155 matches found
Malicious code in edu-front-util (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7ab7edc7cfa5c4bd5b84454746103bcf43864d117d2dfff998d18b32d607b2f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-2670 Malicious code in edu-front-util (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7ab7edc7cfa5c4bd5b84454746103bcf43864d117d2dfff998d18b32d607b2f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
edu-knigi.com Cross Site Scripting vulnerability OBB-2551895
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Debian: Security Advisory (DSA-5072-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-5072-1 : debian-edu-config - security update
The remote Debian 10 / 11 host has a package installed that is affected by a vulnerability as referenced in the dsa-5072 advisory. - It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user w...
Debian DLA-2918-1 : debian-edu-config - LTS security update
The remote Debian 9 host has a package installed that is affected by a vulnerability as referenced in the dla-2918 advisory. Marcel Neumann, Robert Altschaffel, Loris Guba and Dustin Hermann discovered that debian-edu-config, a set of configuration files used for the Debian Edu blend configured...
DLA-2918-1 debian-edu-config - security update
Bulletin has no description...
Debian: Security Advisory (DLA-2918-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2918-1] debian-edu-config security update
----------------------------------------------------------------------- Debian LTS Advisory DLA-2918-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta February 12, 2022 https://wiki.debian.org/LTS -...
CVE-2021-20001
It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user web shares /publichtml, which could result in privilege escalation...
CVE-2021-20001
It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user web shares /publichtml, which could result in privilege escalation...
DEBIAN-CVE-2021-20001
It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user web shares /publichtml, which could result in privilege escalation...
Privilege escalation
It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user web shares /publichtml, which could result in privilege escalation...
CVE-2021-20001
It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user web shares /publichtml, which could result in privilege escalation...
CVE-2021-20001
CVE-2021-20001 affects debian-edu-config prior to 2.12.16, where insecure permissions on user web shares (~/public_html) could allow privilege escalation. Debian advisories (DSA-5072-1, DLA-2918-1) document the issue and its fix; for Debian 9, the fix is in 1.929+deb9u5. Multiple feeds (NVD entry...
CVE-2021-20001
It was discovered, that debian-edu-config, a set of configuration files used for the Debian Edu blend, before 2.12.16 configured insecure permissions for the user web shares /publichtml, which could result in privilege escalation...
[SECURITY] [DSA 5072-1] debian-edu-config security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5072-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 11, 2022 https://www.debian.org/security/faq -...
DSA-5072-1 debian-edu-config - security update
Bulletin has no description...
Privilege Escalation
debian-edu-config is vulnerable to privilege escalation. The vulnerability exists due to lack of validation of the authorization in the configuration files...
edu-science.com Improper Access Control vulnerability OBB-2341203
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...