Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

OSV
OSVadded 2018/02/15 8:29 p.m.1 views

DEBIAN-CVE-2018-7169

An issue was discovered in shadow 4.5. newgidmap in shadow-utils is setuid and allows an unprivileged user to be placed in a user namespace where setgroups2 is permitted. This allows an attacker to remove themselves from a supplementary group, which may allow access to certain filesystem paths if...

5.3CVSS7.5AI score0.00163EPSS
Exploits1References1
RedHat Linux
RedHat Linuxadded 2012/08/27 12:40 p.m.6 views

python-paste-script: Supplementary groups not dropped when started an application with "paster serve" as root

Paste Script 1.7.5 and earlier does not properly set group memberships during execution with root privileges, which might allow remote attackers to bypass intended file-access restrictions by leveraging a web application that uses the local filesystem...

5.1CVSS6AI score0.01239EPSS
Exploits0References4
OpenVAS
OpenVASadded 2012/07/30 12:0 a.m.14 views

Mandriva Update for arpwatch MDVSA-2012:113 (arpwatch)

Check for the Version of arpwatch OpenVAS Vulnerability Test Mandriva Update for arpwatch MDVSA-2012:113 arpwatch Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

10CVSS1AI score0.01826EPSS
Exploits0References2
Rows per page
Query Builder