27 matches found
CVE-2022-26113
An execution with unnecessary privileges vulnerability CWE-250 in FortiClientWindows 7.0.0 through 7.0.3, 6.4.0 through 6.4.7, 6.2.0 through 6.2.9, 6.0.0 through 6.0.10 may allow a local attacker to perform an arbitrary file write on the system...
EUVD-2024-42255
Malicious code in bioql PyPI...
CVE-2020-28007
Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory owned by a non-root user, a symlink or hard link attack allows overwriting critical root-owned files anywhere on the filesystem...
CVE-2024-48013
Dell SmartFabric OS10 Software, versions 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contains an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Elevation of privileges...
CVE-2024-48013
Dell SmartFabric OS10 Software, versions 10.5.4.x, 10.5.5.x, 10.5.6.x, 10.6.0.x, contains an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Elevation of privileges...
CVE-2024-47978
Dell NativeEdge, versions 2.1.0.0, contains an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...
CVE-2024-47978
Dell NativeEdge 2.1.0.0 is affected by an Execution with Unnecessary Privileges vulnerability. A locally privileged attacker could escalate privileges. The PT-2024-32928 entry confirms the affected version and suggests there is no information yet about a fix in this version; no explicit remediati...
CVE-2024-47978
Dell NativeEdge, versions 2.1.0.0, contains an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...
CVE-2024-48837
Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution...
CVE-2024-48837
Dell SmartFabric OS10 Software, versions 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contains an Execution with Unnecessary Privileges vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Command execution...
CVE-2024-48837
CVE-2024-48837 concerns Dell SmartFabric OS10 software (versions 10.5.3.x–10.5.6.x) with an Execution with Unnecessary Privileges vulnerability. The root cause is described as insufficient access control/privilege handling, enabling a low-privileged, local attacker to potentially achieve command ...
Siemens InterMesh Subscriber Devices
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...
PT-2025-11513 · Dell · Os10
Name of the Vulnerable Software and Affected Versions: Dell SmartFabric OS10 Software versions 10.5.4.x through 10.6.0.x Description: The issue is related to an Execution with Unnecessary Privileges vulnerability. A low-privileged attacker with remote access could potentially exploit this...
Execution With Unnecessary Privileges
github.com/openshift/builder is vulnerable to Execution With Unnecessary Privileges. The vulnerability is caused due to improper validation of the spec.source.secrets.secret.destinationDir attribute, allowing path traversal that enables a malicious user to override executable files inside the...
BIT-AIRFLOW-2023-39508 Apache Airflow: Airflow "Run task" feature allows execution with unnecessary priviledges
Execution with Unnecessary Privileges, : Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Airflow.The "Run Task" feature enables authenticated user to bypass some of the restrictions put in place. It allows to execute code in the...
CVE-2023-45592
A CWE-250 “Execution with Unnecessary Privileges” vulnerability in the embedded Chromium browser due to the binary being executed with the “--no-sandbox” option and with root privileges exacerbates the impacts of successful attacks executed against the browser. This issue affects: AiLux imx6 bund...
CVE-2023-45592
CVE-2023-45592 affects AiLux imx6 bundle, with the vulnerable component being the embedded Chromium browser operated with the --no-sandbox option under root privileges. The root cause is execution with unnecessary privileges, which could exacerbate impact from attacks against the embedded browser...
CVE-2023-46360
Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier is vulnerable to Execution with Unnecessary Privileges...
CVE-2023-31175
An Execution with Unnecessary Privileges vulnerability in the Schweitzer Engineering Laboratories SEL-5037 SEL Grid Configurator could allow an attacker to run system commands with the highest level privilege on the system. See Instruction Manual Appendix A and Appendix E dated 20230615 for more...
CVE-2022-22239 Junos OS Evolved: The ssh CLI command always runs as root which can lead to privilege escalation
An Execution with Unnecessary Privileges vulnerability in Management Daemon mgd of Juniper Networks Junos OS Evolved allows a locally authenticated attacker with low privileges to escalate their privileges on the device and potentially remote systems. This vulnerability allows a locally...