6 matches found
EUVD-2022-1270
Malicious code in bioql PyPI...
PT-2025-26762
Name of the Vulnerable Software and Affected Versions: NVIDIA AIStore versions prior to 2.3.0 Description: The issue is related to a vulnerability in the AIS Operator of NVIDIA AIStore, where a user can gain elevated access to the k8s cluster by using the ServiceAccount attached to the ClusterRol...
CVE-2022-24768 Improper access control allows admin privilege escalation in Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. All unpatched versions of Argo CD starting with 1.0.0 are vulnerable to an improper access control bug, allowing a malicious user to potentially escalate their privileges to admin-level. Versions starting with 0.8.0 and 0.5...
Dell PowerScale OneFS License Issue Vulnerability
Dell Technologies Dell PowerScale OneFS is an operating system from Dell Technologies, USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. An authorization issue vulnerability exists in Dell PowerScale OneFS that stems from ISI PRIV AUTH SSH RBAC privileges for a past...
Dell EMC PowerScale OneFS elevation of privilege vulnerability (CNVD-2021-13938)
Dell EMC PowerScale OneFS is an API-powered file system. An elevation of privilege vulnerability exists in Dell EMC PowerScale OneFS 8.1.0 - 9.1.0. An attacker with the ISIPRIVJOBENGINE privilege could exploit this vulnerability by using a PermissionRepair job to grant themselves the highest leve...
CVE-2020-26191
Dell EMC PowerScale OneFS versions 8.1.0 - 9.1.0 contain a privilege escalation vulnerability. A user with ISIPRIVJOBENGINE may use the PermissionRepair job to grant themselves the highest level of RBAC privileges thus being able to read arbitrary data, tamper with system software or deny service...