Lucene search
+L

1694 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:34 a.m.7 views

CVE-2017-18424

In cPanel before 66.0.2, the Apache HTTP Server configuration file is changed to world-readable when rebuilt SEC-274...

3.3CVSS6.8AI score0.00362EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:34 a.m.18 views

CVE-2017-18428

In cPanel before 66.0.2, Apache HTTP Server domlogs become temporarily world-readable during log processing SEC-290...

2.5CVSS6.9AI score0.00294EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:1 a.m.11 views

CVE-2011-0178

The FSFindFolder API in CarbonCore in Apple Mac OS X before 10.6.7 provides a world-readable directory in response to a call with the kTemporaryFolderType flag, which allows local users to obtain potentially sensitive information by accessing this directory...

2.1CVSS5.5AI score0.00333EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:40 a.m.10 views

CVE-1999-0712

A vulnerability in Caldera Open Administration System COAS allows the /etc/shadow password file to be made world-readable...

2.1CVSS7AI score0.00402EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:30 a.m.8 views

CVE-2019-16061

A number of files on the NETSAS Enigma NMS server 65.0.0 and prior are granted weak world-readable and world-writable permissions, allowing any low privileged user with access to the system to read sensitive data e.g., .htpasswd and create/modify/delete content e.g., under /var/www/html/docs with...

8.8CVSS6.7AI score0.00994EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: libvirt (UTSA-2025-993329)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993329 advisory. A flaw was found in libvirt. External inactive snapshots for shut-down VMs are incorrectly created as world-readable, making it possible for unprivileged users to...

5.5CVSS5.4AI score0.00118EPSS
Exploits0References4
OSV
OSV
added 2025/12/30 12:17 p.m.5 views

OESA-2025-2894 libvirt security update

Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the libvirtd server exporting the virtualization support. Security Fixes: A flaw was found in libvirt. External inactive snapshots for shut-down VMs are...

5.5CVSS5.9AI score0.00118EPSS
Exploits0References2
OSV
OSV
added 2025/12/30 12:17 p.m.4 views

OESA-2025-2893 libvirt security update

Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. The main package includes the libvirtd server exporting the virtualization support. Security Fixes: A flaw was found in libvirt. External inactive snapshots for shut-down VMs are...

5.5CVSS5.9AI score0.00118EPSS
Exploits0References2
Debian
Debian
added 2025/12/10 4:26 p.m.6 views

[SECURITY] [DLA 4400-1] rear security update

Debian LTS Advisory DLA-4400-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert December 10, 2025 https://wiki.debian.org/LTS Package : rear Version : 2.6+dfsg-1+deb11u1 CVE ID : CVE-2024-23301 Debian Bug : 1060747 It has been discovered that Relax-and-Recover aka...

5.5CVSS6AI score0.00291EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/12/10 12:0 a.m.4 views

Debian dla-4400 : rear - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4400 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4400-1 [email protected] https://www.debian.org/lts/security/...

5.5CVSS5.7AI score0.00291EPSS
Exploits1References4
OSV
OSV
added 2025/11/27 10:23 a.m.2 views

OPENSUSE-SU-2025:20100-1 Security update for libvirt

This update for libvirt fixes the following issues: - CVE-2025-13193: Fixed Information disclosure via world-readable VM snapshots bsc1253703 - CVE-2025-12748: Fixed Denial of service in XML parsing bsc1253278 Other fixes: - spec: Adjust dbus dependency bsc1253642 - qemu: Add support for Intel TD...

5.5CVSS5.8AI score0.00204EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2025/11/21 9:4 a.m.6 views

Libvirt: information disclosure via world-readable vm snapshots

...

5.5CVSS7AI score0.00118EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/11/19 3:16 p.m.11 views

CVE-2025-64996

In Checkmk versions prior to 2.4.0p16, 2.3.0p41, and all versions of 2.2.0 and older, the mkinotify plugin creates world-readable and writable files, allowing any local user on the system to read the plugin's output and manipulate it, potentially leading to unauthorized access to or modification ...

4.8CVSS6.4AI score0.00099EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/19 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-64996

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Checkmk versions prior to 2.4.0p16, 2.3.0p41, and all versions of 2.2.0 and older, the mkinotify plugin creates world-readable and writable files, allowing a...

4.8CVSS5.8AI score0.00099EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/18 6:32 p.m.5 views

EUVD-2025-198049

In Checkmk versions prior to 2.4.0p16, 2.3.0p41, and all versions of 2.2.0 and older, the mkinotify plugin creates world-readable and writable files, allowing any local user on the system to read the plugin's output and manipulate it, potentially leading to unauthorized access to or modification ...

4.8CVSS6AI score0.00099EPSS
Exploits0References2
NVD
NVD
added 2025/11/18 4:15 p.m.11 views

CVE-2025-64996

In Checkmk versions prior to 2.4.0p16, 2.3.0p41, and all versions of 2.2.0 and older, the mkinotify plugin creates world-readable and writable files, allowing any local user on the system to read the plugin's output and manipulate it, potentially leading to unauthorized access to or modification ...

4.8CVSS0.00099EPSS
Exploits0References1
OSV
OSV
added 2025/11/18 4:15 p.m.38 views

UBUNTU-CVE-2025-64996

In Checkmk versions prior to 2.4.0p16, 2.3.0p41, and all versions of 2.2.0 and older, the mkinotify plugin creates world-readable and writable files, allowing any local user on the system to read the plugin's output and manipulate it, potentially leading to unauthorized access to or modification ...

4.8CVSS5.8AI score0.00099EPSS
Exploits0References3
CVE
CVE
added 2025/11/18 3:10 p.m.15 views

CVE-2025-64996

Checkmk vulnerable component: mk_inotify plugin. Affected in versions before 2.4.0p16, 2.3.0p41, and all 2.2.0 and older. The plugin creates world-readable/writable files, allowing any local user to read its output and modify it, potentially leading to unauthorized access to or modification of mo...

4.8CVSS6.1AI score0.00099EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/18 3:10 p.m.2 views

CVE-2025-64996 Overly broad file permissions in the mk_inotify plugin allows reading and manipulating the plugin's output

In Checkmk versions prior to 2.4.0p16, 2.3.0p41, and all versions of 2.2.0 and older, the mkinotify plugin creates world-readable and writable files, allowing any local user on the system to read the plugin's output and manipulate it, potentially leading to unauthorized access to or modification ...

4.8CVSS6.1AI score0.00099EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/18 3:10 p.m.14 views

CVE-2025-64996 Overly broad file permissions in the mk_inotify plugin allows reading and manipulating the plugin's output

In Checkmk versions prior to 2.4.0p16, 2.3.0p41, and all versions of 2.2.0 and older, the mkinotify plugin creates world-readable and writable files, allowing any local user on the system to read the plugin's output and manipulate it, potentially leading to unauthorized access to or modification ...

4.8CVSS0.00099EPSS
Exploits0References1
Rows per page
Query Builder