Lucene search
+L

28 matches found

cnnvd
cnnvd
added 2026/05/05 12:0 a.m.11 views

runZero Platform 安全漏洞

runZero Platform is an asset discovery and attack surface management platform developed by the US company runZero. Versions of runZero Platform prior to v4.0.260416.0 contained security vulnerabilities. These vulnerabilities were due to improper permission management, which could allow dashboard...

5CVSS5.8AI score0.00168EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/04/07 12:0 a.m.8 views

runZero Platform 安全漏洞

RunZero Platform is an asset discovery and attack surface management platform developed by the US company RunZero. Versions of RunZero Platform prior to 4.0.260202.0 contained security vulnerabilities, which were caused by improper permission management, potentially leading to unauthorized...

8.4CVSS5.8AI score0.00221EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/02/04 12:0 a.m.10 views

SAMSUNG Mobile devices 安全漏洞

Samsung Mobile devices are a series of mobile devices produced by South Korea’s Samsung Corporation, including smartphones and tablets. Versions of Samsung Mobile Devices prior to SMR Feb-2026 Release 1 contained security vulnerabilities. These vulnerabilities stemmed from improper permission...

8.4CVSS5.9AI score0.00129EPSS
Exploits0References2
veracode
veracode
added 2025/11/03 3:40 a.m.7 views

Improper Permission Management

Dragonfly is vulnerable to Improper Permission Management. The vulnerability is due to the use of the os.MkdirAll function without verifying permissions on existing directories, which allows a local attacker to pre-create directories with broad permissions and later tamper with files used by...

5.1CVSS6.7AI score0.00106EPSS
Exploits0References5Affected Software2
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-12258

Malware in sbrugna...

6.8CVSS6.4AI score0.00104EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-12643

Malware in sbrugna...

7.8CVSS7.6AI score0.00221EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/06/16 11:37 a.m.5 views

CVE-2025-5689 Improper Permission Management in SSH Session Handling

A flaw was found in the temporary user record that authd uses in the pre-auth NSS. As a result, a user login for the first time will be considered to be part of the root group in the context of that SSH session...

8.5CVSS6.3AI score0.00255EPSS
Exploits0References1
cve
cve
added 2025/06/16 11:37 a.m.76 views

CVE-2025-5689

CVE-2025-5689 concerns ubuntu/authd and related components. A flaw in the temporary user record used by authd during pre-auth NSS can cause a first-time SSH login to place the new user into the root group for that SSH session, potentially exposing root-group read/write access during that session....

8.5CVSS7AI score0.00255EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2025/06/16 11:37 a.m.23 views

CVE-2025-5689 Improper Permission Management in SSH Session Handling

A flaw was found in the temporary user record that authd uses in the pre-auth NSS. As a result, a user login for the first time will be considered to be part of the root group in the context of that SSH session...

8.5CVSS0.00255EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 4:16 a.m.7 views

CVE-2023-41295

Vulnerability of improper permission management in the displayengine module. Successful exploitation of this vulnerability may cause the screen to turn dim...

5.3CVSS6.8AI score0.00241EPSS
Exploits0
redhatcve
redhatcve
added 2025/05/22 3:46 p.m.7 views

CVE-2020-1817

Huawei PCManager with versions earlier than 10.0.1.36 has a privilege escalation vulnerability. Due to improper permission management of specific files, local attackers with low permissions can inject commands to exploit this vulnerability. Successful exploit may cause privilege escalation...

7.8CVSS7.1AI score0.00221EPSS
Exploits0
osv
osv
added 2023/09/25 12:15 p.m.7 views

CVE-2023-41295

Vulnerability of improper permission management in the displayengine module. Successful exploitation of this vulnerability may cause the screen to turn dim...

5.3CVSS6.1AI score0.00241EPSS
Exploits0References2
cvelist
cvelist
added 2023/09/25 11:2 a.m.23 views

CVE-2023-41295

Vulnerability of improper permission management in the displayengine module. Successful exploitation of this vulnerability may cause the screen to turn dim...

5.5AI score0.00241EPSS
Exploits0References2
cnvd
cnvd
added 2023/03/23 12:0 a.m.21 views

answer authorization issue vulnerability

answer is an open source knowledge-based community software. answer 1.0.6 prior versions of the authorization problem vulnerability , the vulnerability stems from the request to set a new password in /answer/admin/api/user/password there is improper permission management , a low-privilege attacke...

4.3AI score0.00644EPSS
Exploits1Affected Software1
nvd
nvd
added 2022/02/25 7:15 p.m.34 views

CVE-2021-37103

There is an improper permission management vulnerability in the Wallet apps. Successful exploitation of this vulnerability may affect service confidentiality...

5.5CVSS0.00149EPSS
Exploits0References1
cve
cve
added 2022/02/25 6:11 p.m.94 views

CVE-2021-37103

CVE-2021-37103 involves an improper permission management vulnerability in Huawei HUAWEI EMUI/Magic UI Wallet apps (UIWallet). The root cause described across connected records is incorrect handling of privileges by the Wallet UI components, potentially enabling confidentiality impacts on service...

5.5CVSS5.5AI score0.00149EPSS
Exploits0References1Affected Software2
cvelist
cvelist
added 2022/02/25 6:11 p.m.23 views

CVE-2021-37103

There is an improper permission management vulnerability in the Wallet apps. Successful exploitation of this vulnerability may affect service confidentiality...

5.8AI score0.00149EPSS
Exploits0References1
osv
osv
added 2021/10/28 1:15 p.m.1 views

CVE-2021-22475

There is an Improper permission management vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality...

5.3CVSS5.8AI score
Exploits0References1
osv
osv
added 2021/06/30 9:15 p.m.3 views

CVE-2021-22346

There is an Improper Permission Management Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may lead to the disclosure of user habits...

5.3CVSS5.8AI score0.00529EPSS
Exploits0References1
nvd
nvd
added 2021/06/30 9:15 p.m.13 views

CVE-2021-22346

There is an Improper Permission Management Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may lead to the disclosure of user habits...

5.3CVSS0.00529EPSS
Exploits0References1
Rows per page
Query Builder