25 matches found
EUVD-2020-12774
Malware in sbrugna...
EUVD-2020-12775
Malware in sbrugna...
EUVD-2020-12776
Malware in sbrugna...
Unspecified Vulnerability in Palo Alto Networks Secdo
Palo Alto Networks Secdo is a security incident response solution from Palo Alto Networks, USA. An unspecified vulnerability exists in Palo Alto Networks Secdo, which arises from the program setting incorrect default permissions for folders. An attacker could exploit the vulnerability to elevate...
Palo Alto Networks Secdo Input Validation Error Vulnerability (CNVD-2020-26235)
Palo Alto Networks Secdo is a security incident response solution from Palo Alto Networks, USA. Palo Alto Networks Secdo suffers from an input validation error vulnerability that stems from Secdo executing scripts on hard-coded paths. An attacker can exploit this vulnerability to gain system...
Palo Alto Networks Secdo Input Validation Error Vulnerability
Palo Alto Networks Secdo is a security incident response solution from Palo Alto Networks, USA. An input validation error vulnerability exists in Palo Alto Networks Secdo. The vulnerability originates from a network system or product that does not properly validate incoming data. An attacker coul...
CVE-2020-1984
Secdo tries to execute a script at a hardcoded path if present, which allows a local authenticated user with 'create folders or append data' access to the root of the OS disk C:\ to gain system privileges if the path does not already exist or is writable. This issue affects all versions of Secdo...
CVE-2020-1985
Incorrect Default Permissions on C:\Programdata\Secdo\Logs folder in Secdo allows local authenticated users to overwrite system files and gain escalated privileges. This issue affects all versions Secdo for Windows...
CVE-2020-1986
Improper input validation vulnerability in Secdo allows an authenticated local user with 'create folders or append data' access to the root of the OS disk C:\ to cause a system crash on every login. This issue affects all versions Secdo for Windows...
Input validation
Improper input validation vulnerability in Secdo allows an authenticated local user with 'create folders or append data' access to the root of the OS disk C:\ to cause a system crash on every login. This issue affects all versions Secdo for Windows...
Default credentials
Incorrect Default Permissions on C:\Programdata\Secdo\Logs folder in Secdo allows local authenticated users to overwrite system files and gain escalated privileges. This issue affects all versions Secdo for Windows...
Hardcoded credentials
Secdo tries to execute a script at a hardcoded path if present, which allows a local authenticated user with 'create folders or append data' access to the root of the OS disk C:\ to gain system privileges if the path does not already exist or is writable. This issue affects all versions of Secdo...
CVE-2020-1986 Secdo: Local authenticated users can cause Windows system crash
Improper input validation vulnerability in Secdo allows an authenticated local user with 'create folders or append data' access to the root of the OS disk C:\ to cause a system crash on every login. This issue affects all versions Secdo for Windows...
CVE-2020-1984
CVE-2020-1984 affects Palo Alto Networks Secdo on Windows. Description: Secdo can try to execute a script at a hardcoded path; if present, a local authenticated user with the ability to create folders or append data at the root of C:\ can obtain system privileges when the path does not exist or i...
CVE-2020-1984 Secdo: Privilege escalation via hardcoded script path
Secdo tries to execute a script at a hardcoded path if present, which allows a local authenticated user with 'create folders or append data' access to the root of the OS disk C:\ to gain system privileges if the path does not already exist or is writable. This issue affects all versions of Secdo...
CVE-2020-1985 Secdo: Incorrect Default Permissions
Incorrect Default Permissions on C:\Programdata\Secdo\Logs folder in Secdo allows local authenticated users to overwrite system files and gain escalated privileges. This issue affects all versions Secdo for Windows...
CVE-2020-1986
CVE-2020-1986 concerns an improper input validation vulnerability in Secdo for Windows . An authenticated local user with the ability to create folders or append data can access the root of the OS disk (C:) and cause a system crash on every login. The issue affects all versions of Secdo for Windo...
CVE-2020-1985
CVE-2020-1985 refers to Secdo for Windows with an incorrect default permission on the folder C:\Programdata\Secdo\Logs. Local authenticated users could overwrite system files and escalate privileges due to overly permissive permissions. The connected Palo Alto advisory offers a workaround: modify...
Secdo: Privilege escalation via hardcoded script path
Secdo tries to execute a script at a hardcoded path if present, which allows a local authenticated user with 'create folders or append data' access to the root of the OS disk C:\ to gain system privileges if the path does not already exist or is writable. This issue affects all versions of Secdo...
Secdo: Local authenticated users can cause Windows system crash
Improper input validation vulnerability in Secdo allows an authenticated local user with 'create folders or append data' access to the root of the OS disk C:\ to cause a system crash on every login. This issue affects all versions Secdo for Windows. Work around: Exploitation of this issue can be...