Lucene search
K

7 matches found

OSV
OSV
added 2021/05/27 12:0 p.m.25 views

RUSTSEC-2021-0101 Permissions bypass in pleaser

Failure to normalize the umask in pleaser before 0.4 allows a local attacker to gain full root privileges if they are allowed to execute at least one command...

7.8CVSS7.6AI score0.00408EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2021/05/05 12:0 a.m.22 views

CVE-2021-31154

pleaseedit in please before 0.4 uses predictable temporary filenames in /tmp and the target directory. This allows a local attacker to gain full root privileges by staging a symlink attack...

7.8CVSS7.1AI score0.00468EPSS
Exploits1References2
NVD
NVD
added 2020/10/26 5:15 p.m.13 views

CVE-2020-27187

An issue was discovered in KDE Partition Manager 4.1.0 before 4.2.0. The kpmcoreexternalcommand helper contains a logic flaw in which the service invoking D-Bus is not properly checked. An attacker on the local machine can replace /etc/fstab, and execute mount and other partitioning related...

7.8CVSS0.00422EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2020/10/26 4:19 p.m.38 views

CVE-2020-27187

An issue was discovered in KDE Partition Manager 4.1.0 before 4.2.0. The kpmcoreexternalcommand helper contains a logic flaw in which the service invoking D-Bus is not properly checked. An attacker on the local machine can replace /etc/fstab, and execute mount and other partitioning related...

7.8CVSS7.8AI score0.00422EPSS
Exploits0
Exploit DB
Exploit DB
added 2019/12/16 12:0 a.m.230 views

OpenBSD 6.x - Dynamic Loader Privilege Escalation

Qualys Security Advisory Local Privilege Escalation in OpenBSD's dynamic loader CVE-2019-19726 ============================================================================== Contents ============================================================================== Summary Analysis Demonstration...

7.8CVSS7.8AI score0.03522EPSS
Exploits12
Vulnrichment
Vulnrichment
added 2019/10/02 7:6 p.m.9 views

CVE-2019-12690 Cisco Firepower Management Center Command Injection Vulnerability

A vulnerability in the web UI of the Cisco Firepower Management Center FMC could allow an authenticated, remote attacker to inject arbitrary commands that are executed with the privileges of the root user of the underlying operating system. The vulnerability is due to insufficient validation of...

7.2CVSS7.7AI score0.03507EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2007/11/10 12:0 a.m.32 views

Ubuntu 6.06 LTS : linux-source-2.6.15 vulnerability (USN-319-1)

A race condition has been discovered in the file permission handling of the /proc file system. A local attacker could exploit this to execute arbitrary code with full root privileges. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu securit...

6.2CVSS5.7AI score0.02203EPSS
Exploits1References2
Rows per page
Query Builder