7 matches found
CVE-2026-60114
SIP 5.x (up to 5.2.16) contains a path traversal flaw in the Backup/Restore function. Unvalidated keys in the JSON backup enable attackers with restore access to craft file paths and write JSON files outside the data directory. The issue is worse when the optional passphrase is not enabled (facto...
CVE-2023-6573
HPE OneView may have a missing passphrase during restore...
CVE-2023-6573
HPE OneView may have a missing passphrase during restore...
CVE-2023-6573
HPE OneView may have a missing passphrase during restore...
CVE-2023-6573
HPE OneView may have a missing passphrase during restore...
CVE-2023-6573
Summary: CVE-2023-6573 affects Hewlett Packard Enterprise OneView due to a missing passphrase during the restore process. The NVD entry assigns a CVSSv3.1 base score of 5.5 (Medium) with Local attack vector, Low attack complexity, no privileges required, and user interaction needed; confidentiali...
SUSE CVE-2011-1835
The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps...