Lucene search
K

46 matches found

ATTACKERKB
ATTACKERKB
added 2026/07/07 9:12 a.m.6 views

CVE-2026-14476

A path traversal flaw was found in SSSD's AD GPO provider. The adgpoextractsmbcomponents function does not sanitize .. sequences in the gPCFileSysPath LDAP attribute, allowing an attacker with AD GPO management access to write files outside the GPO cache directory as root. On default RHEL...

8CVSS5.9AI score0.00501EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/07/07 9:12 a.m.4 views

CVE-2026-14476

A path traversal flaw was found in SSSD's AD GPO provider. The adgpoextractsmbcomponents function does not sanitize .. sequences in the gPCFileSysPath LDAP attribute, allowing an attacker with AD GPO management access to write files outside the GPO cache directory as root. On default RHEL...

8CVSS5.9AI score0.00501EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/07/07 12:0 a.m.8 views

PT-2026-56172

Name of the Vulnerable Software and Affected Versions SSSD affected versions not specified Description A path traversal flaw exists in the AD GPO provider of SSSD. The ad gpo extract smb components function fails to sanitize .. sequences within the gPCFileSysPath LDAP attribute. This allows an...

8CVSS5.9AI score0.00501EPSS
Exploits0References8
EUVD
EUVD
added 2026/06/20 1:37 p.m.11 views

EUVD-2022-56008

WooCommerce 7.1.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary PHP code by injecting shell commands through the product-type parameter. Attackers can send requests to the class-wc-meta-box-product-images.php endpoint with unsanitized product-type value...

9.8CVSS6.8AI score0.00629EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/20 1:37 p.m.5 views

CVE-2022-50972

WooCommerce 7.1.0 contains a remote code execution vulnerability that allows attackers to execute arbitrary PHP code by injecting shell commands through the product-type parameter. Attackers can send requests to the class-wc-meta-box-product-images.php endpoint with unsanitized product-type value...

9.8CVSS6.8AI score0.00629EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.66 views

PT-2026-45987

Name of the Vulnerable Software and Affected Versions Cisco Unified Communications Manager versions prior to 14SU6 Cisco Unified Communications Manager versions prior to 15SU5 Cisco Unified Communications Manager Session Management Edition affected versions not specified Description An...

8.6CVSS7.7AI score0.41694EPSS
Exploits3References180
OSV
OSV
added 2026/05/21 1:6 a.m.14 views

MAL-2026-4510 Malicious code in cerebrum-core (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e0ac38481a69f23f9170b098fcd48cd72b82edb969bdd44eb3aa5cc377a13a0d On npm install, the package's postinstall hook runs setup.js, which decodes an embedded base64 string into a tar.gz file at ../../../tempbundle.tar.g...

5.9AI score
Exploits0References1
OSV
OSV
added 2026/05/04 8:57 p.m.3 views

GHSA-WPPJ-C6MR-83JJ OpenClaw: OpenShell FS bridge writes stay pinned to the sandbox mount root

Summary OpenShell FS bridge writes stay pinned to the sandbox mount root Affected Packages / Versions - Package: openclaw npm - Affected versions: = 2026.4.21 - Fixed version: 2026.4.22 Impact A time-of-check/time-of-use race around OpenShell sandbox filesystem writes could let a symlink swap...

6CVSS5.8AI score0.02442EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.20 views

Seeyon OA A8 代码问题漏洞

Seeyon OA A8 is a collaborative office management system developed by the Chinese company Seeyon. There is a code vulnerability in Seeyon OA A8. This vulnerability stems from an unauthenticated file writing operation at the /seeyon/htmlofficeservlet endpoint. This could allow a remote attacker to...

9.3CVSS6.2AI score0.00653EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2026/04/21 12:0 a.m.67 views

VulnCheck KEV: CVE-2019-25714

Seeyon OA A8 contains an unauthenticated arbitrary file write vulnerability in the /seeyon/htmlofficeservlet endpoint that allows remote attackers to write arbitrary files to the web application root by sending specially crafted POST requests with custom base64-encoded payloads. Attackers can wri...

9.3CVSS6.2AI score0.00653EPSS
In wildExploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/04/06 12:0 a.m.6 views

VulnCheck KEV: CVE-2021-4473

Tianxin Internet Behavior Management System contains a command injection vulnerability in the Reporter component endpoint that allows unauthenticated attackers to execute arbitrary commands by supplying a crafted objClass parameter containing shell metacharacters and output redirection. Attackers...

9.8CVSS6.7AI score0.06165EPSS
In wildExploits1References3
CVE
CVE
added 2026/03/25 5:11 a.m.15 views

CVE-2026-33253

SANUPS SOFTWARE (SANYO DENKI CO., LTD.) exposes a Windows service registration with an unquoted executable path. According to the description, a user with write access to the system drive root can trigger arbitrary code execution with SYSTEM privileges via a local privilege escalation. The connec...

8.4CVSS6.2AI score0.00191EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/25 5:11 a.m.2 views

CVE-2026-33253

SANUPS SOFTWARE provided by SANYO DENKI CO., LTD. registers Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS7AI score0.00191EPSS
Exploits0References4Affected Software2
AstraLinux
AstraLinux
added 2026/03/03 9:29 a.m.4 views

Astra Linux – Vulnerability in cups

OpenPrinting CUPS is an open-source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user belonging to the lpadmin group could use the cups web interface to modify configurations and insert malicious lines. As a result, the cupsd process, running as root...

6.7CVSS6.3AI score0.00409EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/02/12 9:58 p.m.3 views

CVE-2026-26224 Intego Log Reporter TOCTOU Local Privilege Escalation

Intego Log Reporter, a macOS diagnostic utility bundled with Intego security products that collects system and application logs for support analysis, contains a local privilege escalation vulnerability. A root-executed diagnostic script creates and writes files in /tmp without enforcing secure...

8.5CVSS5.7AI score0.0011EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/09 12:0 a.m.9 views

PT-2026-7075

Products provided by Oki Electric Industry Co., Ltd. and its OEM products Ricoh Co., Ltd., Murata Machinery, Ltd. register Windows services with unquoted file paths. A user with the write permission on the root directory of the system drive may execute arbitrary code with SYSTEM privilege...

8.4CVSS6AI score0.00137EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.12 views

PT-2026-1822

Name of the Vulnerable Software and Affected Versions Veeam Backup & Recovery versions prior to 13.0 Description The issue allows a Backup or Tape Operator to write files as root, leading to potential privilege escalation. Multiple reports indicate this is a critical security concern...

9CVSS6.8AI score0.00608EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: cups (UTSA-2025-993328)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993328 advisory. OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the...

6.7CVSS5.4AI score0.00409EPSS
Exploits1References4
CVE
CVE
added 2025/12/09 8:29 a.m.10 views

CVE-2025-66271

CVE-2025-66271 affects ELECOM Clone for Windows, where the software registers a Windows service with an unquoted file path (unquoted service path). The root cause is an unquoted path in the service configuration, enabling a local attacker with write access to the system drive root to execute arbi...

8.4CVSS7.4AI score0.00135EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/01 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-61915

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can us...

6.7CVSS6.1AI score0.00409EPSS
Exploits1References3
Rows per page
Query Builder