Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2025/07/07 5:48 p.m.2 views

CVE-2025-20324 Improper Access Control in System Source Types Configuration in Splunk Enterprise

In Splunk Enterprise versions below 9.4.2, 9.3.5, 9.2.7, and 9.1.10 and Splunk Cloud Platform versions below 9.3.2411.104, 9.3.2408.113, and 9.2.2406.119, a low-privileged user that does not hold the "admin" or "power" Splunk roles could create or overwrite system source type configurations by...

5.4CVSS7.1AI score0.00221EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/05/28 12:0 a.m.4 views

Permissioned LLMs: Enforcing Access Control in Large Language Models

In enterprise settings, organizational data is segregated, siloed and carefully protected by elaborate access control frameworks. These access control structures can completely break down if an LLM fine-tuned on the siloed data serves requests, for downstream tasks, from individuals with disparat...

6.9AI score
Exploits0
NVD
NVD
added 2025/02/25 7:15 p.m.28 views

CVE-2024-36259

Improper access control in mail module of Odoo Community 17.0 and Odoo Enterprise 17.0 allows remote authenticated attackers to extract sensitive information via an oracle-based yes/no response crafted attack...

7.5CVSS0.00632EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/02/25 6:10 p.m.22 views

CVE-2024-12368

Improper access control in the authoauth module of Odoo Community 15.0 and Odoo Enterprise 15.0 allows an internal user to export the OAuth tokens of other users...

8.1CVSS0.0064EPSS
Exploits1References1
Rows per page
Query Builder