66 matches found
CVE-2025-32860
A vulnerability has been identified in TeleControl Server Basic All versions V3.1.2.2. The affected application is vulnerable to SQL injection through the internally used 'UnlockWebServerGatewaySettings' method. This could allow an authenticated remote attacker to bypass authorization controls, t...
CVE-2025-27540
TeleControl Server Basic is affected by a SQL injection in the internal Authenticate method for all versions prior to 3.1.2.2. The flaw can allow an unauthenticated remote attacker to bypass authorization, read/write the database, and potentially execute code with NT AUTHORITY\NetworkService权限, r...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: “exec”: Do not issue warnings for theracy pathnoexec check. Both the imode and noexec checks, wrapped within WARNON, originate from an artifact of the previous implementation. They were originally used to properly check the...
PT-2025-1341 · Google · Android
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: A potential out-of-bounds write issue exists in BnDmAgent::onTransact in dm agent.cpp due to a neuter. This could lead to a local privilege escalation with System execution...
CVE-2021-47491
In the Linux kernel, the following vulnerability has been resolved: mm: khugepaged: skip huge page collapse for special files The read-only THP for filesystems will collapse THP for files opened readonly and mapped with VMEXEC. The intended usecase is to avoid TLB misses for large text segments...
perl2exe 30.10C Arbitrary Code Execution
Exploit Title: Executables Created with perl2exe safe.pl user@testing:/example$ ./perl2exe-Linux-x64-5.30.1/perl2exe safe.pl Perl2Exe V30.10C 2020-12-11 Copyright c 1997-2020 IndigoSTAR Software ... Generating safe user@testing:/example$ user@testing:/example$ Check that the program executes as...
CVE-2023-4665
Incorrect Execution-Assigned Permissions vulnerability in Saphira Saphira Connect allows Privilege Escalation.This issue affects Saphira Connect: before 9...
CVE-2023-4665
Incorrect Execution-Assigned Permissions vulnerability in Saphira Saphira Connect allows Privilege Escalation. This issue affects Saphira Connect: before 9...
Security feature bypass
A vulnerability, which was classified as critical, was found in MicroWorld eScan Anti-Virus 7.0.32 on Linux. This affects an unknown part of the file runasroot. The manipulation leads to incorrect execution-assigned permissions. The attack needs to be approached locally. The exploit has been...
CVE-2023-4383
CVE-2023-4383 affects MicroWorld eScan Anti-Virus 7.0.32 on Linux. The root cause is an improperly assigned privilege in the file runasroot, causing incorrect execution permissions. It is a local vulnerability (attack vector: LOCAL) with low attack complexity and requires low privileges, no user ...
SUSE CVE-2020-8025
A Incorrect Execution-Assigned Permissions vulnerability in the permissions package of SUSE Linux Enterprise Server 12-SP4, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15; openSUSE Leap 15.1, openSUSE Tumbleweed sets the permissions for some of the directories of th...
CVE-2020-8731
Incorrect execution-assigned permissions in the file system for some IntelR Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2019-17044
An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the PatrolAgent SUID binary could allow an attacker with "patrol" privileges to elevate his/her privileges to the ones of the "root" user by specially crafting a shared library .so file that will be loaded during...
CVE-2019-17043
An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the best1collect.exe SUID binary could allow an attacker to elevate his/her privileges to the ones of the "patrol" user by specially crafting a shared library .so file that will be loaded during execution...
Design/Logic Flaw
An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the best1collect.exe SUID binary could allow an attacker to elevate his/her privileges to the ones of the "patrol" user by specially crafting a shared library .so file that will be loaded during execution...
Design/Logic Flaw
An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the PatrolAgent SUID binary could allow an attacker with "patrol" privileges to elevate his/her privileges to the ones of the "root" user by specially crafting a shared library .so file that will be loaded during...
CVE-2019-17043
CVE-2019-17043 affects BMC Patrol Agent 9.0.10i. The issue is a weak execution permission on the best1collect.exe SUID binary, which could allow a local attacker to escalate privileges to the patrol user by crafting a shared library (.so) loaded during execution. Multiple sources (NVD, Red Hat, C...
CVE-2019-17043
An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the best1collect.exe SUID binary could allow an attacker to elevate his/her privileges to the ones of the "patrol" user by specially crafting a shared library .so file that will be loaded during execution...
CVE-2019-17044
An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the PatrolAgent SUID binary could allow an attacker with "patrol" privileges to elevate his/her privileges to the ones of the "root" user by specially crafting a shared library .so file that will be loaded during...
CVE-2019-17044
The CVE affects BMC Patrol Agent 9.0.10i. The issue is weak execution permissions on the PatrolAgent SUID binary, enabling a local attacker with patrol privileges to elevate to root by forcing a specially crafted shared library (.so) to be loaded at runtime. This is a privilege-escalation path vi...