Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an encoder connector assignment problem in the drm/msm/dpu component...

The vulnerability of the microprogrammed software of Zyxel ATP, USG FLEX, and USG FLEX 50(W)/USG20(W)-VPN devices lies in errors related to pointer swapping. This allows a hacker to trigger a service failure.

The vulnerability of the microprogrammed software in Zyxel ATP, USG FLEX, and USG FLEX 50W/USG20W-VPN devices is related to errors in pointer assignment. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending specially crafted packets...

The vulnerability of the software for providing secure remote access to data in the Palo Alto Networks GlobalProtect App lies in the improper assignment of permissions to critical resources, allowing attackers to increase their privileges.

The vulnerability of the software for providing secure remote access to data in the Palo Alto Networks GlobalProtect App is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability can allow attackers to enhance their privileges...

CVE-2024-42022

An incorrect permission assignment vulnerability allows an attacker to modify product configuration files...

CVE-2024-42022

An incorrect permission assignment vulnerability allows an attacker to modify product configuration files...

CVE-2024-42022

An incorrect permission assignment vulnerability allows an attacker to modify product configuration files...

CVE-2024-42022

CVE-2024-42022 is an incorrect permission assignment vulnerability affecting multiple Veeam products (e.g., Veeam ONE, Backup & Replication, and related components). The threat allows an attacker to modify product configuration files via a local/privilege-related path, as described across connect...

PT-2024-7550 · Veeam · Veeam One

Name of the Vulnerable Software and Affected Versions: Veeam ONE affected versions not specified Description: The issue is related to an incorrect permission assignment, which allows an attacker to modify product configuration files. This is due to insufficient access control in the software...

Dell PowerScale OneFS Incorrect Privilege Assignment Vulnerability

Dell PowerScale OneFS is a proprietary operating system developed by Dell for its PowerScale horizontally scalable NAS network attached storage solution. Dell PowerScale OneFS suffers from an incorrect privilege assignment vulnerability that could be exploited by an attacker to gain root-level...

CVE-2024-39579

Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contains an incorrect privilege assignment vulnerability. A local high privileged attacker could potentially exploit this vulnerability to gain root-level access...

CVE-2024-39579

Dell PowerScale OneFS versions 8.2.2.x through 9.8.0.0 contains an incorrect privilege assignment vulnerability. A local high privileged attacker could potentially exploit this vulnerability to gain root-level access...

CVE-2024-39579

CVE-2024-39579 affects Dell PowerScale OneFS 8.2.2.x–9.8.0.0, with an incorrect privilege assignment vulnerability that could allow a local, high-privilege attacker to obtain root-level access. The connected documents provide specific affected versions and the local exploit scenario; exploitation...

Dell PowerScale OneFS 安全漏洞

Dell PowerScale OneFS is a proprietary operating system developed by Dell for its PowerScale horizontally scalable NAS network attached storage solution. Dell PowerScale OneFS suffers from an incorrect privilege assignment vulnerability that could be exploited by an attacker to gain root-level...

CLSA-2024-1725012269 Fix CVE(s): CVE-2024-37894

SECURITY UPDATE: Memory Corruption via Out-of-bounds Write in ESI variable assignment - debian/patches/CVE-2024-37894.patch: fix incorrect type declaration in TrieNode.cc to prevent potential type conversion issues - CVE-2024-37894...

Rockwell Automation ThinManager ThinServer

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION : Exploitable remotely/Low attack complexity Vendor : Rockwell Automation Equipment : ThinManager ThinServer Vulnerabilities : Improper Privilege Management, Incorrect Permission Assignment for Critical Resource, Improper Input Validation 2...

The vulnerability of the nested_svm_load_cr3() function in the nSVM component of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the nestedsvmloadcr3 function in the nSVM component of the Linux operating system is related to the assignment of NULL during an embedded migration. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2024-39576

Dell Power Manager DPM, versions 3.15.0 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and Elevation of privileges...

CVE-2024-39576

Dell Power Manager DPM, versions 3.15.0 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and Elevation of privileges...

CVE-2024-39576

Dell Power Manager DPM, versions 3.15.0 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and Elevation of privileges...

CVE-2024-39576

Dell Power Manager (DPM) versions ≤3.15.0 suffer from an Incorrect Privilege Assignment vulnerability due to insecure DCOM deserialization, enabling a low-privileged, locally authenticated attacker to achieve code execution and elevation to SYSTEM. Affected component: DPM; root cause: insecure pr...