Lucene search
K

202 matches found

OSV
OSV
added 2025/08/18 8:28 a.m.5 views

BIT-GITLAB-2024-12303 Incorrect Privilege Assignment in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 17.7 before 18.0.6, 18.1 before 18.1.4, and 18.2 before 18.2.2 that under certain conditions could have allowed authenticated users with specific roles and permissions to delete issues including confidential ones by inviting...

6.7CVSS6.6AI score0.00374EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/08/12 12:0 a.m.2 views

Huawei EulerOS: Security Advisory for ppp (EulerOS-SA-2025-1997)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.5AI score0.00196EPSS
Exploits0References2
CNVD
CNVD
added 2025/08/01 12:0 a.m.2 views

DELL SmartFabric OS10 Software Privilege Issue Vulnerability

DELL SmartFabric OS10 Software is a software-defined network operating system from Dell Networks, based on Linux and open source technologies, and is primarily used to enable flexible management and automated deployment of data center network resources. DELL SmartFabric OS10 Software has a...

5.5CVSS6.8AI score0.00165EPSS
Exploits0References1
CNVD
CNVD
added 2025/07/11 12:0 a.m.4 views

Mattermost Permission Issues Vulnerability

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from not properly enforcing channel member management privileges, which can be exploited by an attacker to enable unauthorized users t...

4.3CVSS7AI score0.0021EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/20 12:0 a.m.6 views

Google ChromeOS Permission Issues Vulnerability

Google ChromeOS is a Linux kernel-based operating system developed by Google. Google ChromeOS suffers from a privilege issue vulnerability. The vulnerability stems from a privilege bypass in extension management, which can be exploited by an attacker to disable extensions on ChromeOS and access...

9.8CVSS6.2AI score0.00219EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/06/20 12:0 a.m.4 views

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from not properly enforcing channel member management privileges, which can be exploited by an attacker to enable unauthorized users t...

4.3CVSS6.8AI score0.0021EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/14 5:8 p.m.7 views

CVE-2024-7562

A potential elevated privilege issue has been reported with InstallShield built Standalone MSI setups having multiple InstallScript custom actions configured. All supported versions InstallShield 2023 R2, InstallShield 2022 R2 and InstallShield 2021 R2 are affected by this issue...

7.3CVSS6.6AI score0.00129EPSS
Exploits0References1
NVD
NVD
added 2025/06/12 4:15 p.m.11 views

CVE-2024-7562

A potential elevated privilege issue has been reported with InstallShield built Standalone MSI setups having multiple InstallScript custom actions configured. All supported versions InstallShield 2023 R2, InstallShield 2022 R2 and InstallShield 2021 R2 are affected by this issue...

7.3CVSS0.00129EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/12 4:5 p.m.4 views

CVE-2024-7562

A potential elevated privilege issue has been reported with InstallShield built Standalone MSI setups having multiple InstallScript custom actions configured. All supported versions InstallShield 2023 R2, InstallShield 2022 R2 and InstallShield 2021 R2 are affected by this issue...

7.3CVSS6.6AI score0.00129EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/11 12:0 a.m.3 views

Freescout Permission Issues Vulnerability

FreeScout is an open source helpdesk system built on the PHP Laravel framework, designed to provide users with functionality similar to Zendesk or Help Scout, but without sacrificing privacy or freedom. Freescout suffers from a privilege issue vulnerability that stems from improper checking of...

8.1CVSS7AI score0.00406EPSS
Exploits1References1
CNVD
CNVD
added 2025/06/11 12:0 a.m.5 views

Mattermost Permission Issues Vulnerability

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from insufficient privilege validation, which can be exploited by an attacker to access team invitation IDs...

5.3CVSS7AI score0.00265EPSS
Exploits0References1
NVD
NVD
added 2025/05/29 6:15 p.m.11 views

CVE-2025-46823

openmrs-module-fhir2 provides the FHIR REST API and related services for OpenMRS, an open medical records system. In versions of the FHIR2 module prior to 2.5.0, privileges were not always correctly checked, which means that unauthorized users may have been able to add or edit data they were not...

9.3CVSS0.00317EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/05/29 12:0 a.m.4 views

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from insufficient privilege validation, which can be exploited by an attacker to access team invitation IDs...

5.3CVSS6.8AI score0.00265EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:37 a.m.5 views

CVE-2024-52814

Argo Helm is a collection of community maintained charts for argoproj.github.io projects. Prior to version 0.45.0, the workflow-role lacks granularity in its privileges, giving permissions to workflowtasksets and workflowartifactgctasks to all workflow Pods, when only certain types of Pods create...

2.8CVSS6.9AI score0.00176EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:3 a.m.9 views

CVE-2023-37065

Chamilo 1.11.x up to 1.11.20 allows users with admin privilege account to insert XSS in the session category management section...

4.8CVSS6AI score0.00384EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 5:33 p.m.6 views

CVE-2020-27149

By exploiting a vulnerability in NPort IA5150A/IA5250A Series before version 1.5, a user with “Read Only” privilege level can send requests via the web console to have the device’s configuration changed...

6.5CVSS6.9AI score0.00691EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/21 7:30 p.m.5 views

CVE-2005-0580

cmd5checkpw, when running setuid, does not properly drop privileges before calling the execvp function, which allows local users to read the poppasswd file...

2.1CVSS6.5AI score0.00318EPSS
Exploits0References1
CNVD
CNVD
added 2025/05/20 12:0 a.m.4 views

Mattermost Permission Issues Vulnerability

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from insufficient privilege validation, which can be exploited by an attacker to view group information via an API request...

4.3CVSS6.4AI score0.00257EPSS
Exploits0References1
CNVD
CNVD
added 2025/05/20 12:0 a.m.4 views

Mattermost Permission Issues Vulnerability

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from insufficient privilege validation, which can be exploited by an attacker to add guest users via the API...

4.3CVSS7AI score0.00198EPSS
Exploits0References1
OSV
OSV
added 2025/05/16 9:48 p.m.7 views

CLSA-2025-1747432102 postgresql: Fix of CVE-2024-10978

CVE-2024-10978: fix privilege assignment issue to prevent less-privileged user from viewing or changing unauthorized rows...

4.2CVSS6.7AI score0.00705EPSS
Exploits0References1
Rows per page
Query Builder