deprecated since Q1 2016 if an attacker can sign a message with a certain private key that had been known by unintended actors, because of an infinitely sized map. This affects othe...
CVE-2016-10724
Removed by vendor...
Security Bulletin: IBM Security Key Lifecycle Manager is affected by incorrect permission assignment for critical resource (CVE-2016-6098)
Summary IBM Security Key Lifecycle Manager specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM Security Key Lifecycle Manager addresses this vulnerability with the following CVE-2016-6098 Vulnerability Details...
Code injection
IBM QRadar 7.3 and 7.3.1 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 133122...
Code injection
IBM QRadar 7.2 and 7.3 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 119737...
Code injection
IBM Security Guardium 10.0 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 124741...