6 matches found
CVE-2021-32025
An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform versions 6.4.0 to 7.0, QNX Momentics all 6.3.x versions, QNX OS for Safety versions 1.0.0 to 1.0.2, QNX OS for Safety versions 2.0.0 to 2.0.1, QNX for Medical versions 1.0....
Privilege escalation
An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform versions 6.4.0 to 7.0, QNX Momentics all 6.3.x versions, QNX OS for Safety versions 1.0.0 to 1.0.2, QNX OS for Safety versions 2.0.0 to 2.0.1, QNX for Medical versions 1.0....
CVE-2021-32025
CVE-2021-32025 is an elevation of privilege vulnerability in the QNX Neutrino Kernel affecting multiple QNX platforms (Software Development Platform 6.4.0–7.0, Momentics 6.3.x, OS for Safety 1.0.0–1.0.2 and 2.0.0–2.0.1, OS for Medical 1.0.0–1.1.1, and OS for Medical 2.0.0). An unprivileged attack...
QSSL Voyager 2.0 1B Arbitrary File Access
No description provided by source. source: http://www.securityfocus.com/bid/1648/info The web server supplied with the QNX Voyager demo disk contains several vulnerabilities. First, Voyager will follow relative paths passed to it in requests. This includes ../ style paths, which will allow Voyage...
QNX Real-Time Operating System (RTOS) Detection
Binary data 5641.prm...
CVE-2002-2040
The 1 phrafx and 2 phgrafx-startup programs in QNX realtime operating system RTOS 4.25 and 6.1.0 do not properly drop privileges before executing the system command, which allows local users to execute arbitrary commands by modifying the PATH environment variable to reference a malicious crttrap...