7 matches found
Exposure Of Information Through Directory Listing
@saltcorn/server is vulnerable to Exposure of Information Through Directory Listing. The vulnerability is due to missing validations of the builddirname parameter. This allows an attacker with admin permission to view files and directories on the filesystem...
CVE-2023-42676
In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...
CVE-2023-33916
In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges...
CVE-2023-38437
In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges...
CVE-2023-33917
In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges...
CVE-2022-47332
In wlan driver, there is a possible missing permission check. This could lead to local information disclosure...
Secomea GateManager Insufficient Privilege Vulnerability
Secomea GateManager is a remote access server product from the Danish company Secomea. security vulnerability exists in versions prior to Secomea GateManager 9.7, which stems from improper handling of permissions in Secomea GateManager's Web UI, and could be exploited to allow logged-in users to...