CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3946 matches found

Cvelist•added 2024/08/22 2:54 a.m.•14 views

CVE-2024-39576

Dell Power Manager DPM, versions 3.15.0 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution and Elevation of privileges...

8.8CVSS0.00151EPSS

Exploits0References1

NVD•added 2024/08/21 5:15 p.m.•14 views

CVE-2024-5930

VIPRE Advanced Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of VIPRE Advanced Security. An attacker must first obtain the ability to execute low-privileged code on the...

7.8CVSS0.00272EPSS

Exploits0References2

Vulnrichment•added 2024/08/21 4:12 p.m.•10 views

CVE-2024-5930 VIPRE Advanced Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability

7.8CVSS7.5AI score0.00272EPSS

Exploits0References2

Cvelist•added 2024/08/21 4:12 p.m.•18 views

CVE-2024-5930 VIPRE Advanced Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability

7.8CVSS0.00272EPSS

Exploits0References2

OSV•added 2024/08/21 3:29 p.m.•12 views

GO-2022-0847 Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul

Incorrect Permission Assignment for Critical Resource in Hashicorp Consul in github.com/hashicorp/consul...

5.3CVSS5.2AI score0.01552EPSS

Exploits0References7

OSV•added 2024/08/21 3:11 p.m.•18 views

GO-2022-0608 Incorrect Permission Assignment for Critical Resource in CRI-O in github.com/cri-o/cri-o

Incorrect Permission Assignment for Critical Resource in CRI-O in github.com/cri-o/cri-o...

4.9CVSS5.6AI score0.0075EPSS

Exploits0References6

OSV•added 2024/08/21 3:11 p.m.•21 views

GO-2022-0578 Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault

Incorrect Privilege Assignment in HashiCorp Vault in github.com/hashicorp/vault...

8.1CVSS8.1AI score0.00755EPSS

Exploits0References4

OSV•added 2024/08/21 2:30 p.m.•14 views

GO-2023-2088 Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault

Hashicorp Vault Incorrect Permission Assignment for Critical Resource vulnerability in github.com/hashicorp/vault...

7.6CVSS7.5AI score0.00436EPSS

Exploits0References3

OSV•added 2024/08/21 2:15 p.m.•3 views

CVE-2024-28000

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from 1.9 through 6.3.0.1...

9.8CVSS5.8AI score

Exploits0References5

NVD•added 2024/08/21 2:15 p.m.•42 views

CVE-2024-28000

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through = 6.3.0.1...

9.8CVSS0.67925EPSS

Exploits8References4

Vulnrichment•added 2024/08/21 1:53 p.m.•91 views

CVE-2024-28000 WordPress LiteSpeed Cache plugin <= 6.3.0.1 - Unauthenticated Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through = 6.3.0.1...

9.8CVSS5.7AI score0.67925EPSS

Exploits8References1

VulnCheck KEV•added 2024/08/21 12:0 a.m.•1 views

VulnCheck KEV: CVE-2024-28000

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Privilege Escalation.This issue affects LiteSpeed Cache: from 1.9 through 6.3.0.1...

9.8CVSS5.8AI score0.67925EPSS

Exploits8References1

Vulnrichment•added 2024/08/20 7:26 p.m.•13 views

CVE-2024-41773 IBM Global Configuration Management incorrect ownership assignment

IBM Global Configuration Management 7.0.2 and 7.0.3 could allow an authenticated user to archive a global baseline due to improper access controls...

6.5CVSS6.8AI score0.00282EPSS

Exploits0References2

Cvelist•added 2024/08/20 7:26 p.m.•31 views

CVE-2024-41773 IBM Global Configuration Management incorrect ownership assignment

IBM Global Configuration Management 7.0.2 and 7.0.3 could allow an authenticated user to archive a global baseline due to improper access controls...

6.5CVSS0.00282EPSS

Exploits0References2

CNNVD•added 2024/08/15 12:0 a.m.•2 views

Directus 安全漏洞

Directus is a real-time Api and application dashboard open-sourced by Directus. It is used to manage Sql database content. A security vulnerability exists in Directus version 10.13.0 that originates from allowing an authenticated external attacker to modify a preset created by the same user in...

4.3CVSS6.3AI score0.00326EPSS

Exploits0References3

Cvelist•added 2024/08/13 4:41 p.m.•28 views

CVE-2024-6619 Incorrect Permission Assignment for Critical Resource in Ocean Data Systems Dream Report

In Ocean Data Systems Dream Report, an incorrect permission vulnerability could allow a local unprivileged attacker to escalate their privileges and could cause a denial-of-service...

8.5CVSS0.00143EPSS

Exploits0References1

ICS•added 2024/08/13 6:0 a.m.•24 views

Rockwell Automation FactoryTalk View Site Edition (Update A)

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION : Low attack complexity Vendor : Rockwell Automation Equipment : FactoryTalk View Site Edition Vulnerability : Incorrect Permission Assignment for Critical Resource 2. RISK EVALUATION Successful exploitation of this vulnerability could allow...

8.8CVSS7AI score0.01656EPSS

Exploits0References10

RedHat Linux•added 2024/08/08 4:44 a.m.•10 views

kernel: tls: fix missing memory barrier in tls_init

In the Linux kernel, the following vulnerability has been resolved: tls: fix missing memory barrier in tlsinit In tlsinit, a write memory barrier is missing, and store-store reordering may cause NULL dereference in tlssetsockopt,getsockopt. CPU0 CPU1 ----- ----- // In tlsinit // In tlsctxcreate c...

5.5CVSS6.5AI score0.00253EPSS

Exploits0References5

Veracode•added 2024/08/08 3:50 a.m.•18 views

Incorrect Permission Assignment

Pulp is vulnerable to Incorrect Permission Assignment. The vulnerability is due to the use of the AutoAddObjPermsMixin method, which sets permissions based on the oldest user with task permissions. This allows an attacker to gain unauthorized access or privileges, as the permissions for objects...

8.3CVSS7AI score0.0061EPSS

Exploits0References7Affected Software1

Tenable Nessus•added 2024/08/08 12:0 a.m.•14 views

Siemens RUGGEDCOM Incorrect Privilege Assignment (CVE-2024-38278)

The affected products with IP forwarding enabled wrongly make available certain remote services in non-managed VLANs, even if these services are not intentionally activated. An attacker could leverage this vulnerability to create a remote shell to the affected system. This plugin only works with...

8.8CVSS7.4AI score0.00444EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by