Lucene search
+L

8 matches found

nvd
nvd
added 2026/04/01 4:23 p.m.5 views

CVE-2026-4925

Improper access control in the users MFA feature in Devolutions Server allows an authenticated user to bypass administrator-enforced restrictions and remove their own multi-factor authentication MFA configuration via a crafted request. This issue affects Server: from 2026.1.6 through 2026.1.11...

5CVSS0.00194EPSS
Exploits0References1
osv
osv
added 2023/01/10 9:15 p.m.5 views

CVE-2022-36441

An issue was discovered in Zebra Enterprise Home Screen 4.1.19. The Gboard used by different applications can be used to launch and use several other applications that are restricted by the admin...

7.1CVSS5.8AI score0.00192EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2022/01/18 12:0 a.m.5 views

PT-2022-10681 · Mattermost · Mattermost

Name of the Vulnerable Software and Affected Versions: Mattermost versions 6.1 and earlier Description: The issue arises from insufficient permission validation when viewing archived channels. This allows authenticated users to bypass system administrator restrictions and view the contents of...

6.5CVSS6.2AI score0.00585EPSS
Exploits0References3
hackerone
hackerone
added 2021/02/09 5:41 p.m.20 views

Mail.ru: REST API Endpoint leads to Unauthorized user disclosed private [ issue ] details

Summary Jira allows an administrator to restrict access to projects to specific users only. Or adjusting all project properties to be available only to the system administrator, which means that all users in the jira account cannot access issues, project, dashboard and any information about the...

6.8AI score
Exploits0
veracode
veracode
added 2020/04/10 12:36 a.m.19 views

Access Control Bypass

gdm is vulnerable to access control bypass. A flaw was found in the way the gdm package was built. The gdm package was missing TCP wrappers support, which could result in an administrator believing they had access restrictions enabled when they did not...

6.8CVSS3.7AI score0.01841EPSS
Exploits0References7Affected Software1
ptsecurity
ptsecurity
added 2020/03/24 12:0 a.m.5 views

PT-2020-3997 · Acymailing · Acymailing

Name of the Vulnerable Software and Affected Versions: AcyMailing versions prior to 6.9.2 Description: The issue is related to the lack of restrictions on file uploads in the AcyMailing mail manager. This can be exploited by a remote attacker to execute arbitrary code. The problem arises from the...

10CVSS7.2AI score0.013EPSS
Exploits0References7
cve
cve
added 2016/01/17 2:0 a.m.54 views

CVE-2015-7468

CVE-2015-7468 concerns IBM Jazz Reporting Service (JRS) as part of Rational Insight. The vulnerability allows remote authenticated users to bypass restrictions on administrator tasks due to improper access control, affecting JRS 5.x up to 5.0.2-Rational-CLM-ifix011 and 6.0 up to 6.0.0-Rational-CL...

4.3CVSS5.2AI score0.00887EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2000/05/16 4:0 a.m.20 views

CVE-2000-0379

The Netopia R9100 router does not prevent authenticated users from modifying SNMP tables, even if the administrator has configured it to do so...

3.6CVSS6.3AI score0.01811EPSS
Exploits0References3
Rows per page
Query Builder