Lucene search
K

794 matches found

SUSE Linux
SUSE Linux
added 2025/06/05 3:44 p.m.2 views

Security update for screen

This update for screen fixes the following issues: This update also ships screen to SL Micro 6.1 Extras. also use tty fd passing after a suspend MSGCONT do not chmod the tty for multiattach, rely on tty fd passing instead bsc1242269 CVE-2025-46802 fix resume after suspend in multiuser mode Patch...

6CVSS7.2AI score0.0019EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 9:27 p.m.8 views

CVE-2021-30463

VestaCP through 0.9.8-24 allows attackers to gain privileges by creating symlinks to files for which they lack permissions. After reading the RKEY value from user.conf under the /usr/local/vesta/data/users/admin directory, the admin password can be changed via a /reset/?action=confirm=admin= URI...

7.8CVSS7.3AI score0.00497EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:24 p.m.7 views

CVE-2021-29005

Insecure permission of chmod command on rConfig server 3.9.6 exists. After installing rConfig apache user may execute chmod as root without password which may let an attacker with low privilege to gain root access on server...

9CVSS7.6AI score0.02068EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:51 p.m.6 views

CVE-2020-15542

SolarWinds Serv-U FTP server before 15.2.1 mishandles the CHMOD command...

9.8CVSS7AI score0.01632EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 5:1 a.m.6 views

CVE-2016-10849

cPanel before 11.54.0.4 allows certain file-chmod operations in scripts/secureit SEC-82...

6.5CVSS7AI score0.00935EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for cups (EulerOS-SA-2025-1472)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.7CVSS5.2AI score0.02421EPSS
Exploits1References2
CNVD
CNVD
added 2025/04/18 12:0 a.m.0 views

PCMan FTP Server SITE CHMOD Command Handler Buffer Overflow Vulnerability

PCMan FTP Server is PCMan open source set of FTP software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from SITE CHMOD Command Handler failing to properly validate the length and size of the input data, which can be exploited by an attacker to cause a denial of...

9.8CVSS7.5AI score0.00707EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/10 4:13 a.m.20 views

CVE-2025-3373

A vulnerability has been found in PCMan FTP Server 2.0.7 and classified as critical. Affected by this vulnerability is an unknown functionality of the component SITE CHMOD Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclos...

9.8CVSS7.2AI score0.00707EPSS
Exploits1References1
OSV
OSV
added 2025/04/07 4:15 p.m.4 views

CVE-2025-3373

A vulnerability has been found in PCMan FTP Server 2.0.7 and classified as critical. Affected by this vulnerability is an unknown functionality of the component SITE CHMOD Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclos...

9.8CVSS7.2AI score0.00707EPSS
Exploits1References4
NVD
NVD
added 2025/04/07 4:15 p.m.34 views

CVE-2025-3373

A vulnerability has been found in PCMan FTP Server 2.0.7 and classified as critical. Affected by this vulnerability is an unknown functionality of the component SITE CHMOD Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclos...

9.8CVSS0.00707EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/04/07 3:31 p.m.41 views

CVE-2025-3373 PCMan FTP Server SITE CHMOD Command buffer overflow

A vulnerability has been found in PCMan FTP Server 2.0.7 and classified as critical. Affected by this vulnerability is an unknown functionality of the component SITE CHMOD Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclos...

7.5CVSS0.00707EPSS
Exploits1References4
CVE
CVE
added 2025/04/07 3:31 p.m.72 views

CVE-2025-3373

CVE-2025-3373 affects PCMan FTP Server 2.0.7 through a buffer overflow in the SITE CHMOD Command Handler. Multiple connected sources describe an input validation flaw that can be triggered remotely, potentially enabling an attacker to cause denial of service or threaten integrity/confidentiality ...

9.8CVSS7.2AI score0.00707EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/07 3:31 p.m.15 views

CVE-2025-3373 PCMan FTP Server SITE CHMOD Command buffer overflow

A vulnerability has been found in PCMan FTP Server 2.0.7 and classified as critical. Affected by this vulnerability is an unknown functionality of the component SITE CHMOD Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclos...

7.5CVSS7AI score0.00707EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/04/07 12:0 a.m.4 views

PT-2025-15254 · Unknown · Pcman Ftp Server

Name of the Vulnerable Software and Affected Versions: PCMan FTP Server version 2.0.7 Description: A critical issue has been discovered, affecting an unknown functionality of the SITE CHMOD Command Handler component. This issue leads to a buffer overflow and can be exploited remotely...

9.8CVSS7.5AI score0.00707EPSS
Exploits1References9
CNNVD
CNNVD
added 2025/04/07 12:0 a.m.4 views

PCMan FTP Server 安全漏洞

PCMan FTP Server is PCMan open source set of FTP software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from SITE CHMOD Command Handler failing to properly validate the length and size of the input data, which can be exploited by an attacker to cause a denial of...

9.8CVSS7.1AI score0.00707EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/03/26 12:0 a.m.6 views

Splunk 安全漏洞

Splunk is a suite of data collection and analysis software from Splunk, Inc. It is used to collect, index and analyze and the data it generates, including data generated by all IT systems and infrastructures physical, virtual machines and cloud. A security vulnerability exists in Splunk versions...

3.3CVSS6.7AI score0.00111EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/14 10:47 a.m.9 views

CVE-2024-26307

Possible race condition vulnerability in Apache Doris. Some of code using chmod method. This method run the risk of someone renaming the file out from under user and chmodding the wrong file. This could theoretically happen, but the impact would be minimal. This issue affects Apache Doris: before...

5.3CVSS6.9AI score0.00221EPSS
Exploits0References1
RustSec
RustSec
added 2025/01/18 12:0 p.m.7 views

gix-worktree-state nonexclusive checkout sets executable files world-writable

Summary gix-worktree-state specifies 0777 permissions when checking out executable files, intending that the umask will restrict them appropriately. But one of the strategies it uses to set permissions is not subject to the umask. This causes files in a repository to be world-writable in some...

5CVSS7.2AI score0.00361EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/12/18 2:26 p.m.8 views

CLSA-2024-1734531954 cups: Fix of CVE-2024-35235

CVE-2024-35235: Patch arbitrary chmod vulnerability in cupsd process when starting server with symbolic link Listen configuration item...

6.7CVSS5.9AI score0.02421EPSS
Exploits1References1
OSV
OSV
added 2024/12/12 12:37 p.m.10 views

CLSA-2024-1734007022 Fix CVE(s): CVE-2021-44038

SECURITY UPDATE: Unsafe chown/chmod operations in .service files - debian/patches/CVE-2021-44038.patch: remove chown/chmod commands from the .service files - CVE-2021-44038...

7.8CVSS7.1AI score0.00761EPSS
Exploits1References1
Rows per page
Query Builder