Lucene search
K

26 matches found

SUSE CVE
SUSE CVE
added 6 days ago3 views

SUSE CVE-2026-14476

A path traversal flaw was found in SSSD's AD GPO provider. The adgpoextractsmbcomponents function does not sanitize .. sequences in the gPCFileSysPath LDAP attribute, allowing an attacker with AD GPO management access to write files outside the GPO cache directory as root. On default RHEL...

8CVSS6AI score0.00501EPSS
Exploits0References6
NVD
NVD
added 2026/07/07 10:16 a.m.10 views

CVE-2026-14476

A path traversal flaw was found in SSSD's AD GPO provider. The adgpoextractsmbcomponents function does not sanitize .. sequences in the gPCFileSysPath LDAP attribute, allowing an attacker with AD GPO management access to write files outside the GPO cache directory as root. On default RHEL...

8CVSS0.00501EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/07/07 9:12 a.m.6 views

CVE-2026-14476

A path traversal flaw was found in SSSD's AD GPO provider. The adgpoextractsmbcomponents function does not sanitize .. sequences in the gPCFileSysPath LDAP attribute, allowing an attacker with AD GPO management access to write files outside the GPO cache directory as root. On default RHEL...

8CVSS5.9AI score0.00501EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/07/07 9:12 a.m.6 views

CVE-2026-14476

A path traversal flaw was found in SSSD's AD GPO provider. The adgpoextractsmbcomponents function does not sanitize .. sequences in the gPCFileSysPath LDAP attribute, allowing an attacker with AD GPO management access to write files outside the GPO cache directory as root. On default RHEL...

8CVSS5.9AI score0.00501EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/07/07 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-14476

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A path traversal flaw was found in SSSD's AD GPO provider. The adgpoextractsmbcomponents function does not sanitize .. sequences in the gPCFileSysPath LDAP...

8CVSS6.1AI score0.00501EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/07/07 12:0 a.m.8 views

PT-2026-56172

Name of the Vulnerable Software and Affected Versions SSSD affected versions not specified Description A path traversal flaw exists in the AD GPO provider of SSSD. The ad gpo extract smb components function fails to sanitize .. sequences within the gPCFileSysPath LDAP attribute. This allows an...

8CVSS5.9AI score0.00501EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/06/24 8:38 p.m.10 views

CVE-2026-13201

A flaw was found in KubeVirt's safepath package used by virt-handler. The OpenAtNoFollow function uses OPATH|ONOFOLLOW to obtain a file descriptor to a path leaf, but downstream operations resolve the path via /proc/self/fd/N using link-following syscalls. When the leaf is a symlink, the kernel...

7.3CVSS6AI score0.00122EPSS
Exploits0References3
Schneier on Security
Schneier on Security
added 2024/02/02 12:1 p.m.14 views

A Self-Enforcing Protocol to Solve Gerrymandering

In 2009, I wrote: There are several ways two people can divide a piece of cake in half. One way is to find someone impartial to do it for them. This works, but it requires another person. Another way is for one person to divide the piece, and the other person to complain to the police, a judge, o...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2021/03/15 12:0 a.m.8 views

SYS.2.3.A8

Zur Beschraenkung der Zugriffsrechte von Anwendungen auf Dateien, Geraete und Netze SOLLTE App-Armor oder SELinux eingesetzt werden. Es SOLLTEN die von dem jeweiligen Unix-Derivat bzw. der Linux-Distribution am besten unterstuetzten Loesungen eingesetzt werden. Die notwendigen Anwendungen SOLLTEN...

7.3AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/11/24 10:18 a.m.40 views

CVE-2020-28935

A symbolic link traversal vulnerability was found in unbound in the way it writes its PID file while starting up. This flaw allows a local attacker with access to the unbound user to set up a link to another file, owned by root, and make unbound overwrite it during its next restart, destroying th...

5.5CVSS6.1AI score0.00484EPSS
Exploits0References3
Schneier on Security
Schneier on Security
added 2020/07/01 2:31 p.m.18 views

Securing the International IoT Supply Chain

Together with Nate Kim former student and Trey Herr Atlantic Council Cyber Statecraft Initiative, I have written a paper on IoT supply chain security. The basic problem we try to solve is: how to you enforce IoT security regulations when most of the stuff is made in other countries? And our...

2.5AI score
Exploits0
Veracode
Veracode
added 2020/04/10 1:8 a.m.24 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists as the fix for CVE-2011-2482 provided by RHSA-2011:1212 introduced a regression: on systems that do not have Security-Enhanced Linux SELinux in Enforcing mode, a socket lock race could occur between sctprcv and sctpaccept. A...

7.5CVSS2.9AI score0.03769EPSS
Exploits1References11Affected Software1
OpenVAS
OpenVAS
added 2020/03/11 12:0 a.m.9 views

Linux: Read /etc/selinux/config (KB)

The /etc/selinux/config configuration file controls whether SELinux is enabled or disabled, and if enabled, whether SELinux operates in permissive mode or enforcing mode. The SELINUX variable may be set to any one of disabled, permissive, or enforcing to select one of these options. The disabled...

6.9AI score
Exploits0References1
CERT
CERT
added 2020/01/14 12:0 a.m.36 views

Content Delivery Networks handle HTTP headers in different and unexpected ways

Overview A Content Delivery Network CDN is a distributed network of proxy servers that deliver web content collected from a back end web server using a temporary local storage called a cache. HTTP cache poisoning is a type of attack that allows a remote attacker to inject arbitrary content using...

6.6AI score
Exploits0References8
Wired Threat Level
Wired Threat Level
added 2019/02/28 1:0 p.m.37 views

A Second Life for the 'Do Not Track' Setting—With Teeth

In recent years, the setting has been criticized as being essentially meaningless. But it might have a crucial role to play in enforcing privacy regulations...

3.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2018/09/04 5:52 a.m.34 views

CVE-2018-10913

An information disclosure vulnerability was discovered in glusterfs server. An attacker could issue a xattr request via glusterfs FUSE to determine the existence of any file. Mitigation SELinux mitigates this issue on Red Hat Gluster Storage 3. SELinux should be in enforcing mode only as permissi...

6.5CVSS1.9AI score0.02093EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/03/02 3:0 p.m.29 views

CVE-2018-1063

Context relabeling of filesystems is vulnerable to symbolic link attack, allowing a local, unprivileged malicious entity to change the SELinux context of an arbitrary file to a context with few restrictions. This only happens when the relabeling process is done, usually when taking SELinux state...

4.5AI score0.00394EPSS
Exploits0References2
0day.today
0day.today
added 2017/02/21 12:0 a.m.25 views

Linux/x86 - SELinux Permissive Mode Switcher Shellcode (45 bytes)

Title: x86 SELinux change between permissive and enforcing modes shellcode Date: 20-02-2017 Author: Krzysztof Przybylski Platform: Linx86 Tested on: CentOS 6.8 i686 Shellcode Size: 45 bytes ID: SLAE - 871 / 1. Description: SELinux mode switcher. Permissive = "\x30"; Enforcing = "\x31" gcc...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2017/02/20 12:0 a.m.48 views

Linux/x86 - SELinux Permissive Mode Switcher Shellcode (45 bytes)

Linux/x86 - SELinux Permissive Mode Switcher Shellcode 45 bytes. Shellcode exploit for Linx86 platform Title: x86 SELinux change between permissive and enforcing modes shellcode Date: 20-02-2017 Author: Krzysztof Przybylski Platform: Linx86 Tested on: CentOS 6.8 i686 Shellcode Size: 45 bytes ID:...

Exploits0
Veracode
Veracode
added 2017/01/11 8:3 a.m.8 views

Information Disclosure

nanoc is vulnerable to information disclosure. It does not check if the requested resources embedded within HTML documents are using a protocol that degrades the security of the original connection. If the browsers do not enforce consistent protocols, it is possible to leak private information...

6AI score
Exploits0
Rows per page
Query Builder