HP Card Readers B Model 安全漏洞

HP Card Readers B Model is a card reader device from Hewlett-Packard HP. A security vulnerability exists in the HP Card Readers B Model that originates from the possibility of inheriting a previous user's identity under certain conditions, which could lead to information disclosure...

kernel: drm/i915/ttm: don't leak the ccs state

In the Linux kernel, the following vulnerability has been resolved: drm/i915/ttm: don't leak the ccs state The kernel only manages the ccs state with lmem-only objects, however the kernel should still take care not to leak the CCS state from the previous user. cherry picked from commit...

CVE-2022-22656

An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.6.5, macOS Monterey 12.3, Security Update 2022-003 Catalina. A local attacker may be able to view the previous logged in user’s desktop from the fast user switching screen...

PT-2022-15604 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.6.5 macOS Monterey versions prior to 12.3 macOS Catalina versions prior to Security Update 2022-003 Description: An authentication issue was addressed with improved state management, allowing a local attacker to...

Logic Flaw Vulnerability in UPS Management Module of Xiamen Kehua Hengsheng Co.

Xiamen Kewa Hengsheng Co., Ltd. is a leading global provider of ICT information and communication infrastructure and intelligent terminals. A logic flaw vulnerability exists in the UPS management module of Xiamen Kehua Hengsheng Co. Ltd. that can be exploited by an attacker to bypass authenticati...

CVE-2019-4048

IBM Maximo Asset Management 7.6 could allow a physical user of the system to obtain sensitive information from a previous user of the same machine. IBM X-Force ID: 156311...

IBM Maximo Asset Management Information Disclosure Vulnerability (CNVD-2019-44945)

IBM Maximo Asset Management is a comprehensive asset lifecycle and maintenance management solution from IBM USA. The solution is capable of managing all types of assets, such as facilities, transportation, etc., on a single platform with a single point of control for these assets. An information...

PT-2019-16862 · Ibm · Ibm Maximo Asset Management

Name of the Vulnerable Software and Affected Versions: IBM Maximo Asset Management version 7.6 Description: The issue allows a physical user of the system to obtain sensitive information from a previous user of the same machine. Recommendations: For IBM Maximo Asset Management version 7.6, at the...

Google Android Information Disclosure Vulnerability (CNVD-2017-04563)

Android is a cell phone operating system based on the Linux open kernel. Android has an information disclosure vulnerability during the factory settings restoration process that can be exploited by an attacker to access the previous user's data...

JBoss: CallerIdentityLoginModule retaining password from previous call if a null password is provided

The CallerIdentityLoginModule in JBoss Enterprise Application Platform EAP before 5.2.0, Web Platform EWP before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 allows remote attackers to gain privileges of the previous user via a null password, which causes the previous user's...

JBoss: SecurityAssociation.getCredential() will return the previous credential if no security context is provided

The SecurityAssociation.getCredential method in JBoss Enterprise Application Platform EAP before 5.2.0, Web Platform EWP before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 returns the credentials of the previous user when a security context is not provided, which allows remot...

PT-2006-1576 · Blackboard · Blackboard Academic Suite

Name of the Vulnerable Software and Affected Versions: Blackboard Academic Suite versions 6.0 and earlier Description: The issue arises when the software does not properly clear session information after a user has been idle and then de-authenticates. This allows subsequent users to log in as the...