87 matches found
The vulnerability of the application server for managing Hitachi Tuning Manager storage resources allows a hacker to read and write arbitrary files.
The vulnerability of the Hitachi Tuning Manager application server for managing data storage resources is related to the default access rights settings. Exploiting this vulnerability could allow attackers to read and write certain files...
The vulnerability of the Samba networking communication package lies in its default access rights settings, which allow attackers to compromise data integrity.
The vulnerability of the Samba networking communication package is related to the default access rights settings. Exploiting this vulnerability allows a remote attacker to compromise data integrity...
The vulnerability of the installation and preliminary configuration tools for new Windows Autopilot devices on Lenovo devices is related to incorrect default access settings, allowing attackers to increase their privileges.
The vulnerability of the installation and initial configuration tools for new Windows Autopilot devices on Lenovo devices is related to incorrect default access settings. Exploiting this vulnerability could allow an attacker to increase their privileges...
The vulnerability of the Zstandard data compression library, related to the default access rights settings, allows attackers to gain access to confidential data.
The vulnerability of the Zstandard data compression library is related to the default access rights settings. Exploiting this vulnerability allows an attacker to gain access to confidential data...
The vulnerability of the Grub configuration file, related to default access rights settings, allows a perpetrator to gain access to confidential data.
The vulnerability of the Grub configuration file is related to the default access rights settings. Exploiting this vulnerability can allow an attacker to gain access to confidential data...
CVE-2023-5539
A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers...
CVE-2023-5539 Moodle: authenticated remote code execution risk in lesson
A remote code execution risk was identified in the Lesson activity. By default this was only available to teachers and managers...
The vulnerability of programming tools for monitoring and managing network infrastructure Hitachi JP1/Performance Management lies in the default access settings, which allow a perpetrator to gain access to files and directories.
The vulnerability of software tools for monitoring and managing network infrastructure of Hitachi JP1/Performance Management is related to the default access settings. Exploiting this vulnerability can allow attackers to gain access to files and directories...
UBUNTU-CVE-2023-4413
REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: Permission to access the file is limited to administrative users only by default...
The vulnerability of the MICROprogramming software for the SIMATIC CN 4100 communication gateway, related to incorrect default access rights settings, allows a intruder to bypass network restrictions.
The vulnerability of the SIMATIC CN 4100 communication gateway’s microprogramming software is related to incorrect default access rights settings. Exploiting this vulnerability could allow an attacker to bypass network restrictions remotely...
The vulnerability of the Cloud Files Mini Filter Driver for operating systems Windows allows attackers to increase their privileges.
The vulnerability of the Cloud Files Mini Filter Driver for Windows operating systems is related to the default access rights settings. Exploiting this vulnerability can allow attackers to increase their privileges...
The vulnerability of the TPM device driver for Windows operating systems allows a hacker to increase their privileges.
The vulnerability of the TPM device driver for Windows operating systems is related to the default access rights settings. Exploiting this vulnerability can allow attackers to increase their privileges...
The vulnerability of the NoMachine remote access system, related to incorrect default access settings for the directory C:\ProgramData\NoMachine\var\uninstall, allows a intruder to execute arbitrary code.
The vulnerability of the NoMachine remote access system is related to incorrect default access settings for the directory C:\ProgramData\NoMachine\var\uninstall. Exploiting this vulnerability could allow a attacker to execute arbitrary code...
CVE-2023-0345 CVE-2023-0345
The Akuvox E11 secure shell SSH server is enabled by default and can be accessed by the root user. This password cannot be changed by the user...
The vulnerability of the Keycloak identity and access management software lies in its default access rights settings, which allow a malicious actor to execute arbitrary code.
The vulnerability of the Keycloak identity and access management software is related to the default access rights settings. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
PT-2023-1508 · Red Hat · Red Hat Single Sign-On
Name of the Vulnerable Software and Affected Versions: Red Hat Single Sign-On for OpenShift container images affected versions not specified Description: A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured with an unsecured management interface enabled...
The vulnerability of the resource management application for Hitachi Tuning Manager lies in its default access settings, which allow attackers to read and write certain files.
The vulnerability of the Hitachi Tuning Manager resource management application relates to the default access rights settings. Exploiting this vulnerability could allow an attacker to read and write certain files...
SUSE CVE-2005-2801
xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the nameindex fields when sharing xattr blocks, which could prevent default ACLs from being applied...
SUSE CVE-2007-2925
The default access control lists ACL in ISC BIND 9.4.0, 9.4.1, and 9.5.0a1 through 9.5.0a5 do not set the allow-recursion and allow-query-cache ACLs, which allows remote attackers to make recursive queries and query the cache...
usbguard: Fix unauthorized access via D-Bus
A flaw was found in usbguard. The vulnerability occurs due to the No default access control listACL on some D-Bus methods and leads to unauthorized access. This flaw allows an attacker to access and escape policy configuration...