CVE-2018-21041

An issue was discovered on Samsung mobile devices with O8.x software. Access to Gallery in the Secure Folder can occur without authentication. The Samsung ID is SVE-2018-13057 December 2018...

CVE-2010-3156

Untrusted search path vulnerability in K2 K2Editor before 1.5.9 allows local users to gain privileges via a Trojan horse executable file in the current working directory...

CVE-2010-2944

The authenticate function in LDAPUserFolder/LDAPUserFolder.py in zope-ldapuserfolder 2.9-1 does not verify the password for the emergency account, which allows remote attackers to gain privileges...

CVE-2018-21062

An issue was discovered on Samsung mobile devices with N7.x and O8.x software. When biometric authentication is disabled, an attacker can view Streams content e.g., a Gallery slideshow of a locked Secure Folder via a connection to an external device. The Samsung ID is SVE-2018-11766 August 2018...

CVE-2018-21068

An issue was discovered on Samsung mobile devices with O8.0 software. Execution of an application in a locked Secure Folder can occur without a password via a split screen. The Samsung ID is SVE-2018-11669 July 2018...

Incorrect Permission Assignment for Critical Resource

Overview Affected versions of this package are vulnerable to Incorrect Permission Assignment for Critical Resource due to incorrect permissions on folders. An attacker can escalate privileges and execute arbitrary code in the context of a target user by exploiting these permissions. Remediation...

CVE-2002-2393

Serv-U FTP server 3.0, 3.1 and 4.0.0.4 does not accept new connections while validating user folder access rights, which allows remote attackers to cause a denial of service no new connections via a series of MKD commands...

CVE-2005-1577

APG Technology ClassMaster does not properly restrict access to sensitive folders, which allows remote attackers to access folders via a network share...

CVE-2007-3967

Directory traversal vulnerability in index.php in PHP Directory Lister dirLIST before 0.1.1 allows remote attackers to list the contents of a parent directory via a .. dot dot in the folder parameter...

Bypass group folder quota limit using attachment in text file

None...

CVE-2025-30448

This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, visionOS 2.5. An attacker may be able to turn on sharing of an iCloud folder without authentication...

CVE-2025-40573

A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices are vulnerable to path traversal attacks. This could allow a privileged local attacker to restore backups that are outside the backup folder...

Siemens SCALANCE LPE9403 路径遍历漏洞

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. A path traversal vulnerability exists in the Siemens SCALANCE LPE9403, which can be exploited by an attacker to cause a...

CVE-2025-30448

This issue was addressed with additional entitlement checks. This issue is fixed in macOS Sonoma 14.7.6, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, visionOS 2.5, macOS Ventura 13.7.6, macOS Sequoia 15.4. An attacker may be able to turn on sharing of an iCloud folder without authentication...

CVE-2025-30448

This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, visionOS 2.5. An attacker may be able to turn on sharing of an iCloud folder without authentication...

CVE-2025-30448

CVE-2025-30448 affects Apple platforms including macOS Ventura 13.7.6, macOS Sonoma 14.7.6, macOS Sequoia 15.4, iOS 18.5, iPadOS 18.5, iPadOS 17.7.7, and visionOS 2.5. The issue stems from insufficient entitlement checks, which could allow an attacker to enable iCloud folder sharing without authe...

CVE-2025-30448

This issue was addressed with additional entitlement checks. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, visionOS 2.5. An attacker may be able to turn on sharing of an iCloud folder without authentication...

Apple多款产品 安全漏洞

Apple iOS is an operating system developed for mobile devices. apple macOS is a specialized operating system developed for Mac computers. apple iPadOS is an operating system for the iPad tablet computer. A security vulnerability exists in several Apple products that stems from insufficient...

CVE-2025-20973

Improper authentication in Secure Folder prior to version 1.8.12.0 in Android 13, and 1.9.21.00 in Android 14 allows physical attackers to reset the lock type of Secure Folder...

CVE-2025-20973

Improper authentication in Secure Folder prior to version 1.8.12.0 in Android 13, and 1.9.21.00 in Android 14 allows physical attackers to reset the lock type of Secure Folder...