Lucene search
K

6 matches found

RedHat Linux
RedHat Linux
added 2026/06/25 5:36 p.m.5 views

keycloak: Group-Admin Escalation to Realm-Admin

A flaw was found in Keycloak. A missing authorization check in the GroupResource.addChild endpoint within the Admin REST API allows an authenticated user with limited administrative privileges to reparent any existing group. When Fine-Grained Admin Permissions v2 FGAPv2 is enabled, an attacker wi...

7.7CVSS5.8AI score0.00288EPSS
Exploits0References4
CVE
CVE
added 2026/06/24 8:56 p.m.8 views

CVE-2026-45688

The CVE-2026-45688 entry describes a pre-auth NoSQL injection in Rocket.Chat’s CAS login handler. Before versions 8.5.0, 8.4.1, 8.3.3, 8.2.3, 8.1.4, 8.0.5, 7.13.7, and 7.10.11, the handler forwards client-supplied options.cas.credentialToken directly into a MongoDB findOne({_id: …}) query without...

9.1CVSS5.9AI score0.00289EPSS
Exploits0References1
Snyk
Snyk
added 2026/05/18 5:42 p.m.11 views

Improper Privilege Management

Overview @budibase/worker is a Budibase background service Affected versions of this package are vulnerable to Improper Privilege Management through the onboardUsers function. An attacker can gain unauthorized administrative privileges by sending crafted requests to the affected endpoint, allowin...

8.8CVSS5.8AI score0.00261EPSS
Exploits0References2
NVD
NVD
added 2026/05/08 8:16 p.m.19 views

CVE-2026-42185

People is an application to handle users and teams, and distribute permissions across La Suite. Prior to version 1.25.0, a user holding the Administrator role on a mail domain could send a crafted invitation request to promote any existing user including users with no current domain access to the...

5.5CVSS0.00263EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/03/14 12:0 a.m.8 views

HashiCorp Nomad 安全漏洞

HashiCorp Nomad is a simple and flexible scheduler and orchestrator from HashiCorp USA. It is used to manage containerized and non-containerized applications at scale, both locally and in the cloud. A security vulnerability exists in HashiCorp Nomad , Nomad Enterprise versions 1.4.0 through 1.5.0...

8.8CVSS7.9AI score0.00532EPSS
Exploits0References2
exploitpack
exploitpack
added 2017/07/13 12:0 a.m.37 views

CyberArk Viewfinity 5.5.10.95 - Local Privilege Escalation

CyberArk Viewfinity 5.5.10.95 - Local Privilege Escalation Exploit Title: Privilege Escalation via CyberArk Viewfinity 8. This will spawn a new CMD prompt. Verify you are now Admin...

0.7AI score0.00985EPSS
Exploits3
Rows per page
Query Builder