11 matches found
kvf-admin 安全漏洞
kvf-admin is a set of rapid development frameworks, scaffolding, backend management systems, and permission systems developed by KalvinGit’s individual developers. Version 1.1.0 of kvf-admin contains a security vulnerability. This vulnerability stems from improper permission settings in the...
EUVD-2017-10732
Malware in sbrugna...
EUVD-2021-8907
Malicious code in bioql PyPI...
CVE-2021-21735
A ZTE product has an information leak vulnerability. Due to improper permission settings, an attacker with ordinary user permissions could exploit this vulnerability to obtain some sensitive user information through the wizard page without authentication. This affects ZXHN H168N all versions up t...
CVE-2019-13009
An issue was discovered in GitLab Community and Enterprise Edition 9.2 through 12.0.2. Uploaded files associated with unsaved personal snippets were accessible to unauthorized users due to improper permission settings. It has Incorrect Access Control...
CVE-2024-5163
Improper permission settings for mobile applications com.transsion.carlcare may lead to user password and account security risks...
CVE-2024-5163 Improper permission settings in com.transsion.carlcare
Improper permission settings for mobile applications com.transsion.carlcare may lead to user password and account security risks...
CVE-2024-5163 Improper permission settings in com.transsion.carlcare
Improper permission settings for mobile applications com.transsion.carlcare may lead to user password and account security risks...
CVE-2021-39967
Huawei HarmonyOS is affected by a vulnerability in the SIM dual-card management component that can lead to sensitive information disclosure, compromising confidentiality. The CNVD entry describes the SIM dual‑card management module as vulnerable, enabling an attacker to access confidential data. ...
CVE-2017-1716
IBM Tivoli Workload Scheduler 8.6.0, 9.1.0, and 9.2.0 could disclose sensitive information to a local attacker due to improper permission settings. IBM X-Force ID: 134638...
Design/Logic Flaw
IBM Tivoli Workload Scheduler 8.6.0, 9.1.0, and 9.2.0 could disclose sensitive information to a local attacker due to improper permission settings. IBM X-Force ID: 134638...