5043 matches found
CVE-2025-24826
Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Snap Deploy Windows before build 4625...
CVE-2025-24826
CVE-2025-24826 affects Acronis Snap Deploy (Windows) , with vulnerable component defined as the installation/build prior to 4625. The root cause is insecure folder permissions leading to a local privilege escalation . The CVSS data indicates a local attack vector with high impact on confidentiali...
CVE-2024-8401
CWE-79: Improper Neutralization of Input During Web Page Generation ‘Cross-site Scripting’ vulnerability exists when an authenticated attacker modifies folder names within the context of the product...
CVE-2024-8401
CWE-79: Improper Neutralization of Input During Web Page Generation ‘Cross-site Scripting’ vulnerability exists when an authenticated attacker modifies folder names within the context of the product...
CVE-2024-8401
This CVE-2024-8401 concerns Schneider Electric EcoStruxure products (PME, EPO, PSO) with a Cross-site Scripting (XSS) flaw caused by improper input neutralization during web page generation. An authenticated attacker could modify folder names within the product context, potentially enabling malic...
CVE-2024-8401
CWE-79: Improper Neutralization of Input During Web Page Generation ‘Cross-site Scripting’ vulnerability exists when an authenticated attacker modifies folder names within the context of the product...
PT-2025-5581 · Acronis · Acronis Snap Deploy
Name of the Vulnerable Software and Affected Versions: Acronis Snap Deploy Windows versions before build 4625 Description: The issue is related to local privilege escalation due to insecure folder permissions. This allows for potential exploitation, though specific details about the estimated...
Acronis Snap Deploy 安全漏洞
Acronis Snap Deploy is a platform for batch deployment of system images from Acronis Switzerland. A security vulnerability exists in Acronis Snap Deploy that stems from a local elevation of privilege due to insecure folder permissions...
January 28, 2025—KB5050094 (OS Build 26100.3037) Preview
January 28, 2025—KB5050094 OS Build 26100.3037 Preview or information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows 11, version 24H2, see its update history page. Note Follow @WindowsUpdate to...
CVE-2025-0720
A vulnerability was found in Microword eScan Antivirus 7.0.32 on Linux. It has been rated as problematic. Affected by this issue is the function removeExtraSlashes of the file /opt/MicroWorld/sbin/rtscanner of the component Folder Watch List Handler. The manipulation leads to stack-based buffer...
CVE-2025-0720 Microword eScan Antivirus Folder Watch List rtscanner removeExtraSlashes stack-based overflow
A vulnerability was found in Microword eScan Antivirus 7.0.32 on Linux. It has been rated as problematic. Affected by this issue is the function removeExtraSlashes of the file /opt/MicroWorld/sbin/rtscanner of the component Folder Watch List Handler. The manipulation leads to stack-based buffer...
eScan Antivirus 安全漏洞
eScan Antivirus is a network anti-virus security software from eScan. A security vulnerability exists in eScan Antivirus version 7.0.32, which originates in the Folder Watch List Handler component, where the removeExtraSlashes function causes a stack buffer overflow...
PT-2025-4020 · Microworld · Escan Antivirus
Name of the Vulnerable Software and Affected Versions: Microword eScan Antivirus version 7.0.32 Description: A problematic issue has been found, affecting the function removeExtraSlashes of the file /opt/MicroWorld/sbin/rtscanner in the component Folder Watch List Handler. This issue leads to a...
CVE-2024-55930
Xerox Workplace Suite has weak default folder permissions that allow unauthorized users to access, modify, or delete files...
CVE-2024-55930 Weak default folder permissions
Xerox Workplace Suite has weak default folder permissions that allow unauthorized users to access, modify, or delete files...
CVE-2024-55930 Weak default folder permissions
Xerox Workplace Suite has weak default folder permissions that allow unauthorized users to access, modify, or delete files...
CVE-2024-55930
CVE-2024-55930 affects Xerox Workplace Suite; root cause is weak default folder permissions that allow unauthorized access, modification, or deletion of files. Connected sources specify affected software as Xerox Workplace Suite and versions prior to 5.6.701.9. Mitigation guidance in PT-2025-3158...
Xerox Workplace Suite 安全漏洞
Xerox Workplace Suite is a powerful print management software from Xerox. A security vulnerability exists in Xerox Workplace Suite version 5.6.701.9, which originates from weak default folder permissions...
PT-2025-3158
Name of the Vulnerable Software and Affected Versions Xerox Workplace Suite versions prior to 5.6.701.9 Description The issue concerns weak default folder permissions in the software, allowing unauthorized users to access, modify, or delete files. There is no information provided about the...
CVE-2025-24401
Jenkins Folder-based Authorization Strategy Plugin 217.vd5b18537403e and earlier does not verify that permissions configured to be granted are enabled, potentially allowing users formerly granted typically optional permissions, like Overall/Manage to access functionality they're no longer entitle...