Lucene search
K

9 matches found

OSV
OSV
added 2025/12/04 9:16 p.m.5 views

CVE-2025-55948

This vulnerability fundamentally arises from yzcheng90 X-SpringBoot 6.0's implementation of role-based access control RBAC through dual dependency on frontend menu systems and backend permission tables, without enforcing atomic synchronization between these components. The critical flaw manifests...

7.3CVSS5.9AI score0.00249EPSS
Exploits1References2
OSV
OSV
added 2023/12/04 1:15 a.m.4 views

CVE-2023-42737

In telecom service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.5CVSS6AI score0.00094EPSS
Exploits0References1
OSV
OSV
added 2023/12/04 1:15 a.m.6 views

CVE-2023-42739

In engineermode service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed...

7.8CVSS5.9AI score0.00096EPSS
Exploits0References1
OSV
OSV
added 2023/12/04 1:15 a.m.3 views

CVE-2023-42712

In firewall service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.5CVSS5.9AI score0.00095EPSS
Exploits0References1
OSV
OSV
added 2023/12/04 1:15 a.m.5 views

CVE-2023-42699

In omacp service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.5CVSS5.9AI score0.00095EPSS
Exploits0References1
OSV
OSV
added 2023/12/04 1:15 a.m.4 views

CVE-2023-42673

In imsservice, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.5CVSS5.9AI score0.00095EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/04 12:0 a.m.7 views

PT-2023-28496 · Unknown · Imsservice

Name of the Vulnerable Software and Affected Versions: imsservice affected versions not specified Description: The issue in imsservice allows for writing permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional...

5.5CVSS5.2AI score0.00095EPSS
Exploits0References2
OSV
OSV
added 2023/11/01 10:15 a.m.5 views

CVE-2023-42645

In sim service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed...

5.5CVSS5.9AI score0.00084EPSS
Exploits0References1
OSV
OSV
added 2023/10/08 4:15 a.m.3 views

CVE-2023-40636

In telecom service, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with System execution privileges needed...

4.4CVSS5.9AI score0.00083EPSS
Exploits0References1
Rows per page
Query Builder