Lucene search
K

9 matches found

RedHat Linux
RedHat Linux
added 2023/08/14 2:51 p.m.7 views

dotnet: RCE under dotnet commands

A vulnerability was found in dotnet. This issue exists when some dotnet commands are used in directories with weaker permissions, which can result in remote code execution...

7.8CVSS6.2AI score0.02471EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2023/08/14 2:51 p.m.5 views

dotnet: RCE under dotnet commands

A vulnerability was found in dotnet. This issue exists when some dotnet commands are used in directories with weaker permissions, which can result in remote code execution...

7.8CVSS6.2AI score0.02471EPSS
Exploits0References8
OSV
OSV
added 2023/07/27 10:15 p.m.5 views

CVE-2022-43701

When the installation directory does not have sufficiently restrictive file permissions, an attacker can modify files in the installation directory to cause execution of malicious code...

7.8CVSS5.9AI score0.00173EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2023/04/09 5:26 a.m.461 views

Exploit for CVE-2023-31497

EPScalate An elevation of privilege vulnerability in QuickHeal...

7.8CVSS8AI score0.00515EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2022/03/09 12:0 a.m.9 views

PT-2022-17071 · Printix · Printix Secure Cloud Print Management

Name of the Vulnerable Software and Affected Versions: Printix Secure Cloud Print Management versions 1.3.1106.0 and earlier Description: The issue is related to the creation of a temporary temp.ini file in a directory with insecure permissions, leading to privilege escalation due to a race...

9.3CVSS7.9AI score0.11011EPSS
Exploits4References9
OSV
OSV
added 2021/06/30 3:15 p.m.3 views

CVE-2021-35973

NETGEAR WAC104 devices before 1.0.4.15 are affected by an authentication bypass vulnerability in /usr/sbin/minihttpd, allowing an unauthenticated attacker to invoke any action by adding the &currentsetting.htm substring to the HTTP query, a related issue to CVE-2020-27866. This directly allows th...

9.8CVSS7.3AI score
Exploits0References2
OSV
OSV
added 2021/03/15 5:15 a.m.2 views

DEBIAN-CVE-2021-28374

The Debian courier-authlib package before 0.71.1-2 for Courier Authentication Library creates a /run/courier/authdaemon directory with weak permissions, allowing an attacker to read user information. This may include a cleartext password in some configurations. In general, it includes the user's...

7.5CVSS7.3AI score0.01276EPSS
Exploits0References1
OSV
OSV
added 2018/12/06 11:29 p.m.3 views

CVE-2018-6755

Weak Directory Permission Vulnerability in Microsoft Windows client in McAfee True Key TK 5.1.230.7 and earlier allows local users to execute arbitrary code via specially crafted malware...

7.8CVSS6.1AI score0.00982EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2012/09/19 5:33 p.m.5 views

condor: lock directories created mode 0777 allow for FS-based authentication challenge bypass

The filesystem authentication condorio/condorauthfs.cpp in Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 uses authentication directories even when they have weak permissions, which allows remote attackers to impersonate users by renaming a user's authentication directory...

6.4CVSS5.9AI score0.03184EPSS
Exploits0References4
Rows per page
Query Builder