5 matches found
Incorrect Permission Assignment for Critical Resource
Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to using os.MkdirAll function which does not perform any permission checks when a given directory path already exists. An attacker can gain unauthorized access or modify files by...
PT-2023-14729 · Lenovo · Lenovo System Update
Name of the Vulnerable Software and Affected Versions: Lenovo System Update affected versions not specified Description: A directory permissions management issue may allow elevation of privileges. Recommendations: At the moment, there is no information about a newer version that contains a fix fo...
USN-5628-2 etcd vulnerabilities
USN-5628-1 fixed vulnerabilities in etcd. This update provides the corresponding updates for Ubuntu 18.04 ESM. Original advisory details: It was discovered that etcd incorrectly handled certain specially crafted WAL files. An attacker could possibly use this issue to cause a denial of service...
CVE-2019-4078
IBM WebSphere MQ 8.0.0.0 through 8.0.0.9 and 9.0.0.0 through 9.1.1 could allow a local non privileged user to execute code as an administrator due to incorrect permissions set on MQ installation directories. IBM X-Force ID: 157190...
CVE-2004-0752
OpenOffice OOo 1.1.2 creates predictable directory names with insecure permissions during startup, which may allow local users to read or list files of other users...