Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-1999-1553

Malware in sbrugna...

2.1CVSS6AI score0.00556EPSS
Exploits1References19
OSV
OSV
added 2025/08/11 1:53 p.m.5 views

BIT-LIBPHP-2020-7063 Files added to tar with Phar::buildFromIterator have all-access permissions

In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when creating PHAR archive using PharData::buildFromIterator function, the files are added with default permissions 0666, or all access even if the original files on the filesystem were with more restrictive permissions...

5.5CVSS7.2AI score0.01599EPSS
Exploits1References9
RustSec
RustSec
added 2025/03/12 12:0 p.m.7 views

World Writable Directory in /var/log/below Allows Local Privilege Escalation

Below is a tool for recording and displaying system data like hardware utilization and cgroup information on Linux. Symlink Attack in /var/log/below/errorroot.log Below's systemd service runs with full root privileges. It attempts to create a world-writable directory in /var/log/below. Even if th...

6.8CVSS7.3AI score0.0036EPSS
Exploits22Affected Software1
OSV
OSV
added 2024/03/15 11:44 p.m.5 views

CVE-2024-28862 ROTP 6.2.2 and 6.2.1 has 0666 permissions for the .rb files.

The Ruby One Time Password library ROTP is an open source library for generating and validating one time passwords. Affected versions had overly permissive default permissions. Users should patch to version 6.3.0. Users unable to patch may correct file permissions after installation...

5.3CVSS7AI score0.00176EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:32 a.m.3 views

SUSE CVE-2014-0185

sapi/fpm/fpm/fpmunix.c in the FastCGI Process Manager FPM in PHP before 5.4.28 and 5.5.x before 5.5.12 uses 0666 permissions for the UNIX socket, which allows local users to gain privileges via a crafted FastCGI client...

7.2CVSS7.1AI score0.00505EPSS
Exploits1References5
OSV
OSV
added 2020/02/27 9:15 p.m.3 views

UBUNTU-CVE-2020-7063

In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when creating PHAR archive using PharData::buildFromIterator function, the files are added with default permissions 0666, or all access even if the original files on the filesystem were with more restrictive permissions...

5.5CVSS6.8AI score0.01599EPSS
Exploits1References4
OSV
OSV
added 2017/09/13 5:29 p.m.5 views

CVE-2017-14427

D-Link DIR-850L REV. A with firmware through FW114WWb07h2abbeta1 and REV. B with firmware through FW208WWb02 devices have 0666 /var/run/storageaccountroot permissions...

7.8CVSS5.8AI score0.0034EPSS
Exploits1References1
OSV
OSV
added 2017/09/13 5:29 p.m.6 views

CVE-2017-14425

D-Link DIR-850L REV. A with firmware through FW114WWb07h2abbeta1 and REV. B with firmware through FW208WWb02 devices have 0666 /var/etc/hnapasswd permissions...

7.8CVSS5.8AI score0.0034EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2017/09/13 12:0 a.m.6 views

PT-2017-13469 · D Link · D-Link Dir-850L

Name of the Vulnerable Software and Affected Versions: D-Link DIR-850L REV. A versions through FW114WWb07 h2ab beta1 D-Link DIR-850L REV. B versions through FW208WWb02 Description: The issue concerns the permissions of the /var/etc/hnapasswd file, which has 0666 permissions, indicating a potentia...

7.8CVSS7.6AI score0.0034EPSS
Exploits1References2
OSV
OSV
added 2008/08/27 8:41 p.m.1 views

DEBIAN-CVE-2008-3789

Samba 3.2.0 uses weak permissions 0666 for the 1 groupmapping.tdb and 2 groupmapping.ldb files, which allows local users to modify the membership of Unix groups...

2.1CVSS8.9AI score0.00533EPSS
Exploits1References1
Rows per page
Query Builder