EUVD-2026-13496

Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, the ComposerControllermentions endpoint reveals hidden group membership to any authenticated user who can message the group. By supplying allowednames referencing a hidden-membership grou...

EUVD-2021-28255

Malicious code in bioql PyPI...

EUVD-2023-44408

Malicious code in bioql PyPI...

CVE-2022-20420

In getBackgroundRestrictionExemptionReason of AppRestrictionController.java, there is a possible way to bypass device policy restrictions due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not need...

Drop Files WEM agent fails to install with the error "software installation prevented by policy"

WEM agent fails to install with the error "software installation prevented by policy"...

Design/Logic Flaw

In getAvailabilityStatus of WifiScanningMainSwitchPreferenceController.java, there is a possible way to bypass a device policy restriction due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not...

CVE-2023-21248

In getAvailabilityStatus of WifiScanningMainSwitchPreferenceController.java, there is a possible way to bypass a device policy restriction due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not...

PT-2023-18034 · Unknown · Wifiscanningmainswitchpreferencecontroller.Java

Name of the Vulnerable Software and Affected Versions: WifiScanningMainSwitchPreferenceController.java affected versions not specified Description: The issue is related to a missing permission check in the getAvailabilityStatus function of WifiScanningMainSwitchPreferenceController.java. This cou...

ASB-A-277333781

Bulletin has no description...

Code injection

AWS Cloud Development Kit AWS CDK is an open-source software development framework to define cloud infrastructure in code and provision it through AWS CloudFormation. In the packages aws-cdk-lib 2.0.0 until 2.80.0 and @aws-cdk/aws-eks 1.57.0 until 1.202.0, eks.Cluster and eks.FargateCluster...

WEM deletes registry set by a GPO

Administrator restricted some application execution say PowerShell, Command Prompt through Group Policy which sets following registry and WEM delets it. HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowRun...

FreeBSD : minio -- policy restriction issue (f4b15f7d-d33a-4cd0-a97b-709d6af0e43e)

minio developers report : Looks like policy restriction was not working properly for normal users when they are not svc or STS accounts. - svc accounts are now properly fixed to get right permissions when its inherited, so we do not have to set 'owner = true' - sts accounts have always been using...

CVE-2021-41137

Minio is a Kubernetes native application for cloud storage. All users on release RELEASE.2021-10-10T16-53-30Z are affected by a vulnerability that involves bypassing policy restrictions on regular users. Normally, checkKeyValid should return owner true for rootCreds. In the affected version, poli...

minio -- policy restriction issue

minio developers report: Looks like policy restriction was not working properly for normal users when they are not svc or STS accounts. svc accounts are now properly fixed to get right permissions when its inherited, so we do not have to set 'owner = true' sts accounts have always been using righ...

CyberArk PSMP 10.9.1 - Policy Restriction Bypass

CyberArk PSMP 10.9.1 - Policy Restriction Bypass Exploit Title: CyberArk PSMP 10.9.1 - Policy Restriction Bypass Google Dork: NA Date: 2020-02-25 Exploit Author: LAHBAL Said Vendor Homepage: https://www.cyberark.com/ Software Link: https://www.cyberark.com/ Version: PSMP = 11.1 Prerequisites Poli...

CyberArk PSMP 10.9.1 - Policy Restriction Bypass Vulnerability

Exploit Title: CyberArk PSMP 10.9.1 - Policy Restriction Bypass Exploit Author: LAHBAL Said Vendor Homepage: https://www.cyberark.com/ Software Link: https://www.cyberark.com/ Version: PSMP = 11.1 Prerequisites Policy allows us to overwrite PSMRemoteMachine Description An issue was discovered in...

CyberArk PSMP 10.9.1 - Policy Restriction Bypass

Exploit Title: CyberArk PSMP 10.9.1 - Policy Restriction Bypass Google Dork: NA Date: 2020-02-25 Exploit Author: LAHBAL Said Vendor Homepage: https://www.cyberark.com/ Software Link: https://www.cyberark.com/ Version: PSMP = 11.1 Prerequisites Policy allows us to overwrite PSMRemoteMachine...

Citrix Workspace app for Mac unable to see USB device

A USB Joystick has been tested successfully from a windows client. USB device pass through is configured on a Citrix policy via Studio, but USB device options on mac receiver client show "Policy Restricted" in the "Virtual Channel" column. Customer tried updating the local policy by editing the...

CVE-2005-3134

CVE-2005-3134 affects Citrix Metaframe Presentation Server 3.0 and 4.0. The issue allows remote attackers to bypass policy restrictions by downloading the launch.ica file and changing the ClientName, enabling partial impacts to confidentiality, integrity, and availability as per the CVSSv2 vector...