CVE-2026-20839

Improper access control in Windows Client-Side Caching CSC Service allows an authorized attacker to disclose information locally...

CVE-2022-42734

A vulnerability has been identified in syngo Dynamics All versions VA40G HF01. syngo Dynamics application server hosts a web service using an operation with improper write access control that could allow to write data in any folder accessible to the account assigned to the website’s application...

EUVD-2025-29082

Malicious code in bioql PyPI...

EUVD-2024-34468

Malicious code in bioql PyPI...

FreeBSD : Gitlab -- Vulnerabilities (d45dabd9-5232-11f0-9ca4-2cf05da270f3)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the d45dabd9-5232-11f0-9ca4-2cf05da270f3 advisory. Gitlab reports: Denial of Service impacts GitLab CE/EE Missing Authentication issue impacts...

CVE-2024-45871

Bandisoft BandiView 7.05 is Incorrect Access Control via sub0x232bd8 resulting in denial of service DOS...

CVE-2021-25337

Improper access control in clipboard service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to read or write certain local files...

CVE-2010-0535

Dovecot in Apple Mac OS X 10.6 before 10.6.3, when Kerberos is enabled, does not properly enforce the service access control list SACL for sending and receiving e-mail, which allows remote authenticated users to bypass intended access restrictions via unspecified vectors...

CVE-2010-0534

Wiki Server in Apple Mac OS X 10.6 before 10.6.3 does not enforce the service access control list SACL for weblogs during weblog creation, which allows remote authenticated users to publish content via HTTP requests...

CVE-2025-2546 D-Link DIR-618/DIR-605L Firewall Service formAdvFirewall access control

A vulnerability classified as problematic was found in D-Link DIR-618 and DIR-605L 2.02/3.02. This vulnerability affects unknown code of the file /goform/formAdvFirewall of the component Firewall Service. The manipulation leads to improper access controls. The attack needs to be approached within...

Linux Distros Unpatched Vulnerability : CVE-2022-24714

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. Installations of Icinga 2 with the IDO writer enabled are affecte...

PT-2022-21835 · Unknown · Wi-Fi Service

Name of the Vulnerable Software and Affected Versions: Wi-Fi Service versions prior to SMR AUG-2022 Release 1 Description: The issue is related to improper access control in the Wi-Fi Service, allowing untrusted applications to manipulate the list of apps that can use mobile data. Recommendations...

PT-2019-14629 · Rpyc +1 · Rpyc +1

Name of the Vulnerable Software and Affected Versions: RPyC versions 4.1.x through 4.1.1 Description: A remote attacker can dynamically modify object attributes to construct a remote procedure call that executes code for an RPyC service with default configuration settings. Recommendations: For RP...

CVE-2016-5787

General Electric GE Digital Proficy HMI/SCADA - CIMPLICITY before 8.2 SIM 27 mishandles service DACLs, which allows local users to modify a service configuration via unspecified vectors...

Design/Logic Flaw

Dovecot in Apple Mac OS X 10.6 before 10.6.3, when Kerberos is enabled, does not properly enforce the service access control list SACL for sending and receiving e-mail, which allows remote authenticated users to bypass intended access restrictions via unspecified vectors...

Code injection

Wiki Server in Apple Mac OS X 10.6 before 10.6.3 does not enforce the service access control list SACL for weblogs during weblog creation, which allows remote authenticated users to publish content via HTTP requests...

Cisco 12000 Series Routers Multiple Vulnerabilities (DoS, ACL Bypass)

string "The remote host appears to be a Cisco 12000 Series router. According\n", "to its version number, it has multiple vulnerabilities involving\n", "bypassing access control lists ACLs. A remote attacker could use\n", "these flaws to cause a denial of service, or bypass firewall rules." C...