9 matches found
Devolutions Server 安全漏洞
Devolutions Server is an application system developed by the Canadian company Devolutions. It provides a fully functional solution for shared accounts and password management. Versions of Devolutions Server prior to 2025.3.15 contained security vulnerabilities, which were caused by privilege cach...
Apple iOS和Apple iPadOS 安全漏洞
Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS before version 16.7.9 and iPadOS before version 16.7.9, which stems from a...
The vulnerability of the microprogramming software of the Cisco TelePresence Collaboration Endpoint conference call control device and the Cisco RoomOS operating system, related to access control deficiencies, allows a intruder to bypass access restrictions.
The vulnerability of the microprogramming software of the Cisco TelePresence Collaboration Endpoint conference call control device and the Cisco RoomOS operating system is related to lack of access control mechanisms. Exploiting this vulnerability can allow an attacker to bypass access restrictio...
Apperta Foundation OpenEyes 信息泄露漏洞
Apperta Foundation OpenEyes is an open source electronic medical record ERP from the Apperta Foundation. A security vulnerability exists in Apperta Foundation OpenEyes 3.5.1 that allows remote attackers to view sensitive patient information without the expected privilege level...
PT-2021-4146 · Cisco · Cisco Ios Xr
Name of the Vulnerable Software and Affected Versions: Cisco IOS XR Software affected versions not specified Description: A vulnerability in the Cisco IOS XR Software CLI could allow an authenticated, local attacker to view more information than their privileges allow. This issue is due to...
UBUNTU-CVE-2019-5778
A missing case for handling special schemes in permission request checks in Extensions in Google Chrome prior to 72.0.3626.81 allowed an attacker who convinced a user to install a malicious extension to bypass extension permission checks for privileged pages via a crafted Chrome Extension...
PT-2017-3820 · Postgresql +3 · Postgresql +3
Name of the Vulnerable Software and Affected Versions: PostgreSQL versions prior to 9.2.21 PostgreSQL versions 9.3.x prior to 9.3.17 PostgreSQL versions 9.4.x prior to 9.4.12 PostgreSQL versions 9.5.x prior to 9.5.7 PostgreSQL versions 9.6.x prior to 9.6.3 Description: The issue is related to...
CVE-2009-3725
The connector layer in the Linux kernel before 2.6.31.5 does not require the CAPSYSADMIN capability for certain interaction with the 1 uvesafb, 2 pohmelfs, 3 dst, or 4 dm subsystem, which allows local users to bypass intended access restrictions and gain privileges via calls to functions in these...
Gentoo Security Advisory GLSA 200809-04 (mysql)
The remote host is missing updates announced in advisory GLSA 200809-04. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...