Lucene search
K

6 matches found

NVD
NVD
added 2026/05/04 10:16 p.m.32 views

CVE-2026-7791

Improper privilege management in the log rotation mechanism of the Skylight Workspace Config Service in Amazon WorkSpaces for Windows before 2.6.2034.0 allows a local non-admin authenticated user to place arbitrary files into arbitrary locations bypassing file system permission protections, leadi...

8.5CVSS0.00122EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/04 10:7 p.m.56 views

CVE-2026-7791

Improper privilege management in the log rotation mechanism of the Skylight Workspace Config Service in Amazon WorkSpaces for Windows before 2.6.2034.0 allows a local non-admin authenticated user to place arbitrary files into arbitrary locations bypassing file system permission protections, leadi...

8.5CVSS0.00122EPSS
Exploits0References1
NVD
NVD
added 2026/02/26 2:16 a.m.8 views

CVE-2026-22728

Bitnami Sealed Secrets is vulnerable to a scope-widening attack during the secret rotation /v1/rotate flow. The rotation handler derives the sealing scope for the newly encrypted output from untrusted spec.template.metadata.annotations present in the input SealedSecret. By submitting a victim...

4.9CVSS0.00352EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/26 12:0 a.m.5 views

PT-2026-22072

Name of the Vulnerable Software and Affected Versions Bitnami Sealed Secrets affected versions not specified Description Bitnami Sealed Secrets is susceptible to a scope-widening attack during the secret rotation process via the /v1/rotate API endpoint. The rotation handler uses untrusted data fr...

9.9CVSS6.9AI score0.22162EPSS
Exploits69References140
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-27479

Malicious code in bioql PyPI...

7.2CVSS6.6AI score0.00246EPSS
Exploits0References1
OSV
OSV
added 2024/07/09 12:15 p.m.7 views

CVE-2024-39876

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. Affected applications do not properly handle log rotation. This could allow an unauthenticated remote attacker to cause a denial of service condition through resource exhaustion on the device...

4CVSS5.8AI score0.00206EPSS
Exploits0References1
Rows per page
Query Builder