CVE-2025-66513 Nextcloud Tables app share information not limited to relevant users

Nextcloud Tables allows you to create your own tables with individual columns. Prior to 0.8.9, 0.9.6, and 1.0.1, the information which table numeric ID is shared with which groups or users and the respective permissions was not limited to privileged users. This vulnerability is fixed in 0.8.9,...

PT-2025-36972

Name of the Vulnerable Software and Affected Versions: NVIDIA NVDebug tool affected versions not specified Description: The NVIDIA NVDebug tool contains an issue that may allow an attacker to execute code on the platform host as a non-privileged user. A successful exploit may lead to code...

CVE-2025-55741

UnoPim is an open-source Product Information Management PIM system built on the Laravel framework. In versions 0.3.0 and earlier, users without the Delete privilege for products are unable to delete individual products via the standard endpoint, as expected. However, these users can bypass intend...

PT-2023-14632 · Unknown · Livebox Collaboration Vdesk

Name of the Vulnerable Software and Affected Versions: LIVEBOX Collaboration vDesk versions through v018 Description: An issue exists due to Broken Access Control under the "/api/v1/vdesk DOMAIN/export" endpoint. A malicious user, authenticated to the product without any specific privilege, can u...

SUSE CVE-2016-10124

An issue was discovered in Linux Containers LXC before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the container...

SUSE CVE-2017-1000199

tcmu-runner version 0.91 up to 1.20 is vulnerable to information disclosure in handlerqcow.so resulting in non-privileged users being able to check for existence of any file with root privileges...

CVE-2021-36286

Dell SupportAssist Client Consumer versions 3.9.13.0 and any versions prior to 3.9.13.0 contain an arbitrary file deletion vulnerability that can be exploited by using the Windows feature of NTFS called Symbolic links. Symbolic links can be created by anynon-privileged user under some object...

Arbitrary file deletion

Dell SupportAssist Client Consumer versions 3.9.13.0 and any versions prior to 3.9.13.0 contain an arbitrary file deletion vulnerability that can be exploited by using the Windows feature of NTFS called Symbolic links. Symbolic links can be created by anynon-privileged user under some object...

Oracle Database Server CVE-2020-2569 Local Security Vulnerability

Description Oracle Database Server is prone to a local security vulnerability that exists in Oracle Applications DBA. The vulnerability can be exploited over the 'Local Logon' protocol. For an exploit to succeed, the attacker must have 'Local Logon' privilege. This vulnerability affects the...

Oracle Financial Services Analytical Applications Infrastructure Remote Security Vulnerability

Description Oracle Financial Services Analytical Applications Infrastructure is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Object Migration' component is affected. This vulnerability affects the following supported versions: 8.0.4...

Oracle Identity Manager CVE-2020-2729 Remote Security Vulnerability

Description Oracle Identity Manager is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Advanced Console' component is affected. This vulnerability affects the following supported versions: 11.1.2.3.0, 12.2.1.3.0 Technologies Affected...

Oracle Siebel CRM CVE-2020-2559 Remote Security Vulnerability

Description Oracle Siebel CRM is prone to a remote security vulnerability. This vulnerability affects the 'UIF Open UI' component and can be exploited over the 'HTTP' protocol. This vulnerability affects the following supported versions: 19.7 and prior Technologies Affected Oracle Siebel UI...

Oracle Hospitality Suites Management CVE-2020-2697 Local Security Vulnerability

Description Oracle Hospitality Suites Management is prone to a local security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Request Tracker' package is affected. This vulnerability affects the following supported versions: 3.7, 3.8 Technologies Affected Oracle...

Oracle FLEXCUBE Universal Banking cpujan2020 Multiple Security Vulnerabilities

Description Oracle FLEXCUBE Universal Banking is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Infrastructure' component is affected. These vulnerabilities affect the following supported versions: 12.0.1 through 12.4.0, 14.0.0...

Oracle PeopleSoft Enterprise HCM Human Resources CVE-2020-2561 Remote Security Vulnerability

Description Oracle PeopleSoft Enterprise HCM Human Resources is prone to a remote security vulnerability. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Company Dir / Org Chart Viewer' component is affected. These vulnerabilities affect the following supported versions: 9.2...

Oracle Java SE/Java SE Embedded CVE-2020-2601 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over 'Kerberos' protocol. This issue affects the 'Security' component. This vulnerability affects the following supported versions: Java SE: 7u241, 8u231, 11.0.5, 13.0....

Microsoft Windows Search Indexer CVE-2020-0626 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...

Oracle Enterprise Manager for Oracle Database cpujan2020 Multiple Remote Security Vulnerabilities

Description Oracle Enterprise Manager for Oracle Database is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over HTTP protocol. The 'Change Manager - web based', 'Discovery Framework', 'Enterprise Config Management', and 'Target Management' components ar...

Oracle Hyperion Financial Close Management CVE-2020-2563 Remote Security Vulnerability

Description Oracle Hyperion Financial Close Management is prone to a remote security vulnerability in 'Close Manager' component. The vulnerability can be exploited over the 'HTTP' protocol. This vulnerability affects the following supported versions: 11.1.2.4 Technologies Affected Oracle Hyperion...

Oracle Solaris cpujan2020 Multiple Local Security Vulnerabilities

Description Oracle Solaris is prone to multiple local security vulnerabilities. These vulnerabilities affect the following supported versions: 11 Technologies Affected Oracle Solaris 11 Recommendations Permit local access for trusted individuals only. Where possible, use restricted environments a...