6 matches found
CVE-2026-40196
HomeBox is a home inventory and organization system. Versions prior to 0.25.0 contain a vulnerability where the defaultGroup ID remained permanently assigned to a user after being invited to a group, even after their access to that group was revoked. While the web interface correctly enforced the...
PT-2024-22241 · Rsa · Rsa Netwitness Platform
Name of the Vulnerable Software and Affected Versions: RSA NetWitness Platform versions prior to 12.5.1 Description: The issue allows an internal threat actor to impersonate a revoked user and gain unauthorized access to sensitive data, even after an administrator has revoked the user's access...
RSA Security NetWitness Platform 安全漏洞
RSA Security NetWitness Platform is a comprehensive platform from RSA Security USA that accelerates threat detection and response. It collects and analyzes data from all capture points logs, packets, netflow, endpoints, and IoT and compute platforms physical, virtual, and cloud, enriching data wi...
Atlassian Jira 8.5.x < 8.19.1 (JRASERVER-72801)
The version of Atlassian Jira installed on the remote host is prior to 8.5.x 8.19.1. It is, therefore, affected by a vulnerability as referenced in the JRASERVER-72801 advisory. - Access-revoked user can enable/disable Issue Collectors on a Jira project - CVE-2021-41312 CVE-2021-41312 Note that...
ZTE ZXHN HS562 访问控制错误漏洞
The ZTE ZXHN HS562 is a smart camera from China's ZTE ZTE. The ZTE ZXHN HS562 V1.0.0.0B2.0000, V1.0.0.0B3.0000E suffers from an Access Control Error vulnerability, which stems from a flaw in user rights management, where a user whose shared privileges have been revoked can still control the camer...
GitLab: Revoked User can still view the Merge Request created by him via API
Summary In Gitlab when a user is demoted to Guest role, the Guest user will not be able to view and edit the Merge requests in a project even if the merge request is created by him. But this check is not implemented in API so the Guest user will be able to the following actions for the Merge...