59 matches found
EUVD-2002-1865
Malware in sbrugna...
EUVD-2016-1962
Malware in sbrugna...
EUVD-2021-21114
Malware in sbrugna...
EUVD-2019-8659
Malware in sbrugna...
EUVD-2005-3049
Malware in sbrugna...
EUVD-2016-1974
Malware in sbrugna...
EUVD-2018-13844
Malware in sbrugna...
EUVD-2007-5889
Malware in sbrugna...
CVE-2025-47930 Zulip Server has access control bypass for restrictions on creation of specific channel types
Zulip is an open-source team chat application. Starting in version 10.0 and prior to version 10.3, the "Who can create public channels" access control mechanism can be circumvented by creating a private or web-public channel, and then changing the channel privacy to public. A similar technique...
Linux Distros Unpatched Vulnerability : CVE-2018-10545
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in PHP before 5.6.35, 7.0.x before 7.0.29, 7.1.x before 7.1.16, and 7.2.x before 7.2.4. Dumpable FPM child processes allow bypassing...
PT-2025-5280 · Apple · Apple Macos +1
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.3 macOS versions prior to 14.7.3 macOS versions prior to 15.3 iPadOS versions prior to 17.7.4 Description: The issue is related to insufficient access control in macOS and iPadOS, allowing a remote attacker to...
BIT-MINIO-2022-35919 Authenticated requests for server update admin API allows path traversal in minio
MinIO is a High Performance Object Storage released under GNU Affero General Public License v3.0. In affected versions all 'admin' users authorized for admin:ServerUpdate can selectively trigger an error that in response, returns the content of the path requested. Any normal OS system would allow...
CVE-2023-28895 Hard-coded password for access to power controller chip memory
The password for access to the debugging console of the PoWer Controller chip PWC of the MIB3 infotainment is hard-coded in the firmware. The console allows attackers with physical access to the MIB3 unit to gain full control over the PWC chip. Vulnerability found on Škoda Superb III 3V3 - 2.0 TD...
The vulnerability of SiPass integrated software for security and access control systems arises from operations that go beyond the buffer in memory, allowing attackers to cause system failures.
The vulnerability of SiPass integrated software for security and access control systems is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...
CVE-2023-23561
Stormshield Endpoint Security 2.3.0 through 2.3.2 has Incorrect Access Control: authenticated users can read sensitive information...
PT-2022-15445 · Ibm · Ibm Security Verify Governance
Name of the Vulnerable Software and Affected Versions: IBM Security Verify Governance, Identity Manager version 10.0.1 Description: The issue allows a local privileged user to read sensitive information, including user credentials, stored in plain clear text. Recommendations: For IBM Security...
CVE-2020-13421
OpenIAM before 4.2.0.3 has Incorrect Access Control for the Create User, Modify User Permissions, and Password Reset actions...
Information disclosure
DBHcms v1.2.0 has a sensitive information leaks vulnerability as there is no security access control in /dbhcms/ext/news/ext.news.be.php, A remote unauthenticated attacker can exploit this vulnerability to get path information...
CVE-2020-19878
DBHcms v1.2.0 has a sensitive information leaks vulnerability as there is no security access control in /dbhcms/ext/news/ext.news.be.php, A remote unauthenticated attacker can exploit this vulnerability to get path information...
CVE-2020-19878
CVE-2020-19878 affects DBHcms v1.2.0. The vulnerability is an information-disclosure due to missing security access control in the path /dbhcms/ext/news/ext.news.be.php, allowing a remote unauthenticated attacker to obtain path information. Connected sources corroborate the description across NVD...