10 matches found
EUVD-2026-13496
Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, the ComposerControllermentions endpoint reveals hidden group membership to any authenticated user who can message the group. By supplying allowednames referencing a hidden-membership grou...
EUVD-2023-44408
Malicious code in bioql PyPI...
EUVD-2021-28255
Malicious code in bioql PyPI...
Drop Files WEM agent fails to install with the error "software installation prevented by policy"
WEM agent fails to install with the error "software installation prevented by policy"...
FreeBSD : minio -- policy restriction issue (f4b15f7d-d33a-4cd0-a97b-709d6af0e43e)
minio developers report : Looks like policy restriction was not working properly for normal users when they are not svc or STS accounts. - svc accounts are now properly fixed to get right permissions when its inherited, so we do not have to set 'owner = true' - sts accounts have always been using...
CVE-2021-41137
Minio is a Kubernetes native application for cloud storage. All users on release RELEASE.2021-10-10T16-53-30Z are affected by a vulnerability that involves bypassing policy restrictions on regular users. Normally, checkKeyValid should return owner true for rootCreds. In the affected version, poli...
minio -- policy restriction issue
minio developers report: Looks like policy restriction was not working properly for normal users when they are not svc or STS accounts. svc accounts are now properly fixed to get right permissions when its inherited, so we do not have to set 'owner = true' sts accounts have always been using righ...
CyberArk PSMP 10.9.1 - Policy Restriction Bypass Vulnerability
Exploit Title: CyberArk PSMP 10.9.1 - Policy Restriction Bypass Exploit Author: LAHBAL Said Vendor Homepage: https://www.cyberark.com/ Software Link: https://www.cyberark.com/ Version: PSMP = 11.1 Prerequisites Policy allows us to overwrite PSMRemoteMachine Description An issue was discovered in...
Citrix Workspace app for Mac unable to see USB device
A USB Joystick has been tested successfully from a windows client. USB device pass through is configured on a Citrix policy via Studio, but USB device options on mac receiver client show "Policy Restricted" in the "Virtual Channel" column. Customer tried updating the local policy by editing the...
CVE-2005-3134
CVE-2005-3134 affects Citrix Metaframe Presentation Server 3.0 and 4.0. The issue allows remote attackers to bypass policy restrictions by downloading the launch.ica file and changing the ClientName, enabling partial impacts to confidentiality, integrity, and availability as per the CVSSv2 vector...