Lucene search
+L

17 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:32 a.m.8 views

CVE-2017-18450

cPanel before 64.0.21 allows certain file-chmod operations via /scripts/convertroundcubemysql2sqlite SEC-255...

4.5CVSS7AI score0.00276EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2004-0904

Malware in sbrugna...

4.6CVSS6.1AI score0.00424EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2013-3369

Malware in sbrugna...

6.8CVSS6.4AI score0.00357EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2000-0764

Malware in sbrugna...

6.4CVSS6.4AI score0.14191EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-29482

Malware in sbrugna...

7.8CVSS7.5AI score0.00807EPSS
Exploits7References2
Cvelist
Cvelist
added 2025/03/28 3:27 p.m.30 views

CVE-2025-2713 Improper File Permission Handling in Google gVisor runsc

Google gVisor's runsc component exhibited a local privilege escalation vulnerability due to incorrect handling of file access permissions, which allowed unprivileged users to access restricted files. This occurred because the process initially ran with root-like permissions until the first fork...

6.8CVSS0.00072EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/02/27 12:0 a.m.15 views

Cisco APIC Multiple Vulnerabilities (cisco-sa-apic-multi-vulns-9ummtg5)

According to its self-reported version, Cisco Application Policy Infrastructure Controller is affected by multiple vulnerabilities. - A vulnerability in the system file permission handling of Cisco APIC could allow an authenticated, local attacker to overwrite critical system files, which could...

6.7CVSS6.4AI score0.0026EPSS
Exploits0References9
NVD
NVD
added 2025/01/18 3:15 p.m.23 views

CVE-2024-51448

IBM Robotic Process Automation 21.0.0 through 21.0.7.17 and 23.0.0 through 23.0.18 could allow a local user to escalate their privileges. All files in the install inherit the file permissions of the parent directory and therefore a non-privileged user can substitute any executable for the nssm.ex...

6.7CVSS0.00147EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2024/10/17 4:10 p.m.15 views

USN-7059-2: OATH Toolkit vulnerability

USN-7059-1 fixed a vulnerability in OATH Toolkit library. This update provides the corresponding update for Ubuntu 24.10. Original advisory details: Fabian Vogt discovered that OATH Toolkit incorrectly handled file permissions. A remote attacker could possibly use this issue to overwrite root own...

7.1CVSS7AI score0.00342EPSS
Exploits0
Amazon
Amazon
added 2023/07/26 12:0 a.m.6 views

Medium: libtiff

Issue Overview: A NULL pointer dereference in TIFFClose is caused by a failure to open an output file non-existent path or a path that requires permissions like /dev/null while specifying zones. CVE-2023-3316 Affected Packages: libtiff Issue Correction: Run dnf update libtiff --releasever...

6.5CVSS7.3AI score0.01124EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/12/27 12:0 a.m.37 views

EulerOS Virtualization 2.10.0 : curl (EulerOS-SA-2022-2872)

According to the versions of the curl packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - libcurl provides the CURLOPTCERTINFO option to allow applications torequest details to be returned about a server's certificate...

9.8CVSS6.6AI score0.3197EPSS
Exploits6References7
OSV
OSV
added 2019/11/19 10:15 p.m.10 views

CVE-2011-3349

lightdm before 0.9.6 writes in .dmrc and Xauthority files using root permissions while the files are in user controlled folders. A local user can overwrite root-owned files via a symlink, which can allow possible privilege escalation...

7.8CVSS6.7AI score0.00363EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2018/11/28 12:0 a.m.34 views

Scientific Linux Security Update : ghostscript on SL7.x x86_64 (20181127)

Security Fixes : - ghostscript: .tempfile file permission issues 699657 CVE-2018-15908 - ghostscript: shadingparam incomplete type checking 699660 CVE-2018-15909 - ghostscript: missing type check in type checker 699659 CVE-2018-16511 - ghostscript: incorrect access checking in temp file handling ...

7.8CVSS6.5AI score0.03019EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2018/11/27 12:0 a.m.43 views

RHEL 7 : ghostscript (RHSA-2018:3650)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3650 advisory. The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap...

7.8CVSS6.9AI score0.03019EPSS
Exploits0References10
Prion
Prion
added 2013/07/18 12:48 p.m.20 views

Design/Logic Flaw

Multiple untrusted search path vulnerabilities in Cisco Unified Communications Manager CUCM 7.1x through 9.11a allow local users to gain privileges by leveraging unspecified file-permission and environment-variable issues for privileged programs, aka Bug ID CSCuh73454...

6.8CVSS7.3AI score0.00329EPSS
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2003/07/15 12:0 a.m.29 views

BlackBook - Multiple Vunerabilities

------------------------------------------------------------------ - EXPL-A-2003-015 exploitlabs.com Advisory 015 ------------------------------------------------------------------ -= BlackBook =- Donnie Werner July 11, 2003 Vunerabilitys: ---------------- 1. XSS executes JS in PHP remotely 2...

6.3AI score
Exploits0
securityvulns
securityvulns
added 2003/07/14 12:0 a.m.80 views

[Full-Disclosure] BlackBook - Multiple Vunerabilities

------------------------------------------------------------------ - EXPL-A-2003-015 exploitlabs.com Advisory 015 ------------------------------------------------------------------ -= BlackBook =- Donnie Werner July 11, 2003 Vunerabilitys: ---------------- 1. XSS executes JS in PHP remotely 2...

6.3AI score
Exploits0
Rows per page
Query Builder