CVE-2024-8540

Insecure permissions in Ivanti Sentry before versions 9.20.2 and 10.0.2 or 10.1.0 allow a local authenticated attacker to modify sensitive application components...

CVE-2024-8540

Insecure permissions in Ivanti Sentry before versions 9.20.2 and 10.0.2 or 10.1.0 allow a local authenticated attacker to modify sensitive application components...

CVE-2024-8540

CVE-2024-8540 affects Ivanti Sentry. Insecure permissions in Ivanti Sentry before versions 9.20.2 and before 10.0.2 or 10.1.0 allow a local authenticated attacker to modify sensitive application components. Patches are available: Sentry 9.20.2, 10.0.2, and 10.1.0. This entry is supported by multi...

CVE-2024-8540

Insecure permissions in Ivanti Sentry before versions 9.20.2 and 10.0.2 or 10.1.0 allow a local authenticated attacker to modify sensitive application components...

CVE-2024-8540

Insecure permissions in Ivanti Sentry before versions 9.20.2 and 10.0.2 or 10.1.0 allow a local authenticated attacker to modify sensitive application components...

PT-2024-39081 · Ivanti · Ivanti Sentry

Name of the Vulnerable Software and Affected Versions: Ivanti Sentry versions prior to 9.20.2 Ivanti Sentry versions prior to 10.0.2 Ivanti Sentry versions prior to 10.1.0 Description: The issue allows a local authenticated attacker to modify sensitive application components due to insecure...

Information disclosure

An information disclosure in Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 allows attackers to access sensitive router components...

CVE-2023-43261

An information disclosure in Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 allows attackers to access sensitive router components...

CVE-2023-43261

An information disclosure in Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 allows attackers to access sensitive router components...

Xiaomi Content Center 安全漏洞

Xiaomi Content Center Xiaomi Content Center is a content center of Xiaomi China, Inc. An incorrect permission configuration vulnerability exists in Xiaomi Content Center APP, which is caused by the lack of proper permission validation in Xiaomi Content Center APP, and can be exploited by attacker...

EVGA Precision XOC has an unspecified vulnerability

EVGA Precision XOC is EVGA's This software allows you to fine-tune your NVIDIA graphics card to maximize cooling and performance. A security vulnerability exists in EVGA Precision XOC, which can be exploited by attackers to access sensitive components and data...

CVE-2020-22057

The WinRin0x64.sys and WinRing0.sys low-level drivers in EVGA Precision XOC version v6.2.7 were discovered to be configured with the default security descriptor which allows attackers to access sensitive components and data...

EVGA Precision XOC 安全漏洞

EVGA Precision XOC is EVGA's This software allows you to fine-tune your NVIDIA graphics card to maximize cooling and performance. A security vulnerability exists in EVGA Precision XOC, which can be exploited by attackers to access sensitive components and data...

PT-2021-23540 · Unknown · Topease Platform

Name of the Vulnerable Software and Affected Versions: TopEase Platform versions prior to 7.1.28 Description: The issue allows an authenticated remote attacker to bypass access controls and view sensitive components, such as the Shape Editor and Settings, which are intended for higher-privileged...

YzmCMS Cross-site Request Forgery Vulnerability (CNVD-2021-90912)

YzmCMS is a lightweight open source content management system based on PHP Mysql architecture developed solely by Yuan Zhimeng. A cross-site request forgery vulnerability exists in /controller/pay.class.php in YzmCMS version 5.5. An attacker can use this vulnerability to access sensitive componen...

CVE-2020-19951

A cross-site request forgery CSRF in /controller/pay.class.php of YzmCMS v5.5 allows attackers to access sensitive components of the application...

YzmCMS v5.5/controller/pay.class.php组件 跨站请求伪造漏洞

YzmCMS is a lightweight open source content management system based on PHP Mysql architecture developed solely by Yuan Zhimeng. A cross-site request forgery vulnerability exists in /controller/pay.class.php in YzmCMS version 5.5. An attacker can use this vulnerability to access sensitive componen...

Google Android Information Disclosure Vulnerability (CNVD-2019-28878)

Android is a Linux-based open source operating system from Google and the Open Handheld Alliance OHA. System in Android suffers from an information disclosure vulnerability that stems from errors such as configuration during operation of a networked system or product. An attacker could exploit th...