Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

26 matches found

CVE
CVEadded last week11 views

CVE-2026-10741

Sonatype Nexus Repository Manager prior to 3.93.0 contains an authorization flaw in the proxy repository configuration that lets a delegated repository administrator disclose stored upstream proxy credentials. This affects confidentiality (credentials exposure) with a CVSS base score of 5.9 (MEDI...

5.9CVSS5.3AI score0.0026EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/06/05 7:48 a.m.9 views

CVE-2026-9088

A flaw was found in org.keycloak.services. An administrator with delegated access to read group memberships and users can bypass user profile permissions by accessing the group members endpoint. This allows the administrator to view user attributes that are explicitly configured to be denied,...

2.7CVSS5AI score0.00318EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2026/02/05 12:0 a.m.5 views

PT-2026-6560

Name of the Vulnerable Software and Affected Versions Axigen Mail Server versions prior to 10.5.57 Description Axigen Mail Server contains an improper access control issue in the WebAdmin interface. A delegated admin account with no permissions can bypass access control checks and gain unauthoriz...

8.1CVSS5.4AI score0.0031EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2026/01/09 9:31 a.m.6 views

CVE-2023-43041

IBM QRadar SIEM 7.5 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. This vulnerability is due to an incomplete fix for CVE-2022-34352. IBM X-Force ID: 266808...

6.5CVSS6.3AI score0.00627EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-47462

Malicious code in bioql PyPI...

6.5CVSS6.2AI score0.00534EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-40445

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00519EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2022-37307

Malicious code in bioql PyPI...

6.5CVSS6.2AI score0.00627EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 11:13 p.m.2 views

CVE-2022-34352

IBM QRadar SIEM 7.5.0 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. IBM X-Force ID: 230403...

6.5CVSS6.1AI score0.00627EPSS
Exploits0References1
OSV
OSVadded 2024/02/01 11:15 p.m.1 views

CVE-2023-36496

Delegated Admin Privilege virtual attribute provider plugin, when enabled, allows an authenticated user to elevate their permissions in the Directory Server...

8.8CVSS5.8AI score
Exploits0References3
NVD
NVDadded 2024/02/01 11:15 p.m.12 views

CVE-2023-36496

Delegated Admin Privilege virtual attribute provider plugin, when enabled, allows an authenticated user to elevate their permissions in the Directory Server...

8.8CVSS7.8AI score0.00519EPSS
Exploits0References3
Prion
Prionadded 2024/02/01 11:15 p.m.16 views

Design/Logic Flaw

Delegated Admin Privilege virtual attribute provider plugin, when enabled, allows an authenticated user to elevate their permissions in the Directory Server...

6.5CVSS7AI score0.00519EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2024/02/01 11:0 p.m.17 views

CVE-2023-36496 Delegated Admin Virtual Attribute Provider Privilege Escalation

Delegated Admin Privilege virtual attribute provider plugin, when enabled, allows an authenticated user to elevate their permissions in the Directory Server...

7.7CVSS8.8AI score0.00519EPSS
Exploits0References3
CVE
CVEadded 2024/02/01 11:0 p.m.45 views

CVE-2023-36496

The CVE-2023-36496 entry concerns PingDirectory’s Delegated Admin Privilege virtual attribute provider plugin. When enabled, it allows an authenticated user to elevate their permissions within the Directory Server, indicating a privilege-escalation flaw in the affected component. Documents refere...

8.8CVSS8.4AI score0.00519EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2023/10/29 1:15 a.m.18 views

CVE-2023-43041

IBM QRadar SIEM 7.5 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. This vulnerability is due to an incomplete fix for CVE-2022-34352. IBM X-Force ID: 266808...

6.5CVSS6.5AI score0.00534EPSS
Exploits0References2
Prion
Prionadded 2023/10/29 1:15 a.m.19 views

Design/Logic Flaw

IBM QRadar SIEM 7.5 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. This vulnerability is due to an incomplete fix for CVE-2022-34352. IBM X-Force ID: 266808...

3.3CVSS5.8AI score0.00627EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2023/10/29 12:49 a.m.14 views

CVE-2023-43041 IBM QRadar information disclosure

IBM QRadar SIEM 7.5 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. This vulnerability is due to an incomplete fix for CVE-2022-34352. IBM X-Force ID: 266808...

6.5CVSS6.2AI score0.00534EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2023/10/29 12:0 a.m.2 views

PT-2023-8377 · Ibm · Ibm Qradar Siem

Name of the Vulnerable Software and Affected Versions: IBM QRadar SIEM version 7.5 Description: The issue is related to the lack of protection for service data in the IBM QRadar SIEM system, which can be exploited by a remote attacker to disclose protected information. Specifically, a delegated...

6.5CVSS5.3AI score0.00534EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2023/07/18 2:0 a.m.3 views

SUSE CVE-2020-25720

A vulnerability was found in Samba where a delegated administrator with permission to create objects in Active Directory can write to all attributes of the newly created object, including security-sensitive attributes, even after the object's creation. This issue occurs because the administrator...

7.5CVSS7.1AI score0.00484EPSS
Exploits0References7
OSV
OSVadded 2023/06/27 6:15 p.m.2 views

CVE-2022-34352

IBM QRadar SIEM 7.5.0 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. IBM X-Force ID: 230403...

6.5CVSS5.8AI score0.00627EPSS
Exploits0References2
NVD
NVDadded 2023/06/27 6:15 p.m.30 views

CVE-2022-34352

IBM QRadar SIEM 7.5.0 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. IBM X-Force ID: 230403...

6.5CVSS5.6AI score0.00627EPSS
Exploits0References2
Rows per page
Query Builder