Lucene search
K

567 matches found

UbuntuCve
UbuntuCve
added 2025/05/08 12:0 a.m.5 views

CVE-2025-46805

Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root...

5.7CVSS6.1AI score0.00167EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/05/08 12:0 a.m.3 views

CVE-2025-46804

A minor information leak when running Screen with setuid-root privileges allows unprivileged users to deduce information about a path that would otherwise not be available. Affected are older Screen versions, as well as version 5.0.0...

3.3CVSS5.8AI score0.00213EPSS
Exploits0References3
OSV
OSV
added 2025/05/08 12:0 a.m.2 views

UBUNTU-CVE-2025-46804

A minor information leak when running Screen with setuid-root privileges allows unprivileged users to deduce information about a path that would otherwise not be available. Affected are older Screen versions, as well as version 5.0.0...

3.3CVSS5.8AI score0.00213EPSS
Exploits0References4
OSV
OSV
added 2025/05/08 12:0 a.m.3 views

UBUNTU-CVE-2025-46805

Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root...

5.7CVSS5.8AI score0.00167EPSS
Exploits0References4
NVD
NVD
added 2024/09/23 4:15 p.m.42 views

CVE-2024-34331

A lack of code signature verification in Parallels Desktop for Mac v19.3.0 and below allows attackers to escalate privileges via a crafted macOS installer, because Parallels Service is setuid root...

9.8CVSS0.00997EPSS
Exploits0References2
OSV
OSV
added 2024/08/21 1:15 a.m.6 views

DEBIAN-CVE-2024-43882

In the Linux kernel, the following vulnerability has been resolved: exec: Fix ToCToU between perm check and set-uid/gid usage When opening a file for exec via dofilpopen, permission checking is done against the file's metadata at that moment, and on success, a file pointer is passed back. Much...

7CVSS6.2AI score0.00242EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2024/01/25 8:5 a.m.2 views

NTFS-3G: buffer overflow issue in NTFS-3G can cause code execution via crafted metadata in an NTFS image

A buffer overflow flaw was found in NTFS-3G. This issue occurs via a crafted metadata in an NTFS image that can cause code execution. A local attacker can exploit this issue if the NTFS-3G binary is setuid root. A physically proximate attacker can exploit this issue if the NTFS-3G software is...

7.8CVSS7.6AI score0.00347EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/10/30 8:57 a.m.2 views

NTFS-3G: buffer overflow issue in NTFS-3G can cause code execution via crafted metadata in an NTFS image

A buffer overflow flaw was found in NTFS-3G. This issue occurs via a crafted metadata in an NTFS image that can cause code execution. A local attacker can exploit this issue if the NTFS-3G binary is setuid root. A physically proximate attacker can exploit this issue if the NTFS-3G software is...

7.8CVSS7.6AI score0.00347EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/09/28 7:2 p.m.5 views

NTFS-3G: buffer overflow issue in NTFS-3G can cause code execution via crafted metadata in an NTFS image

A buffer overflow flaw was found in NTFS-3G. This issue occurs via a crafted metadata in an NTFS image that can cause code execution. A local attacker can exploit this issue if the NTFS-3G binary is setuid root. A physically proximate attacker can exploit this issue if the NTFS-3G software is...

7.8CVSS7.6AI score0.00347EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/09/19 3:13 p.m.2 views

NTFS-3G: buffer overflow issue in NTFS-3G can cause code execution via crafted metadata in an NTFS image

A buffer overflow flaw was found in NTFS-3G. This issue occurs via a crafted metadata in an NTFS image that can cause code execution. A local attacker can exploit this issue if the NTFS-3G binary is setuid root. A physically proximate attacker can exploit this issue if the NTFS-3G software is...

7.8CVSS7.6AI score0.00347EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/09/19 1:8 p.m.3 views

NTFS-3G: buffer overflow issue in NTFS-3G can cause code execution via crafted metadata in an NTFS image

A buffer overflow flaw was found in NTFS-3G. This issue occurs via a crafted metadata in an NTFS image that can cause code execution. A local attacker can exploit this issue if the NTFS-3G binary is setuid root. A physically proximate attacker can exploit this issue if the NTFS-3G software is...

7.8CVSS7.6AI score0.00347EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2023/06/18 9:52 p.m.9 views

Exploit for Generation of Error Message Containing Sensitive Information in Checkpoint Ssl_Network_Extender

CVE-2021-30357CheckPointSNXVPNPoC Proof-of-Concept for pri...

5.3CVSS7.1AI score0.22792EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/05/08 12:0 a.m.30 views

EulerOS 2.0 SP11 : lxc (EulerOS-SA-2023-1785)

According to the versions of the lxc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - lxc-user-nic in lxc through 5.0.1 is installed setuid root, and may allow local users to infer whether any file exists, even within a protected...

3.3CVSS5.5AI score0.00702EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/05/08 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for lxc (EulerOS-SA-2023-1763)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS4.4AI score0.00702EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/05/08 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for lxc (EulerOS-SA-2023-1785)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS4.4AI score0.00702EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/05/03 12:0 a.m.28 views

GLSA-202305-19 : Firejail: Local Privilege Escalation

The remote host is affected by the vulnerability described in GLSA-202305-19 Firejail: Local Privilege Escalation - A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a joi...

7.8CVSS7.4AI score0.00382EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/04/25 9:15 p.m.39 views

CVE-2023-30549

Apptainer is an open source container platform for Linux. There is an ext4 use-after-free flaw that is exploitable through versions of Apptainer 1.1.0 and installations that include apptainer-suid 1.1.8 on older operating systems where that CVE has not been patched. That includes Red Hat Enterpri...

7.8CVSS7AI score0.00369EPSS
Exploits0References8
AlpineLinux
AlpineLinux
added 2023/04/25 12:0 a.m.30 views

CVE-2023-30549

Apptainer is an open source container platform for Linux. There is an ext4 use-after-free flaw that is exploitable through versions of Apptainer 1.1.0 and installations that include apptainer-suid 1.1.8 on older operating systems where that CVE has not been patched. That includes Red Hat Enterpri...

7.8CVSS7.2AI score0.00369EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/04/13 12:0 a.m.31 views

EulerOS 2.0 SP8 : lxc (EulerOS-SA-2023-1600)

According to the versions of the lxc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - lxc-user-nic in lxc through 5.0.1 is installed setuid root, and may allow local users to infer whether any file exists, even within a protected...

3.3CVSS5.5AI score0.00702EPSS
Exploits0References2
0day.today
0day.today
added 2023/04/02 12:0 a.m.218 views

Enlightenment v0.25.3 - Privilege escalation Vulnerability

Exploit Title: Enlightenment v0.25.3 - Privilege escalation Author: nu11secur1ty Vendor: https://www.enlightenment.org/ Software: https://www.enlightenment.org/download Reference: https://github.com/nu11secur1ty/CVE-mitre/tree/main/CVE-2022-37706 CVE ID: CVE-2022-37706 Description: The...

7.8CVSS7.6AI score0.05486EPSS
Exploits15
Rows per page
Query Builder