Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-17081

Malware in sbrugna...

4.3CVSS4.9AI score0.00806EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-23739

Malware in sbrugna...

8.8CVSS8.6AI score0.00422EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-54082

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00276EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-0333

Malicious code in bioql PyPI...

6.3CVSS6.4AI score0.00647EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2023-44232

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00297EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/09 6:16 p.m.11 views

CVE-2025-20323

In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7, and 9.1.10, a low-privileged user that does not hold the "admin" or "power" Splunk roles could turn off the scheduled search Bucket Copy Trigger within the Splunk Archiver application. This is because of missing access controls in the saved...

4.3CVSS6.4AI score0.0025EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/25 12:53 a.m.8 views

CVE-2025-52969

ClickHouse 25.7.1.557 allows low-privileged users to execute shell commands by querying existing Executable tables created by higher-privileged users. Although the CREATE TABLE privilege is restricted, there is no access control preventing low-privileged users from invoking Executable tables...

2.8CVSS8.2AI score
Exploits1References1
CVE
CVE
added 2025/06/23 12:0 a.m.41 views

CVE-2025-52969

CVE-2025-52969 is described in connected Red Hat and other sources as affecting ClickHouse 25.7.1.557, where low-privileged users can execute shell commands by querying existing Executable() tables created by higher-privileged users. The vulnerability stems from missing access control that preven...

4.9AI score
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 10:14 a.m.8 views

CVE-2024-3505

JFrog Artifactory Self-Hosted versions below 7.77.3, are vulnerable to sensitive information disclosure whereby a low-privileged authenticated user can read the proxy configuration. This does not affect JFrog cloud deployments...

4.3CVSS6.1AI score0.00413EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:29 a.m.4 views

CVE-2024-42371

The RFC enabled function module allows a low privileged user to delete the workplace favourites of any user. This vulnerability could be utilized to identify usernames and access information about targeted user's workplaces and nodes. There is low impact on integrity and availability of the...

5.4CVSS6.5AI score0.00284EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:38 a.m.8 views

CVE-2023-28870

Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow attackers to write to configuration files from low-privileged user accounts...

6.5CVSS6.9AI score0.00701EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:16 a.m.9 views

CVE-2023-42231

Pat Infinite Solutions HelpdeskAdvanced = 11.0.33 is vulnerable to Incorrect Access Control. Low privileged users can delete admin users by sending a request to the "WSCView/Delete" function...

8.1CVSS6.8AI score0.00316EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:56 p.m.9 views

CVE-2022-32256

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.1. The affected application consists of a web service that lacks proper access control for some of the endpoints. This could lead to low privileged users accessing privileged information...

6.5CVSS6.6AI score0.00631EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/04/01 12:0 a.m.14 views

Splunk Enterprise 9.1.0 < 9.1.8, 9.2.0 < 9.2.5, 9.3.0 < 9.3.3 (SVD-2025-0301)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2025-0301 advisory. - In Splunk Enterprise versions below 9.3.3, 9.2.5, and 9.1.8, and Splunk Cloud Platform versions below 9.3.2408.104,...

8CVSS8.9AI score0.13987EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/02/12 12:0 a.m.9 views

PT-2025-7052 · Glpi +1 · Glpi +1

Name of the Vulnerable Software and Affected Versions: GLPI versions prior to 10.0.18 Description: A low-privileged user can enable debug mode and access sensitive information. The estimated number of potentially affected devices is not provided. There is no information about real-world incidents...

9.8CVSS4.3AI score0.86182EPSS
Exploits9References77
RedhatCVE
RedhatCVE
added 2025/02/05 3:6 p.m.8 views

CVE-2020-9046

A vulnerability in all versions of Kantech EntraPass Editions could potentially allow an authorized low-privileged user to gain full system-level privileges by replacing critical files with specifically crafted files...

8.8CVSS7AI score0.00299EPSS
Exploits0References1
Prion
Prion
added 2023/10/20 6:15 a.m.22 views

Design/Logic Flaw

SECUDOS Qiata DOMOS OS 4.13 has Insecure Permissions for the previewRm.sh daily cronjob. To exploit this, an attacker needs access as a low-privileged user to the underlying DOMOS system. Every user on the system has write permission for previewRm.sh, which is executed by the root user...

4.3CVSS7.6AI score0.00275EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder