Lucene search
K

17 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/26 5:26 p.m.8 views

CVE-2025-33221

NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel driver, where a user could cause an incorrect permission assignment for a critical resource. A successful exploit of this vulnerability might lead to data tampering and denial of service...

4.4CVSS5.8AI score0.00175EPSS
Exploits0References4Affected Software3
Cvelist
Cvelist
added 2025/10/22 2:32 p.m.11 views

CVE-2025-60222 WordPress SUMO Memberships for WooCommerce plugin <= 7.8.0 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in FantasticPlugins SUMO Memberships for WooCommerce sumomemberships allows Privilege Escalation.This issue affects SUMO Memberships for WooCommerce: from n/a through = 7.8.0...

8.8CVSS0.00356EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/23 12:23 a.m.6 views

CVE-2025-27216

Multiple Incorrect Permission Assignment for Critical Resource in UISP Application may allow a malicious actor with certain permissions to escalate privileges...

8.8CVSS7.4AI score0.00276EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/05/28 12:0 a.m.7 views

The vulnerability of Siemens Scalance LPE9403 industrial switches’ microprogramming software lies in errors during the assignment of permissions to critical resources, allowing attackers to gain unauthorized access to protected information.

The vulnerability of Siemens Scalance LPE9403 industrial switches’ microprogramming software is related to errors in assigning permissions for critical resources. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

5.5CVSS5.5AI score0.00121EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/03/25 12:0 a.m.4 views

B&R Industrial Automation B&R APROL 安全漏洞

B&R Industrial Automation B&R APROL is a process control system from B&R Industrial Automation, Austria. A security vulnerability exists in B&R Industrial Automation B&R APROL versions prior to 4.4-01, which stems from a misassignment of critical resource permissions in the file system, and could...

8.5CVSS6.3AI score0.00126EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/06/28 12:0 a.m.4 views

PT-2024-24279 · Ibm · Ibm Mq

Name of the Vulnerable Software and Affected Versions: IBM MQ versions 9.3 LTS and 9.3 CD Description: The issue allows an authenticated user to escalate their privileges under certain configurations due to incorrect privilege assignment. Recommendations: For IBM MQ versions 9.3 LTS and 9.3 CD, a...

8.8CVSS6.5AI score0.00424EPSS
Exploits0References5
NVD
NVD
added 2024/02/17 10:15 p.m.17 views

CVE-2024-25113

Rejected reason: This CVE was misassigned. See CVE-2023-47623 for the canonical reference...

6.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/02/17 12:0 a.m.3 views

PT-2024-20755 · Undefined · Undefined

CVE-2024-25113 Rejected reason: This CVE was misassigned. See CVE-2023-47623 for the canonical reference. https://t.co/Yr9LMgXdqo...

6.1CVSS6AI score0.00424EPSS
Exploits1References2
CNVD
CNVD
added 2024/01/10 12:0 a.m.16 views

Siemens Spectrum Power 7 Critical Resource Privilege Assignment Error Vulnerability

Spectrum Power 7 provides the essential components of SCADA, communications and data modeling for control and monitoring systems. Application suites can be added to optimize network and generation management in all areas of energy management. Siemens Spectrum Power 7 suffers from a misassigned...

7.8CVSS7.3AI score0.00148EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/09/12 2:55 a.m.7 views

SUSE CVE-2023-4881

CVE-2023-4881 was wrongly assigned to a bug that was deemed to be a non-security issue by the Linux kernel security team...

6.1CVSS8.4AI score
Exploits0References32
CNNVD
CNNVD
added 2023/08/08 12:0 a.m.5 views

Siemens SICAM TOOLBOX II 安全漏洞

SICAM TOOLBOX II is an engineering solution for plants and systems of all sizes. It allows data collection, data modeling, configuration and parameterization. It is used for process information engineering of automation and central control room systems. Siemens SICAM TOOLBOX II suffers from a...

7.8CVSS6.7AI score0.00155EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/04/28 12:0 a.m.5 views

HYPR 安全漏洞

HYPR is a security application that implements passwordless security from HYPR, Inc. A security vulnerability exists in HYPR Workforce Access versions 6.12 through prior to 8.1, which stems from an issue with misassigned permissions for critical resources...

9.8CVSS8.4AI score0.00319EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:17 a.m.6 views

SUSE CVE-2005-2802

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-2872, CVE-2005-2873. Reason: this candidate's description originally combined two separate issues. Notes: All CVE users should consult CVE-2005-2872 and CVE-2005-2873 to determine the appropriate identifier for the issue...

7.2AI score
Exploits0References3
CNNVD
CNNVD
added 2022/05/26 12:0 a.m.5 views

Trend Micro Apex One 安全漏洞

Trend Micro Apex One is an endpoint protection software from Trend Micro. A security vulnerability exists in Trend Micro Apex One that originates from a misassigned privilege in the service. A local attacker could exploit the vulnerability by loading a DLL on an affected installation to achieve...

7.8CVSS7.3AI score0.00304EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.4 views

EMC PowerScale 安全漏洞

Dell EMC PowerScale OneFS is an API-powered file system. A vulnerability exists in Dell EMC PowerScale OneFS versions 8.2. - 9.2. in which critical resource permissions are incorrectly assigned. An attacker could exploit this vulnerability to gain unauthorized access to cluster-related informatio...

7.8CVSS5.7AI score0.00195EPSS
Exploits0References1
CNVD
CNVD
added 2019/03/07 12:0 a.m.4 views

Cisco Nexus 5600 and 6000 Series Switches Denial of Service Vulnerability

The Cisco Nexus 5600 and 6000 series switches are modular and fixed-port network switches designed for data centers. A denial of service vulnerability exists in the Cisco NX-OS software implementation of the Fibre Channel over Ethernet FCoE protocol for the Cisco Nexus 5600 and 6000 series...

7.4CVSS6.7AI score0.00641EPSS
Exploits0References1
CVE
CVE
added 1976/01/01 12:0 a.m.74 views

CVE-2024-25113

CVE-2024-25113 entry is rejected/not used and does not represent an active vulnerability entry.

6.2AI score
Exploits0
Rows per page
Query Builder