CVE-2025-12985 License Service: Privilege escalation vulnerability

IBM Licensing Operator incorrectly assigns privileges to security critical files which could allow a local root escalation inside a container running the IBM Licensing Operator image...

PT-2025-43264

Name of the Vulnerable Software and Affected Versions Dokan versions through 4.1.2 Description An incorrect privilege assignment exists in Dokan dokan-lite, potentially allowing privilege escalation. Recommendations Update Dokan to a version newer than 4.1.2...

EUVD-2019-9330

Malware in sbrugna...

EUVD-2022-40772

Malicious code in bioql PyPI...

EUVD-2023-54554

Malicious code in bioql PyPI...

PT-2024-36249 · WordPress · Wp Nssuser Register

Name of the Vulnerable Software and Affected Versions: Wp NssUser Register versions n/a through 1.0.0 Description: The issue is related to an incorrect privilege assignment in the nssTheme Wp NssUser Register, allowing privilege escalation. Recommendations: For versions n/a through 1.0.0, at the...

Ivanti Secure Access Client Privilege Issue Vulnerability

Ivanti Secure Access Client is a security software client developed by Ivanti, Inc. that is primarily used to enable remote secure access with support for enterprise-class VPN connections and encrypted access to resources. Ivanti Secure Access Client is vulnerable to a privilege issue vulnerabili...

PostgreSQL 安全漏洞

PostgreSQL is a free object-relational database management system from the PostgreSQL organization. The system supports most of the SQL standards and provides many other features such as foreign keys, triggers, views, and so on. A security vulnerability exists in PostgreSQL that stems from...

CVE-2024-7960 Rockwell Automation Incorrect Privileges and Path Traversal Vulnerability in Pavilion8®

The Rockwell Automation affected product contains a vulnerability that allows a threat actor to view sensitive information and change settings. The vulnerability exists due to having an incorrect privilege matrix that allows users to have access to functions they should not...

WordPress Plugin LiteSpeed Cache 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

OpenHarmony Security Vulnerabilities

OpenHarmony is a kind of Hongmeng operating system open source project of China OpenAtom Foundation OpenAtom Foundation Foundation. A security vulnerability exists in OpenHarmony version v4.0.0 and earlier versions, which originated from a vulnerability that allows a local attacker to cause an...

CVE-2021-40809

An issue was discovered in Jamf Pro before 10.32.0, aka PI-009921. An account can be granted incorrect privileges in response to authentication that uses specific sign-on workflows...

YSoft SafeQ 6 has an unspecified vulnerability

YSoft SAFEQ 6 FlexiSpooler is an application. A print management solution. A security vulnerability exists in YSoft SafeQ 6, which stems from incorrect privileges in the MU55 FlexiSpooler service in version 6.0.55 of YSoft SafeQ 6. An attacker could exploit the vulnerability to escalate local use...

Huawei FusionAccess Command Execution Vulnerability

Huawei FusionAccess is a virtual desktop application based on Huawei Cloud Platform from Huawei, China. A security vulnerability exists in Huawei FusionAccess version 6.5.1. The vulnerability stems from a command being authorized with incorrect privileges. An attacker could exploit the...

Moderate: Red Hat Security Advisory: Red Hat OpenShift Service Mesh openshift-istio-kiali-rhel7-operator-container security update

An update for openshift-istio-kiali-rhel7-operator-container is now available for Openshift Service Mesh 1.0 and 1.1. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.1.41 openshift-enterprise-ansible-operator-container security update

An update for openshift-enterprise-ansible-operator-container is now available for Red Hat OpenShift Container Platform 4.1. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.1.38 security update

An update is now available for Red Hat OpenShift Container Platform 4.1. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

CVE-2019-19728

SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 executes srun --uid with incorrect privileges...

CVE-2019-19728

Removed by vendor...

Authorization Bypass

wildfly-core is vulnerable to authorization bypass. The vulnerability exists as incorrect privileges for 'Monitor', 'Auditor' and 'Deployer' user were given by default...