EUVD-2026-33782

In createSessionInternal of PackageInstallerService.java, there is a possible to update a Device Policy Controller DPC into an invalid directory due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not...

CVE-2026-0055

CVE-2026-0055 describes a path traversal in PackageInstallerService.java (createSessionInternal) that could let an attacker place or move a Device Policy Controller (DPC) into an invalid directory, enabling local privilege escalation without extra execution privileges or user interaction. The det...

PT-2026-45576

In createSessionInternal of PackageInstallerService.java, there is a possible to update a Device Policy Controller DPC into an invalid directory due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not...

EUVD-2021-23916

Malware in sbrugna...

CVE-2005-4623

upload.exe in eFileGo 3.01 allows remote attackers to cause a denial of service CPU consumption via an argument with an invalid directory name...

SUSE SLES15 Security Update : cifs-utils (SUSE-SU-2021:1455-1)

This update for cifs-utils fixes the following security issues : CVE-2021-20208: Fixed a potential kerberos auth leak escaping from container. bsc1183239 CVE-2020-14342: Fixed a shell command injection vulnerability in mount.cifs. bsc1174477 This update for cifs-utils fixes the following issues :...

CVE-2009-0615

Directory traversal vulnerability in Cisco Application Networking Manager ANM before 2.0 and Application Control Engine ACE Device Manager before A32.1 allows remote authenticated users to read or modify arbitrary files via unspecified vectors, related to "invalid directory permissions."...

Directory traversal

Directory traversal vulnerability in Cisco Application Networking Manager ANM before 2.0 and Application Control Engine ACE Device Manager before A32.1 allows remote authenticated users to read or modify arbitrary files via unspecified vectors, related to "invalid directory permissions."...

CVE-2009-0615

CVE-2009-0615 concerns directory traversal in Cisco ANM before 2.0 and ACE Device Manager before A3(2.1). Exploitation by an authenticated remote user could read/modify arbitrary files, potentially exposing host OS data due to invalid directory permissions. Related CVEs cover additional ANM flaws...

CVE-2005-4623

CVE-2005-4623 affects eFileGo 3.01 where upload.exe can be driven to a denial of service (CPU consumption) by supplying an invalid directory name. The vulnerability is described across multiple sources as enabling remote DoS via a crafted argument. No explicit exploitation details, affected versi...

January 21, 2021-KB4598296 (OS Build 17763.1728) Preview

January 21, 2021-KB4598296 OS Build 17763.1728 Preview Release Date: 1/21/2021 Version: OS Build17763.1728 Important:12/8/20 Adobe Flash Player went out of support on December 31, 2020. For more information, see Adobe Flash end of support on December 31, 2020. Adobe started blocking Flash content...