ceph-deploy allows local users to obtain sensitive information by reading the file

ceph-deploy before 1.5.23 uses weak permissions 644 for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file...

GHSA-9W4F-3V37-6F75 ceph-deploy allows local users to obtain sensitive information by reading the file

ceph-deploy before 1.5.23 uses weak permissions 644 for ceph/ceph.client.admin.keyring, which allows local users to obtain sensitive information by reading the file...

CVE-2022-30696

Local privilege escalation due to a DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy Windows before build 3640...

CVE-2022-30695

Local privilege escalation due to excessive permissions assigned to child processes. The following products are affected: Acronis Snap Deploy Windows before build 3640...

CVE-2022-30696

Local privilege escalation due to a DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy Windows before build 3640...

CVE-2022-30695

Local privilege escalation due to excessive permissions assigned to child processes. The following products are affected: Acronis Snap Deploy Windows before build 3640...

CVE-2022-30697

Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Snap Deploy Windows before build 3640...

CVE-2022-30697

Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Snap Deploy Windows before build 3640...

Privilege escalation

Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Snap Deploy Windows before build 3640...

Privilege escalation

Local privilege escalation due to a DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy Windows before build 3640...

Privilege escalation

Local privilege escalation due to excessive permissions assigned to child processes. The following products are affected: Acronis Snap Deploy Windows before build 3640...

CVE-2022-30697

CVE-2022-30697 affects Acronis Snap Deploy for Windows before build 3640. Local privilege escalation due to insecure folder permissions on the host. CVSSv3.1 base score 7.8 (LOCAL, Privileges Required: LOW). No exploitation details are provided in the documents. Mitigation: upgrade to build 3640 ...

CVE-2022-30697 Local privilege escalation due to insecure folder permissions

Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Snap Deploy Windows before build 3640...

CVE-2022-30696

The CVE-2022-30696 issue affects Acronis Snap Deploy on Windows prior to build 3640. It is a DLL hijacking vulnerability that occurs when a process loads a DLL without specifying the absolute path, enabling local privilege escalation. The vulnerability is documented across multiple sources and is...

CVE-2022-30696 Local privilege escalation due to a DLL hijacking vulnerability

Local privilege escalation due to a DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy Windows before build 3640...

CVE-2022-30695

CVE-2022-30695 affects Acronis Snap Deploy for Windows. The vulnerability arises from excessive privileges granted to child processes, enabling local privilege escalation. Affected product: Acronis Snap Deploy (Windows) before build 3640. Root cause: overly permissive privileges assigned to child...

CVE-2022-30695 Local privilege escalation due to excessive permissions assigned to child processes

Local privilege escalation due to excessive permissions assigned to child processes. The following products are affected: Acronis Snap Deploy Windows before build 3640...

Acronis Snap Deploy 安全漏洞

Acronis Snap Deploy is a platform for bulk deployment of system images from Acronis. Acronis Snap Deploy is vulnerable to an elevation of privilege vulnerability that could be exploited by an attacker to cause a local elevation of privilege...

Acronis Snap Deploy 安全漏洞

Acronis Snap Deploy, an Acronis platform for bulk deployment of system images, is vulnerable to an elevation of privilege vulnerability that stems from assigning too many privileges to child processes, which could be exploited by an attacker to cause a local elevation of privilege...

Acronis Snap Deploy 代码问题漏洞

Acronis Snap Deploy is an Acronis platform for bulk deployment of system images. Acronis Snap Deploy is vulnerable to a DLL hijacking vulnerability, which originates when a process attempts to load a DLL without specifying the absolute path to the DLL, and can be exploited by an attacker to cause...