Improper Authentication

Salt aka SaltStack is vulnerable to Improper Authentication. The vulnerability is due to a lack of authentication during routine execution, allowing authenticated users with certain privileges to bypass restrictions by nesting restricted routines within other routines...

CVE-2023-38003

CVE-2023-38003 – IBM Db2 privilege escalation : A user with DATAACCESS privileges could execute routines they should not access in Db2 for Linux/UNIX/Windows (Db2 Connect Server) 10.5, 11.1, 11.5. The IBM X-Force advisory reports a base score of 7.2 (HIGH) with network attack vector and high impa...

PT-2023-7700 · Ibm · Ibm Db2

Name of the Vulnerable Software and Affected Versions: IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server versions 10.5, 11.1, and 11.5 Description: The issue is related to insufficient access control in the IBM DB2 database management system. Exploitation of this issue could allow a...

CVE-2013-4435

Salt (SaltStack) CVE-2013-4435 affects versions 0.15.0–0.17.0 where remote authenticated users with external authentication or client ACLs can embed a routine inside another to execute restricted routines. The vulnerability stems from insufficient access control/argument handling in multiple modu...