Lucene search
K

8 matches found

Veracode
Veracode
added 2025/04/08 3:36 a.m.13 views

Unauthorized File Access

awssamcli is vulnerable to Unauthorized File Access. The vulnerability is due to insecure symlink resolution during the build process, which causes the contents of symlinks to be copied into the local workspace cache as regular files, allows an attacker to access restricted files...

6.9CVSS6.4AI score0.0062EPSS
Exploits0References6Affected Software1
Veracode
Veracode
added 2024/11/16 7:45 p.m.9 views

Privilege Escalation

github.com/rclone/rclone is vulnerable to Privilege Escalation. The vulnerability is due to insecure handling of symlinks with the --links and --metadata flags, allows unprivileged users to exploit symlinks to modify the ownership and permissions of target files when copied by a privileged proces...

5.4CVSS6.4AI score0.00214EPSS
Exploits0References4Affected Software2
Tenable Nessus
Tenable Nessus
added 2024/07/26 12:0 a.m.13 views

TeamViewer < 15.52 Insecure Symlink Following (tv-2024-1002)

The version of TeamViewer Client installed on the remote MacOS host is prior to 15.52. It is, therefore, affected by an insecure symlink following vulnerability. A local attacker with unprivileged access could potentially elevate privileges or conduct a denial-of-service attack by overwriting the...

7.1CVSS5.6AI score0.00209EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2021/04/01 2:20 p.m.30 views

CVE-2021-28163

In Eclipse Jetty 9.4.32 to 9.4.38, 10.0.0.beta2 to 10.0.1, and 11.0.0.beta2 to 11.0.1, if a user uses a webapps directory that is a symlink, the contents of the webapps directory is deployed as a static webapp, inadvertently serving the webapps themselves and anything else that might be in that...

4CVSS5.5AI score0.0418EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2008/04/22 12:0 a.m.42 views

Debian DSA-1550-1 : suphp - programming error

It was discovered that suphp, an Apache module to run PHP scripts with owner permissions handles symlinks insecurely, which may lead to privilege escalation by local users. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

4.3CVSS5.3AI score0.00328EPSS
Exploits0References3
Debian
Debian
added 2008/04/17 9:27 p.m.18 views

[SECURITY] [DSA 1550-1] New suphp packages fix local privilege escalation

------------------------------------------------------------------------ Debian Security Advisory DSA-1550-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 17, 2008 http://www.debian.org/security/faq -...

4.3CVSS6.3AI score0.00328EPSS
Exploits0
0day.today
0day.today
added 2000/12/20 12:0 a.m.23 views

SunOS 5.7 Catman - Local Insecure tmp Symlink Clobber Exploit

Exploit for solaris platform in category dos / poc ============================================================= SunOS 5.7 Catman - Local Insecure tmp Symlink Clobber Exploit ============================================================= !/usr/local/bin/perl -w The problem is catman creates files ...

7AI score
Exploits0
0day.today
0day.today
added 2000/12/19 12:0 a.m.13 views

Solaris 2.7 / 2.8 Catman - Local Insecure tmp Symlink Exploit

Exploit for unknown platform in category dos / poc ============================================================= Solaris 2.7 / 2.8 Catman - Local Insecure tmp Symlink Exploit ============================================================= !/usr/local/bin/perl -w The problem is catman creates files ...

7AI score
Exploits0
Rows per page
Query Builder