Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/24 12:0 a.m.6 views

openSUSE 16 Security Update : libcap (openSUSE-SU-2026:20613-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20613-1 advisory. - CVE-2026-4878: local privilege escalation through file capability injection due to TOCTOU race condition in capsetfile bsc1261809. Tenable has extract...

7CVSS5.4AI score0.00188EPSS
Exploits1References3
OSV
OSV
added 2026/04/22 10:53 a.m.6 views

SUSE-SU-2026:21274-1 Security update for libcap

This update for libcap fixes the following issues: - CVE-2026-4878: local privilege escalation through file capability injection due to TOCTOU race condition in capsetfile bsc1261809...

7CVSS5.3AI score0.00188EPSS
Exploits1References3
OSV
OSV
added 2024/06/21 11:8 a.m.7 views

OESA-2024-1737 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: afs: Fix corruption in reads at fpos 2G-4G from an OpenAFS server AFS-3 has two data fetch RPC variants, FS.FetchData and FS.FetchData64, and Linux's afs client...

8.4CVSS6.2AI score0.02701EPSS
Exploits1References49
OSV
OSV
added 2023/03/20 4:15 p.m.3 views

CVE-2023-0340

The Custom Content Shortcode WordPress plugin through 4.0.2 does not validate one of its shortcode attribute, which could allow users with a contributor role and above to include arbitrary files via a traversal attack. This could also allow them to read non PHP files and retrieve their content. R...

8.8CVSS7.4AI score0.01047EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/03/20 3:52 p.m.8 views

CVE-2023-0340 Custom Content Shortcode <= 4.0.2 - Contributor+ LFI

The Custom Content Shortcode WordPress plugin through 4.0.2 does not validate one of its shortcode attribute, which could allow users with a contributor role and above to include arbitrary files via a traversal attack. This could also allow them to read non PHP files and retrieve their content. R...

8.7AI score0.01047EPSS
Exploits1References1
OSV
OSV
added 2023/02/13 3:15 p.m.6 views

CVE-2023-0080

The Customer Reviews for WooCommerce WordPress plugin before 5.16.0 does not validate one of its shortcode attribute, which could allow users with a contributor role and above to include arbitrary files via a traversal attack. This could also allow them to read non PHP files and retrieve their...

8.8CVSS7.4AI score0.01125EPSS
Exploits1References1
OSV
OSV
added 2012/04/19 12:0 a.m.2 views

UBUNTU-CVE-2012-2123

The capbprmsetcreds function in security/commoncap.c in the Linux kernel before 3.3.3 does not properly handle the use of file system capabilities aka fcaps for implementing a privileged executable file, which allows local users to bypass intended personality restrictions via a crafted applicatio...

7.2CVSS7.2AI score0.00418EPSS
Exploits1References13
Rows per page
Query Builder