25 matches found
EUVD-2020-8240
Malware in sbrugna...
EUVD-2020-8243
Malware in sbrugna...
EUVD-2020-8242
Malware in sbrugna...
EUVD-2020-8241
Malware in sbrugna...
CVE-2020-16282
In the default configuration of Rangee GmbH RangeeOS 8.0.4, all components are executed in the context of the privileged root user. This may allow a local attacker to break out of the restricted environment or inject malicious code into the application and fully compromise the operating system...
CVE-2020-16281
The Kommbox component in Rangee GmbH RangeeOS 8.0.4 could allow a local authenticated attacker to escape from the restricted environment and execute arbitrary code due to unrestricted context menus being accessible...
CVE-2020-16279
The Kommbox component in Rangee GmbH RangeeOS 8.0.4 is vulnerable to Remote Code Execution due to untrusted user supplied input being passed to the command line without sanitization...
RangeeOS Restricted Environment Escape Vulnerability
RangeeOS is a Linux operating system designed and developed specifically for thin clients, including all necessary software modules. A restricted context escape vulnerability exists in the Kommbox component in RangeeOS 8.0.4. The vulnerability stems from having access to the unrestricted context...
RangeeOS Credentials Plaintext Storage Vulnerability
RangeeOS is a Linux operating system designed and developed specifically for thin clients, including all necessary software modules. A credentials plaintext storage vulnerability exists in multiple modules in RangeeOS 8.0.4. A local attacker with access to the underlying operating system could...
RangeeOS OS Command Injection Vulnerability
RangeeOS is a Linux operating system designed and developed specifically for thin clients, including all necessary software modules. An OS command injection vulnerability exists in the Kommbox component in RangeeOS 8.0.4. The vulnerability stems from the failure to validate untrustworthy input...
CVE-2020-16282
In the default configuration of Rangee GmbH RangeeOS 8.0.4, all components are executed in the context of the privileged root user. This may allow a local attacker to break out of the restricted environment or inject malicious code into the application and fully compromise the operating system...
CVE-2020-16279
The Kommbox component in Rangee GmbH RangeeOS 8.0.4 is vulnerable to Remote Code Execution due to untrusted user supplied input being passed to the command line without sanitization...
CVE-2020-16282
In the default configuration of Rangee GmbH RangeeOS 8.0.4, all components are executed in the context of the privileged root user. This may allow a local attacker to break out of the restricted environment or inject malicious code into the application and fully compromise the operating system...
CVE-2020-16280
Multiple Rangee GmbH RangeeOS 8.0.4 modules store credentials in plaintext including credentials of users for several external facing administrative services, domain joined users, and local administrators. To exploit the vulnerability a local attacker must have access to the underlying operating...
CVE-2020-16281
The Kommbox component in Rangee GmbH RangeeOS 8.0.4 could allow a local authenticated attacker to escape from the restricted environment and execute arbitrary code due to unrestricted context menus being accessible...
CVE-2020-16281
The Kommbox component in Rangee GmbH RangeeOS 8.0.4 could allow a local authenticated attacker to escape from the restricted environment and execute arbitrary code due to unrestricted context menus being accessible...
Design/Logic Flaw
The Kommbox component in Rangee GmbH RangeeOS 8.0.4 could allow a local authenticated attacker to escape from the restricted environment and execute arbitrary code due to unrestricted context menus being accessible...
Remote code execution
The Kommbox component in Rangee GmbH RangeeOS 8.0.4 is vulnerable to Remote Code Execution due to untrusted user supplied input being passed to the command line without sanitization...
Default configuration
In the default configuration of Rangee GmbH RangeeOS 8.0.4, all components are executed in the context of the privileged root user. This may allow a local attacker to break out of the restricted environment or inject malicious code into the application and fully compromise the operating system...
CVE-2020-16282
RangeeOS 8.0.4 (Rangee GmbH) in its default configuration runs all components under the privileged root user, potentially allowing a local attacker to escape the restricted environment and fully compromise the operating system. The CVE entry notes this as a local action with root-level context, e...