Lucene search
K

64 matches found

cnnvd
cnnvd
added 2025/06/09 12:0 a.m.2 views

WordPress plugin One-Login 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.1CVSS7.7AI score0.00349EPSS
Exploits0References2
cnnvd
cnnvd
added 2025/06/09 12:0 a.m.3 views

WordPress plugin MapSVG 安全漏洞

WordPress MapSVG is a WordPress plugin for creating interactive maps. WordPress MapSVG suffers from an elevation of privilege vulnerability. The vulnerability stems from improper privilege assignment. An attacker can exploit the vulnerability to elevate privileges to elevate a low-privileged...

8.8CVSS8.2AI score0.00294EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/05/28 12:0 a.m.5 views

PT-2025-23082 · Devolutions · Devolutions Server

Name of the Vulnerable Software and Affected Versions: Devolutions Server versions 2024.3.15.0 and earlier Devolutions Server versions 2025.1.3.0 through 2025.1.7.0 Description: The issue is related to improper privilege assignment in PAM JIT privilege sets, allowing a PAM user to perform PAM JIT...

6.5CVSS6.3AI score0.00311EPSS
Exploits0References6
bdu_fstec
bdu_fstec
added 2025/05/23 12:0 a.m.11 views

The vulnerability of the /cgi-bin/ExportSyslog.sh script, a microprogramming solution for TOTOLINK A3000RU routers, allows a hacker to circumvent existing security restrictions.

The vulnerability of the /cgi-bin/ExportSyslog.sh script, a microprogramming solution for TOTOLINK A3000RU routers, is related to the improper assignment of privileges. Exploiting this vulnerability could allow an attacker to bypass security restrictions remotely...

4.3CVSS5.4AI score0.00494EPSS
Exploits1References6Affected Software1
cnnvd
cnnvd
added 2025/05/19 12:0 a.m.3 views

WordPress plugin wProject 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

8.8CVSS8.7AI score0.00294EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2025/05/09 12:0 a.m.5 views

The vulnerability of the IBM Guardium Data Protection platform regarding data security protection, which stems from improper privilege assignment, allows attackers to gain unauthorized access to protected information.

The vulnerability of the IBM Guardium Data Protection platform for data security protection is related to improper privilege assignment. Exploiting this vulnerability may allow an attacker, operating remotely, to gain unauthorized access to protected information...

6.8CVSS5.4AI score0.00337EPSS
Exploits0References2Affected Software1
cnnvd
cnnvd
added 2025/04/17 12:0 a.m.4 views

WordPress plugin Projectopia 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

9.8CVSS8.6AI score0.00387EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/04/17 12:0 a.m.3 views

WordPress plugin Xelion Webchat 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

8.8CVSS8.7AI score0.00359EPSS
Exploits0References1
redos
redos
added 2025/02/13 12:0 a.m.11 views

ROS-20250212-11

The Nomad application orchestrator vulnerability is related to improper assignment of privileges in the namespace namespace privileges via unedited workload identification tokens. Exploitation of the vulnerability could allow an attacker acting remotely to access sensitive information...

6.5CVSS6.5AI score0.0053EPSS
Exploits0
cnnvd
cnnvd
added 2025/01/30 12:0 a.m.6 views

FreeBSD 安全漏洞

FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. FreeBSD suffers from an information disclosure vulnerability that is caused by a failure to properly assign privileges flaw. An attacker could exploit this vulnerability to access system files...

6.5CVSS6.2AI score0.0029EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2025/01/15 12:0 a.m.8 views

The vulnerability of the Registration role module in Drupal CMS systems, related to incorrect privilege assignment, allows attackers to bypass security restrictions and enhance their privileges.

The vulnerability of the Registration role module in Drupal CMS systems is related to the improper assignment of privileges. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and enhance their privileges...

9CVSS5.5AI score0.00355EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2025/01/06 12:0 a.m.10 views

The vulnerability of the Kubernetes cluster management system for running cloud applications across multiple Karmada clusters, related to incorrect privilege assignment, allows a hacker to elevate their privileges.

The vulnerability of the Kubernetes cluster management system for running cloud applications across multiple Karmada clusters is related to the improper assignment of privileges. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

9CVSS5.4AI score0.00485EPSS
Exploits0References5Affected Software1
bdu_fstec
bdu_fstec
added 2024/11/26 12:0 a.m.11 views

The vulnerability of the Spectrum Power 7 software, related to incorrect privilege assignment, allows a perpetrator to elevate their privileges.

The vulnerability of the Spectrum Power 7 software is related to the improper assignment of privileges by running binary files with the SUID privilege. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS7.4AI score0.00141EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2024/11/08 12:0 a.m.6 views

The vulnerability of HashiCorp’s Vault and Vault Enterprise storage platforms, which involve improper privilege assignment, allows attackers to escalate their privileges.

The vulnerability of the HashiCorp Vault and Vault Enterprise archiving platforms for corporate information lies in improper privilege assignment. Exploiting this vulnerability can allow a malicious actor, operating remotely, to enhance their privileges...

8.3CVSS7.2AI score0.00528EPSS
Exploits0References3Affected Software3
bdu_fstec
bdu_fstec
added 2024/07/22 12:0 a.m.7 views

The vulnerability of the PowerScale OneFS operating system, related to incorrect privilege assignment, allows attackers to elevate their privileges.

The vulnerability of the PowerScale OneFS operating system is related to the improper assignment of privileges. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root level...

6.8CVSS5.5AI score0.00157EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2024/07/22 12:0 a.m.7 views

The vulnerability of the PowerScale OneFS operating system, related to incorrect privilege assignment, allows a perpetrator to trigger a service failure and increase their privileges.

The vulnerability of the PowerScale OneFS operating system is related to the improper assignment of privileges. Exploiting this vulnerability can allow an attacker to cause service failures and increase their privileges...

6.8CVSS5.5AI score0.00149EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2024/07/01 12:0 a.m.5 views

The vulnerability of the Anti-Malware Service component of VIPRE Advanced Security software allows a hacker to increase their privileges.

The vulnerability of the Anti-Malware Service component in VIPRE Advanced Security software is related to improper privilege assignment. Exploiting this vulnerability allows attackers to enhance their privileges and circumvent security restrictions...

7.8CVSS7.2AI score0.00272EPSS
Exploits0References5Affected Software1
bdu_fstec
bdu_fstec
added 2024/04/04 12:0 a.m.6 views

The vulnerability in the set of VMware Tools relates to improper privilege assignment, allowing a malicious actor to circumvent existing security restrictions.

The vulnerability of the VMware Tools set is related to the vulnerability of handling the file descriptor in the vmware-user-suid-wrapper layer. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions remotely...

7CVSS6.5AI score0.00402EPSS
Exploits0References7Affected Software4
bdu_fstec
bdu_fstec
added 2024/02/14 12:0 a.m.5 views

The vulnerability of Fortify ScanCentral DAST, a web application security scanner, relates to improper privilege assignment, allowing attackers to elevate their privileges.

The vulnerability of Fortify ScanCentral DAST, a security scanner for web applications, is related to improper privilege assignment. Exploiting this vulnerability can allow an attacker, operating remotely, to increase their privileges...

10CVSS7.8AI score0.00554EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2023/05/31 12:0 a.m.7 views

The vulnerability of the microprogrammed software of the wireless VoIP router ICOM SR-7100VN, related to improper privilege assignment, allows a hacker to elevate their privileges.

The vulnerability of the microprogrammed software of the wireless VoIP router ICOM SR-7100VN is related to the improper assignment of privileges. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

7.7CVSS6.6AI score0.00338EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder