Lucene search
K

8 matches found

Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.15 views

PT-2026-48820

Improper verification of access permissions when modifying permissions through the Administration Control Panel ACP allowed an authenticated administrator to grant permissions beyond the level authorized for their account, resulting in privilege escalation within the administrative interface...

7.2CVSS7.1AI score0.00299EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.12 views

AVEVA Pipeline Simulation 安全漏洞

AVEVA Pipeline Simulation is a pipeline simulation software developed by AVEVA, a British company. AVEVA Pipeline Simulation has a security vulnerability. This vulnerability stems from improper permission verification, which may allow unverified attackers to perform privileged operations, resulti...

9.3CVSS5.8AI score0.00388EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.8 views

Lenovo Software Fix 安全漏洞

Lenovo Software Fix is a system repair tool developed by the Chinese company Lenovo. Lenovo Software Fix has a security vulnerability, which stems from improper permission verification during the installation process. This vulnerability may allow locally authenticated users to execute write...

6.6CVSS5.9AI score0.00116EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:33 p.m.6 views

CVE-2023-31226

The SDK for the MediaPlaybackController module has improper permission verification. Successful exploitation of this vulnerability may affect confidentiality...

7.5CVSS7AI score0.00373EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-26438

Malware in sbrugna...

5.5CVSS5.6AI score0.00676EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/05/26 12:0 a.m.4 views

PT-2023-23247 · Unknown · Mediaplaybackcontroller

Name of the Vulnerable Software and Affected Versions: MediaPlaybackController affected versions not specified Description: The SDK for the MediaPlaybackController module has improper permission verification, which may affect confidentiality if successfully exploited. Recommendations: At the...

7.5CVSS6.9AI score0.00373EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/05/04 12:0 a.m.4 views

PT-2022-13917 · Octopus Deploy +1 · Octopus Server +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue concerns improper verification of permissions in the API for projects using Git version control. This flaw allows users with only ProjectView...

4.3CVSS4.4AI score0.00502EPSS
Exploits0References4
CVE
CVE
added 2020/01/14 1:34 p.m.65 views

CVE-2020-5194

CVE-2020-5194 affects Cerberus FTP Server 8 where the zip API endpoint (file/ajax_download_zip/zip_name) permits an authenticated user without zip permission to use the zip function via an unrestricted API endpoint due to improper permission verification. The result is that such a user can zip an...

5.5CVSS5.3AI score0.00676EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder