Lucene search
K

33 matches found

OSV
OSV
added 2022/09/09 12:15 a.m.2 views

CVE-2022-40297

UBports Ubuntu Touch 16.04 allows the screen-unlock passcode to be used for a privileged shell via Sudo. This passcode is only four digits, far below typical length/complexity for a user account's password. NOTE: a third party states "The described attack cannot be executed as demonstrated...

7.8CVSS5.7AI score0.00454EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2022/09/08 11:38 p.m.15 views

CVE-2022-40297

UBports Ubuntu Touch 16.04 allows the screen-unlock passcode to be used for a privileged shell via Sudo. This passcode is only four digits, far below typical length/complexity for a user account's password. NOTE: a third party states "The described attack cannot be executed as demonstrated...

7AI score0.00454EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2022/09/08 12:0 a.m.6 views

PT-2022-25333 · Ubports · Ubports Ubuntu Touch

Name of the Vulnerable Software and Affected Versions: UBports Ubuntu Touch version 16.04 Description: The issue allows the screen-unlock passcode to be used for a privileged shell via Sudo. This passcode is only four digits, which is far below the typical length and complexity for a user account...

7.8CVSS6.5AI score0.00454EPSS
Exploits2References7
OSV
OSV
added 2022/02/02 11:15 a.m.6 views

CVE-2021-41016

A improper neutralization of special elements used in a command 'command injection' in Fortinet FortiExtender version 7.0.1 and below, 4.2.3 and below, 4.1.7 and below allows an authenticated attacker to execute privileged shell commands via CLI commands including special characters...

8.8CVSS5.9AI score0.01055EPSS
Exploits0References1
NVD
NVD
added 2022/02/02 11:15 a.m.51 views

CVE-2021-41016

A improper neutralization of special elements used in a command 'command injection' in Fortinet FortiExtender version 7.0.1 and below, 4.2.3 and below, 4.1.7 and below allows an authenticated attacker to execute privileged shell commands via CLI commands including special characters...

9CVSS0.01055EPSS
Exploits0References1
Prion
Prion
added 2022/02/02 11:15 a.m.15 views

Command injection

A improper neutralization of special elements used in a command 'command injection' in Fortinet FortiExtender version 7.0.1 and below, 4.2.3 and below, 4.1.7 and below allows an authenticated attacker to execute privileged shell commands via CLI commands including special characters...

9CVSS8.7AI score0.01055EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/02/02 10:58 a.m.7 views

CVE-2021-41016

A improper neutralization of special elements used in a command 'command injection' in Fortinet FortiExtender version 7.0.1 and below, 4.2.3 and below, 4.1.7 and below allows an authenticated attacker to execute privileged shell commands via CLI commands including special characters...

7.8CVSS7.2AI score0.01055EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/08/17 12:0 a.m.5 views

Motorola MM1000 操作系统命令注入漏洞

The Motorola MM1000 is a network adapter from Motorola USA. A security vulnerability exists in the Motorola MM1000 that could allow privileged shell access and/or arbitrary privileged command execution on the adapter...

7.2CVSS7AI score0.00294EPSS
Exploits0References1
NVD
NVD
added 2021/07/12 1:15 p.m.14 views

CVE-2021-26089

An improper symlink following in FortiClient for Mac 6.4.3 and below may allow an non-privileged user to execute arbitrary privileged shell commands during installation phase...

7.8CVSS0.00426EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2021/07/12 12:48 p.m.10 views

CVE-2021-26089

An improper symlink following in FortiClient for Mac 6.4.3 and below may allow an non-privileged user to execute arbitrary privileged shell commands during installation phase...

6.7CVSS7.7AI score0.00426EPSS
Exploits0References2
exploitpack
exploitpack
added 2015/10/28 12:0 a.m.16 views

Samsung - seiren Kernel Driver Buffer Overflow

Samsung - seiren Kernel Driver Buffer Overflow Source: https://code.google.com/p/google-security-research/issues/detail?id=491 The Exynos Seiren Audio driver has a device endpoint /dev/seiren that is accessible by either the system user or the audio group such as the mediaserver. It was found tha...

1.1AI score
Exploits0
NVD
NVD
added 1999/12/31 5:0 a.m.20 views

CVE-1999-1585

The 1 rcS and 2 mountall programs in Sun Solaris 2.x, possibly before 2.4, start a privileged shell on the system console if fsck fails while the system is booting, which allows attackers with physical access to gain root privileges...

7.2CVSS6.5AI score0.00357EPSS
Exploits0References1
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.37 views

tcpwrapper-backdoor.txt

Date: Thu, 21 Jan 1999 11:38:17 -0500 From: Wietse Venema To: [email protected] Subject: backdoored tcp wrapper source code TCP Wrappers is a widely-used security tool to protect UNIX systems against intrusion. In has an estimated installed base of millions. Today someone replaced the tcp...

7.4AI score
Exploits0
Rows per page
Query Builder