CVE-2026-6282

A potential improper file path validation vulnerability was reported in some Lenovo Personal Cloud Storage devices that could allow a remote authenticated user to move or access files belonging to other users on the same device...

CVE-2025-36364

IBM DevOps Plan 3.0.0 through 3.0.5 allows web page cache to be stored locally which can be read by another user on the system...

PT-2026-22799

IBM DevOps Plan 3.0.0 through 3.0.5 allows web page cache to be stored locally which can be read by another user on the system...

Devolutions Remote Desktop Manager 安全漏洞

Devolutions Remote Desktop Manager is an application system developed by the Canadian company Devolutions. It provides remote desktop management capabilities. The Devolutions Remote Desktop Manager versions prior to 2025.3.30 contained a security vulnerability. This vulnerability stemmed from...

CVE-2025-41116

When using the Grafana Databricks Datasource Plugin, if Oauth passthrough is enabled on the datasource, and multiple users are using the same datasource at the same time on a single Grafana instance, it could result in the wrong user identifier being used, and information for which the viewer is...

CVE-2025-41116

CVE-2025-41116 affects Grafana Databricks Datasource Plugin. When Oauth passthrough is enabled and multiple users share a single Grafana instance/datasource, the wrong user identifier can be used, potentially returning data the viewer is not authorized to see. Affected versions: 1.6.0 up to, but ...

CVE-2023-21450

CVE-2023-21450 concerns Samsung’s One Hand Operation+ prior to version 6.1.21, where a missing authorization flaw allows multiple users to access the owner’s widget via gesture settings. Public detail: affected software is One Hand Operation+; vulnerable component/behavior is the missing authoriz...

CVE-2017-1756

IBM Business Process Manager 8.6 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 135856...