Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2003-0638

Malware in sbrugna...

4.6CVSS6.3AI score0.00413EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-4363

Malware in sbrugna...

4CVSS6.4AI score0.01094EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-43041

Malicious code in bioql PyPI...

9.9CVSS8.6AI score0.00781EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:10 a.m.7 views

CVE-2022-36830

PendingIntent hijacking vulnerability in cancelAlarmManager in Charm by Samsung prior to version 1.2.3 allows local attackers to access files without permission via implicit intent...

6.2CVSS6.7AI score0.0017EPSS
Exploits0References1
CVE
CVE
added 2025/03/31 10:22 p.m.89 views

CVE-2025-31182

CVE-2025-31182 : Apple addresses an issue where an app could delete files it should not access due to improper handling of symlinks. The vulnerability affects multiple Apple OS versions and is fixed in visionOS 2.4, macOS Ventura 13.7.5, tvOS 18.4, iOS 18.4, iPadOS 18.4, macOS Sequoia 15.4, and m...

9.8CVSS5.8AI score0.01161EPSS
Exploits0References14Affected Software5
RedhatCVE
RedhatCVE
added 2025/02/14 10:11 a.m.13 views

CVE-2023-46870

extcap/nrfsnifferble.py, extcap/nrfsnifferble.sh, extcap/SnifferAPI/.py in Nordic Semiconductor nRF Sniffer for Bluetooth LE 3.0.0, 3.1.0, 4.0.0, 4.1.0, and 4.1.1 have set incorrect file permission, which allows attackers to do code execution via modified bash and python scripts...

7.3CVSS7.4AI score0.00361EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/01/29 12:0 a.m.8 views

Debian dla-4035 : flightgear - security update

The remote Debian 11 host has a package installed that is affected by a vulnerability as referenced in the dla-4035 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4035-1 [email protected] https://www.debian.org/lts/security/...

9.9CVSS7.7AI score0.00342EPSS
Exploits0References4
OSV
OSV
added 2019/08/01 4:15 p.m.3 views

CVE-2016-10849

cPanel before 11.54.0.4 allows certain file-chmod operations in scripts/secureit SEC-82...

6.5CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2019/07/02 10:6 a.m.9 views

SUSE-SU-2019:1722-1 Security update for glib2

This update for glib2 provides the following fix: Security issues fixed: - CVE-2019-12450: Fixed an improper file permission when copy operation takes place bsc1137001. - CVE-2018-16428: Avoid a null pointer dereference that could crash glib2 users in markup processing bnc1107121. - CVE-2018-1642...

9.8CVSS8.4AI score0.04693EPSS
Exploits2References8
OSV
OSV
added 2019/06/24 9:14 a.m.8 views

SUSE-SU-2019:14102-1 Security update for glib2

This update for glib2 fixes the following issues: Security issue fixed: - CVE-2019-12450: Fixed an improper file permission when copy operation takes place bsc1137001...

9.8CVSS9.5AI score0.02602EPSS
Exploits0References3
OSV
OSV
added 2019/06/21 8:17 a.m.7 views

SUSE-SU-2019:1594-1 Security update for glib2

This update for glib2 fixes the following issues: Security issue fixed: - CVE-2019-12450: Fixed an improper file permission when copy operation takes place bsc1137001. Other issue addressed: - glib2 was handling an UNKNOWN connectivity state from NetworkManager as if there was a connection thus...

9.8CVSS9.4AI score0.02602EPSS
Exploits0References4
OSV
OSV
added 2010/04/05 3:30 p.m.3 views

CVE-2010-0825

lib-src/movemail.c in movemail in emacs 22 and 23 allows local users to read, modify, or delete arbitrary mailbox files via a symlink attack, related to improper file-permission checks...

6.5AI score0.00327EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.16 views

aeNovo Database Content Disclosure Vulnerability

Due to improper file permission settings on the database directory of aeNovo it is possible for a remote attacker to download the product SPDX-FileCopyrightText: 2005 Noam Rathaus Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

7.3AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2005/02/15 10:13 a.m.34 views

Low: Red Hat Security Advisory: cpio security update

An updated cpio package that fixes a umask bug is now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team GNU cpio copies files into or out of a cpio or tar archive. It was discovered that cpio uses a 0 umask whe...

2.1CVSS5.7AI score0.00556EPSS
Exploits1References2
NVD
NVD
added 2001/01/09 5:0 a.m.15 views

CVE-2000-1127

registrar in the HP resource monitor service allows local users to read and modify arbitrary files by renaming the original registrar.log log file and creating a symbolic link to the target file, to which registrar appends log information and sets the permissions to be world readable...

3.6CVSS6.1AI score0.00973EPSS
Exploits1References2
Exploit DB
Exploit DB
added 2000/05/10 12:0 a.m.28 views

Netscape Communicator 4.5/4.51/4.6/4.61/4.7/4.72/4.73 - '/tmp' Symlink

source: https://www.securityfocus.com/bid/1201/info Netscape Communicator version 4.73 and prior may be susceptible to a /tmp file race condition when importing certificates. Netscape creates a /tmp file which is world readable and writable in /tmp, without calling stat or fstat on the file. As...

7.4AI score
Exploits0
NVD
NVD
added 1999/07/14 4:0 a.m.12 views

CVE-1999-1545

Joe's Own Editor joe 2.8 sets the world-readable permission on its crash-save file, DEADJOE, which could allow local users to read files that were being edited by other users...

2.1CVSS6.3AI score0.00323EPSS
Exploits0References2
NVD
NVD
added 1998/02/25 5:0 a.m.9 views

CVE-1999-1229

Quake 2 server 3.13 on Linux does not properly check file permissions for the config.cfg configuration file, which allows local users to read arbitrary files via a symlink from config.cfg to the target file...

2.1CVSS0.00476EPSS
Exploits1References2
Rows per page
Query Builder