Lucene search
K

20 matches found

Vulnrichment
Vulnrichment
added 2024/04/19 4:15 a.m.19 views

CVE-2024-29962 Insecure file permission setting that makes files world-readable

Brocade SANnav OVA before v2.3.1 and v2.3.0a have an insecure file permission setting that makes files world-readable. This could allow a local user without the required privileges to access sensitive information or a Java binary...

5.5CVSS6.3AI score0.00183EPSS
Exploits0References1
NVD
NVD
added 2021/09/08 5:15 p.m.19 views

CVE-2021-28568

Adobe Genuine Services version 7.1 and earlier is affected by an Insecure file permission vulnerability during installation process. A local authenticated attacker could leverage this vulnerability to achieve privilege escalation in the context of the current user...

6.9CVSS0.00578EPSS
Exploits0References1
CVE
CVE
added 2021/09/08 4:20 p.m.64 views

CVE-2021-28568

Adobe Genuine Services before version 7.1 suffered an insecure file permission during installation that could allow a locally authenticated user to escalate privileges. The issue is a local privilege escalation via an access-control/file-permission flaw within the installation process. Adobe’s ad...

6.9CVSS5.9AI score0.00578EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2021/06/29 4:15 p.m.22 views

CVE-2021-20490

IBM Spectrum Protect Plus 10.1.0 through 10.1.8 could allow a local user to cause a denial of service due to insecure file permission settings. IBM X-Force ID: 197791...

5.5CVSS0.00204EPSS
Exploits0References2
Prion
Prion
added 2021/06/29 4:15 p.m.18 views

Denial of service

IBM Spectrum Protect Plus 10.1.0 through 10.1.8 could allow a local user to cause a denial of service due to insecure file permission settings. IBM X-Force ID: 197791...

2.1CVSS5.2AI score0.00204EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/06/29 3:50 p.m.22 views

CVE-2021-20490

IBM Spectrum Protect Plus 10.1.0 through 10.1.8 could allow a local user to cause a denial of service due to insecure file permission settings. IBM X-Force ID: 197791...

4CVSS5.4AI score0.00204EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2020/02/14 12:0 a.m.92 views

SprintWork 2.3.1 Local Privilege Escalation

Exploit Title: SprintWork 2.3.1 - Local Privilege Escalation Exploit Author: boku Date: 2020-02-13 Vendor Homepage: https://veridium.net Software Link: https://veridium.net/filesu/spx/exe/SprintWork-Setup.exe Version: 2.3.1 Tested On: Windows 10 32-bit Vulnerability Overview: SprintWork v2.3.1 x8...

7.4AI score
Exploits0
Prion
Prion
added 2019/11/12 4:15 p.m.21 views

Design/Logic Flaw

IBM Spectrum Protect Plus 10.1.0 through 10.1.4 uses insecure file permissions on restored files and directories in Windows which could allow a local user to obtain sensitive information or perform unauthorized actions. IBM X-Force ID: 170963...

3.6CVSS6.3AI score0.00275EPSS
Exploits0References2Affected Software1
Symantec
Symantec
added 2019/11/11 12:0 a.m.26 views

IBM Spectrum Protect Plus CVE-2019-4652 Insecure File Permission Vulnerability

Description IBM Spectrum Protect Plus is prone to insecure file-permission vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. IBM Spectrum Protect Plus versions 10.1.0 through 10.1....

1.6AI score0.00275EPSS
Exploits0Affected Software1
Symantec
Symantec
added 2019/10/15 12:0 a.m.36 views

Adobe Download Manager CVE-2019-8071 Insecure File Permission Vulnerability

Description Adobe Download Manager is prone to an insecure file-permission vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions with elevated privileges; this may aid in launching further attacks. Adobe Download Manager 2.0.0.3...

2.1AI score0.03311EPSS
Exploits0Affected Software1
Packet Storm
Packet Storm
added 2018/10/04 12:0 a.m.35 views

Photo Nettoyeur 1.4.5 Insecure File Permission

i?-------------------------------------------------------- Exploit Title: Photo Nettoyeur 1.4.5 - Insecure File Permission Exploit Author : ZwX Exploit Date: 2018-09-28 Vendor Homepage : http://www.marseillesoft.com/ Link Software : http://www.marseillesoft.com/telecharger/ Tested on OS: Windows ...

7.4AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2018/07/16 12:0 a.m.31 views

Binance v1.5.0 - Insecure File Permission Vulnerability

Document Title: =============== Binance v1.5.0 - Insecure File Permission Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2135 Release Date: ============= 2018-07-16 Vulnerability Laboratory ID VL-ID: ====================================...

7.4AI score
Exploits0
OSV
OSV
added 2018/04/11 7:29 p.m.33 views

PYSEC-2018-84

JSNAPy is an open source python version of Junos Snapshot Administrator developed by Juniper available through github. The default configuration and sample files of JSNAPy automation tool versions prior to 1.3.0 are created world writable. This insecure file and directory permission allows...

5.5CVSS3.4AI score0.00297EPSS
Exploits0References3
Vulnerability Lab
Vulnerability Lab
added 2018/01/12 12:0 a.m.62 views

MagicSpam 2.0.13 - Insecure File Permission Vulnerability

Document Title: =============== MagicSpam 2.0.13 - Insecure File Permission Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2113 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-5693 CVE-ID: ======= CVE-2018-5693 Release Date:...

3.3CVSS0.1AI score0.00396EPSS
Exploits3
0day.today
0day.today
added 2016/11/12 12:0 a.m.27 views

Teradata Virtual Machine Community Edition 15.10 Insecure File Permission Vulnerability

Teradata Virtual Machine Community Edition version 15.10 suffers from an insecure file permission vulnerability. Title: Teradata Virtual Machine Community Edition v15.10 has insecure file permission Author: Larry W. Cashdollar, @larry0 Date: 2016-10-01 Download Site:...

7.2CVSS7.5AI score0.00513EPSS
Exploits3
seebug.org
seebug.org
added 2013/04/24 12:0 a.m.58 views

OpenStack Keystone不安全文件权限漏洞(CVE-2013-1977)

BUGTRAQ ID: 59310 CVECAN ID: CVE-2013-1977 OpenStack Keystone为OpenStack系列计划提供身份、令牌、目录和策略服务的项目。 Keystone.conf管理方式上存在安全漏洞,本地攻击者可利用此漏洞获取LDAP密码配置和admintoken。 0 openstack Keystone 厂商补丁: openstack --------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://lists.openstack.org/pipermail/openstack-announce/...

2.1CVSS6.4AI score0.00438EPSS
Exploits2
seebug.org
seebug.org
added 2012/02/09 12:0 a.m.19 views

Symantec pcAnywhere 12.x不安全文件权限漏洞

BUGTRAQ ID: 51593 CVE ID: CVE-2011-3479 Symantec PCAnywhere是全球最畅销的用于管理服务器和提供管理人员支持的远程控制解决方案。 pcAnywhere对产品安装文件采用全局可写权限,可使本地用户通过修改文件获取权限。 0 Symantec pcAnywhere 12.x 厂商补丁: Symantec -------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.symantec.com/business/securityresponse/...

6.8CVSS6.4AI score0.01062EPSS
Exploits1
Intel
Intel
added 2010/07/23 12:0 a.m.15 views

Intel® Math Kernel Library Insecure File Permission Local Privilege Escalation

Summary: The Intel® Math Kernel Library Intel® MKL is a library of highly optimized, extensively threaded math routines for science, engineering, and financial applications that require maximum performance. An updated version of the software is available for Intel® MKL users to mitigate this...

6.9AI score
Exploits0
securityvulns
securityvulns
added 2005/12/16 12:0 a.m.36 views

iDefense Security Advisory 12.14.05: Trend Micro PC-Cillin Internet Security Insecure File Permission Vulnerability

Trend Micro PC-Cillin Internet Security Insecure File Permission Vulnerability iDefense Security Advisory 12.14.05 www.idefense.com/application/poi/display?id=351&type=vulnerabilities December 14, 2005 I. BACKGROUND Trend Micro PC-Cillin Internet Security is antivirus protection software for home...

7.2CVSS0.0034EPSS
Exploits0
securityvulns
securityvulns
added 2005/04/19 12:0 a.m.41 views

[Full-disclosure] iDEFENSE Security Advisory 04.18.05: McAfee Internet Security Suite 2005 Insecure File Permission Vulnerability

McAfee Internet Security Suite 2005 Insecure File Permission Vulnerability iDEFENSE Security Advisory 04.18.05 http://www.idefense.com/application/poi/display?type=vulnerabilities April 18, 2005 I. BACKGROUND McAfee Internet Security Suite 2005 is a product used to protect a personal computer fro...

7.2CVSS0.1AI score0.00336EPSS
Exploits0
Rows per page
Query Builder