Lucene search
K

40 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:4 p.m.3 views

CVE-2026-21000

Improper access control in Galaxy Store prior to version 4.6.03.8 allows local attacker to create file with Galaxy Store privilege...

7CVSS5.8AI score0.0013EPSS
Exploits0References1
NVD
NVD
added 2026/01/20 3:16 p.m.4 views

CVE-2025-12985

IBM Licensing Operator incorrectly assigns privileges to security critical files which could allow a local root escalation inside a container running the IBM Licensing Operator image...

8.4CVSS0.00124EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.6 views

PT-2026-3579

Name of the Vulnerable Software and Affected Versions IBM Licensing Operator affected versions not specified Description The IBM Licensing Operator incorrectly assigns privileges to security critical files. This could allow a local root escalation within a container running the IBM Licensing...

8.4CVSS6.8AI score0.00124EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-9387

Malware in sbrugna...

6CVSS6.1AI score0.01404EPSS
Exploits3References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2007-4035

Malware in sbrugna...

4.6CVSS6.4AI score0.00364EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-17842

Malware in sbrugna...

7.8CVSS6.2AI score0.01038EPSS
Exploits5References5
NVD
NVD
added 2025/05/07 9:15 a.m.11 views

CVE-2025-20967

Improper access control in Samsung Gallery prior to version 14.5.10.3 in Global Android 13, 14.5.09.3 in China Android 13, and 15.5.04.5 in Android 14 allows attackers to read and write arbitrary file with the privilege of Samsung Gallery...

9.1CVSS0.00179EPSS
Exploits0References1
CVE
CVE
added 2025/01/25 4:15 p.m.316 views

CVE-2025-0542

CVE-2025-0542 affects G DATA Management Server. The issue is an incorrect assignment of privileges for temporary files in the update mechanism, enabling a local, unprivileged attacker to escalate privileges by placing a crafted ZIP archive in a globally writable directory, which is unpacked in th...

7.8CVSS7.8AI score0.00163EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/06 12:0 a.m.2 views

Red Hat Ansible 安全漏洞

Red Hat Ansible is a computer system configuration manager from Red Hat, an American company. The product can be used to distribute, manage, and program computer systems. A security vulnerability exists in Red Hat Ansible that stems from a flawed logic or insufficient security validation in the...

6.3CVSS6.9AI score0.00222EPSS
Exploits0References7
Prion
Prion
added 2022/04/08 8:15 p.m.18 views

Information disclosure

Dell PowerScale OneFS, versions 8.2.x, 9.0.0.x, 9.1.0.x, 9.2.0.x, 9.2.1.x, and 9.3.0.x, contain an improper preservation of privileges. A remote filesystem user with a local account could potentially exploit this vulnerability, leading to an escalation of file privileges and information disclosur...

6.5CVSS8.4AI score0.00561EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2021/03/19 4:55 p.m.5 views

containers/openjdk: /etc/passwd is given incorrect privileges

An insecure modification flaw in the /etc/passwd file was found in the openjdk-1.8 and openjdk-11 containers. This flaw allows an attacker with access to the container to modify /etc/passwd and escalate their privileges. The highest threat from this vulnerability is to confidentiality, integrity,...

7.8CVSS5.7AI score0.00262EPSS
Exploits0References5
Prion
Prion
added 2019/04/09 6:29 p.m.16 views

Directory traversal

Silverpeas 5.15 through 6.0.2 is affected by an authenticated Directory Traversal vulnerability that can be triggered during file uploads because core/webapi/upload/FileUploadData.java mishandles a StringUtil.java call. This vulnerability enables regular users to write arbitrary files on the...

9CVSS9.4AI score0.05135EPSS
Exploits1References2Affected Software1
OpenVAS
OpenVAS
added 2018/04/30 12:0 a.m.9 views

Microsoft Windows 10: Create a pagefile

This policy setting determines which users can create and change the size of a page file. It determines whether users can specify a page file size for a particular drive in the Performance Options box located on the Advanced tab of the System Properties dialog box or through using internal...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/02/23 12:0 a.m.276 views

Amazon Linux AMI : mysql51 (ALAS-2017-800)

It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server...

10CVSS7.7AI score0.6773EPSS
Exploits20References4
Amazon
Amazon
added 2017/02/22 12:0 a.m.89 views

Important: mysql51

Issue Overview: It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the...

10CVSS8.6AI score0.6773EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2016/12/15 12:0 a.m.65 views

Scientific Linux Security Update : mariadb on SL7.x x86_64 (20161103)

The following packages have been upgraded to a newer upstream version: mariadb 5.5.52. Security Fixes : - It was discovered that the MariaDB logging functionality allowed writing to MariaDB configuration files. An administrative database user, or a database user with FILE privileges, could possib...

10CVSS7.7AI score0.6773EPSS
Exploits20References10
RedHat Linux
RedHat Linux
added 2016/12/08 4:6 p.m.11 views

mysql: general_log can write to configuration files, leading to privilege escalation (CPU Oct 2016)

It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server...

10CVSS7.5AI score0.6773EPSS
Exploits16References5
RedHat Linux
RedHat Linux
added 2016/12/08 4:5 p.m.9 views

mysql: general_log can write to configuration files, leading to privilege escalation (CPU Oct 2016)

It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server...

10CVSS7.5AI score0.6773EPSS
Exploits16References5
RedHat Linux
RedHat Linux
added 2016/11/15 11:29 a.m.10 views

mysql: general_log can write to configuration files, leading to privilege escalation (CPU Oct 2016)

It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server...

10CVSS7.5AI score0.6773EPSS
Exploits16References5
RedHat Linux
RedHat Linux
added 2016/10/31 10:23 p.m.6 views

mysql: general_log can write to configuration files, leading to privilege escalation (CPU Oct 2016)

It was discovered that the MySQL logging functionality allowed writing to MySQL configuration files. An administrative database user, or a database user with FILE privileges, could possibly use this flaw to run arbitrary commands with root privileges on the system running the database server...

10CVSS7.5AI score0.6773EPSS
Exploits16References5
Rows per page
Query Builder