Lucene search
K

6 matches found

EUVD
EUVD
added 2026/06/25 4:16 p.m.5 views

EUVD-2026-39472

A flaw was found in Keycloak. A missing authorization check in the GroupResource.addChild endpoint within the Admin REST API allows an authenticated user with limited administrative privileges to reparent any existing group. When Fine-Grained Admin Permissions v2 FGAPv2 is enabled, an attacker wi...

7.7CVSS5.8AI score0.00288EPSS
Exploits0References4
OSV
OSV
added 2026/04/01 5:25 p.m.2 views

CVE-2026-34397 himmelblau: NSS fake-primary group lookup reintroduces name collision risk

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. From versions 2.0.0-alpha to before 2.3.9 and 3.0.0-alpha to before 3.1.1, there is a conditional local privilege escalation vulnerability in an edge-case naming collision. Only authenticated himmelblau users whose...

6.3CVSS6.5AI score0.00158EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-4548

Malware in sbrugna...

7.1CVSS6.1AI score0.02557EPSS
Exploits2References7
Prion
Prion
added 2023/06/01 1:15 p.m.25 views

Cross site scripting

An Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SUSE Rancher allows users in some higher-privileged groups to to inject code that is executed within another user's browser, allowing the attacker to steal sensitive information, manipulate web...

5.4CVSS8.2AI score0.00714EPSS
Exploits0References2Affected Software1
Kitploit
Kitploit
added 2018/04/25 9:38 p.m.24 views

Goddi (Go Dump Domain Info) - Dumps Active Directory Domain Information

Based on work from Scott Sutherland @nullbind, Antti Rantasaari, Eric Gruber @egru, Will Schroeder @harmj0y, and the PowerView authors. Install Use the executables in the releases section. If you want to build it yourself, make sure that your go environment is setup according to the Go setup doc...

7.5AI score
Exploits0References2
Cvelist
Cvelist
added 2000/02/04 5:0 a.m.20 views

CVE-1999-0603

In Windows NT, an inappropriate user is a member of a group, e.g. Administrator, Backup Operators, Domain Admins, Domain Guests, Power Users, Print Operators, Replicators, System Operators, etc...

6.6AI score0.01904EPSS
Exploits0References1
Rows per page
Query Builder