Lucene search
K

66 matches found

OSV
OSV
added 2025/07/17 1:50 p.m.7 views

CVE-2025-53927 MaxKB sandbox bypass

MaxKB is an open-source AI assistant for enterprise. Prior to version 2.0.0, the sandbox design rules can be bypassed because MaxKB only restricts the execution permissions of files in a specific directory. Therefore, an attacker can use the shutil.copy2 method in Python to copy the command they...

4.6CVSS7.4AI score0.00226EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/06/06 11:51 a.m.7 views

CVE-2025-41367 Stored Cross-Site Scripting (XSS) vulnerability in IDF and ZLF

Stored Cross-Site Scripting XSS vulnerability in IDF v0.10.0-0C03-03 and ZLF v0.10.0-0C03-04. This vulnerability allows an attacker to store malicious JavaScript payload in software that will run in the victim's browser. Exploiting this vulnerability requires authenticating to the device and...

4.8CVSS5.7AI score0.00314EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/05 7:16 p.m.18 views

CVE-2025-48950

MaxKB is an open-source AI assistant for enterprise. Prior to version 1.10.8-lts, Sandbox only restricts the execution permissions of binary files in common directories, such as /bin,/usr/bin, etc. Therefore, attackers can exploit some files with execution permissions in non blacklisted directori...

8.8CVSS7AI score0.00371EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/06/03 6:16 p.m.13 views

CVE-2025-48950 MaxKB Python Sandbox Bypass in Function Library

MaxKB is an open-source AI assistant for enterprise. Prior to version 1.10.8-lts, Sandbox only restricts the execution permissions of binary files in common directories, such as /bin,/usr/bin, etc. Therefore, attackers can exploit some files with execution permissions in non blacklisted directori...

6.5CVSS6.6AI score0.00371EPSS
Exploits1References4
OSV
OSV
added 2025/06/03 6:16 p.m.12 views

CVE-2025-48950 MaxKB Python Sandbox Bypass in Function Library

MaxKB is an open-source AI assistant for enterprise. Prior to version 1.10.8-lts, Sandbox only restricts the execution permissions of binary files in common directories, such as /bin,/usr/bin, etc. Therefore, attackers can exploit some files with execution permissions in non blacklisted directori...

6.5CVSS6.9AI score0.00371EPSS
Exploits1References6
CVE
CVE
added 2025/06/03 6:16 p.m.57 views

CVE-2025-48950

MaxKB (open-source AI assistant) prior to version 1.10.8-lts is affected by a sandbox bypass in the Python function library: the sandbox only enforces execution permissions for binaries in common directories (e.g., /bin, /usr/bin), allowing attackers to exploit files with execution permission in ...

8.8CVSS6.6AI score0.00371EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/06/03 6:16 p.m.30 views

CVE-2025-48950 MaxKB Python Sandbox Bypass in Function Library

MaxKB is an open-source AI assistant for enterprise. Prior to version 1.10.8-lts, Sandbox only restricts the execution permissions of binary files in common directories, such as /bin,/usr/bin, etc. Therefore, attackers can exploit some files with execution permissions in non blacklisted directori...

6.5CVSS0.00371EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/06/03 12:0 a.m.7 views

PT-2025-23652 · Maxkb · Maxkb

Name of the Vulnerable Software and Affected Versions: MaxKB versions prior to 1.10.8-lts Description: The issue allows attackers to exploit certain files with execution permissions in non-blacklisted directories to carry out attacks, as the Sandbox only restricts the execution permissions of...

8.8CVSS6.5AI score0.00371EPSS
Exploits1References9
RedhatCVE
RedhatCVE
added 2025/05/23 10:1 a.m.20 views

CVE-2024-25990

In pktprocperftestgenrxpacketsktbufmode of linkrxpktproc.c, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

6.4CVSS7.1AI score0.00077EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:17 a.m.6 views

CVE-2023-38960

Insecure Permissions issue in Raiden Professional Server RaidenFTPD v.2.4 build 4005 allows a local attacker to gain privileges and execute arbitrary code via crafted executable running from the installation directory...

7.3CVSS8AI score0.00257EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:13 p.m.14 views

CVE-2021-39680

In secSHA256Transform of sha256core.c, there is a possible way to read heap data due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

4.4CVSS6.1AI score0.00115EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:35 p.m.4 views

CVE-2021-34164

Permissions vulnerability in LIZHIFAKA v.2.2.0 allows authenticated attacker to execute arbitrary commands via the set password function in the admin/index/email location...

8.8CVSS7.8AI score0.00766EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 10:3 a.m.8 views

CVE-2019-17043

An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the best1collect.exe SUID binary could allow an attacker to elevate his/her privileges to the ones of the "patrol" user by specially crafting a shared library .so file that will be loaded during execution...

7.8CVSS7AI score0.00369EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:24 a.m.8 views

CVE-2019-17044

An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the PatrolAgent SUID binary could allow an attacker with "patrol" privileges to elevate his/her privileges to the ones of the "root" user by specially crafting a shared library .so file that will be loaded during...

7.8CVSS6.9AI score0.00393EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:39 p.m.9 views

CVE-2002-2401

NT Virtual DOS Machine NTVDM.EXE in Windows 2000, NT and XP does not verify user execution permissions for 16-bit executable files, which allows local users to bypass the loader and execute arbitrary programs...

3.6CVSS7.4AI score0.01808EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/13 9:2 p.m.4 views

CVE-2025-20612

Incorrect execution-assigned permissions for some Edge Orchestrator software for IntelR Tiber™ Edge Platform may allow an authenticated user to potentially enable escalation of privilege via adjacent access...

5.5CVSS7.3AI score0.00185EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/25 6:16 p.m.7 views

CVE-2025-32827

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'ActivateProject' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from and...

8.8CVSS7.8AI score0.00683EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/25 4:13 p.m.8 views

CVE-2025-31353

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UpdateOpcSettings' method. This could allow an authenticated remote attacker to bypass authorization controls, to read from a...

8.8CVSS7.8AI score0.00683EPSS
Exploits0References1
Veracode
Veracode
added 2025/04/23 2:55 p.m.5 views

Incorrect Execution-Assigned Permissions

aws-cdk-lib is vulnerable to Incorrect Execution-Assigned Permissions. The vulnerability is due to unexpected Aspect execution order due to the introduction of a new priority system that overrides hierarchical aspect evaluation, potentially leading to incorrect permissions boundaries being assign...

7.2AI score
Exploits0
NVD
NVD
added 2025/04/16 6:16 p.m.21 views

CVE-2025-30002

A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UpdateConnectionVariables' method. This could allow an authenticated remote attacker to bypass authorization controls, to rea...

8.8CVSS0.00732EPSS
Exploits0References1
Rows per page
Query Builder