Lucene search
K

31 matches found

OSV
OSV
added 2021/02/15 5:15 p.m.1 views

DEBIAN-CVE-2020-35512

A use-after-free flaw was found in D-Bus Development branch = 1.13.16, dbus-1.12.x stable branch = 1.12.18, and dbus-1.10.x and older branches = 1.10.30 when a system has multiple usernames sharing the same UID. When a set of policy rules references these usernames, D-Bus may free some memory in...

7.8CVSS7.4AI score0.00331EPSS
Exploits0References1
OSV
OSV
added 2021/02/15 5:15 p.m.2 views

UBUNTU-CVE-2020-35512

A use-after-free flaw was found in D-Bus Development branch = 1.13.16, dbus-1.12.x stable branch = 1.12.18, and dbus-1.10.x and older branches = 1.10.30 when a system has multiple usernames sharing the same UID. When a set of policy rules references these usernames, D-Bus may free some memory in...

7.8CVSS7.1AI score0.00331EPSS
Exploits0References9
CNVD
CNVD
added 2019/08/12 12:0 a.m.2 views

Unspecified vulnerability in cPanel (CNVD-2019-27409)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in versions of cPanel prior to 58.0.4, which stems from the fact that the program does not proper...

8.8CVSS6.7AI score0.0114EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/08/01 3:40 p.m.33 views

CVE-2016-10843

cPanel before 11.54.0.4 allows code execution in the context of shared users via JSON-API SEC-76...

8.3AI score0.01444EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/01 12:0 a.m.2 views

cPanel Input Validation Error Vulnerability (CNVD-2019-26370)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. An input validation error vulnerability exists in versions of cPanel prior to 78.0.2. The vulnerability stems from a web-based...

4.3CVSS6.8AI score0.00633EPSS
Exploits0References1
CNVD
CNVD
added 2017/03/27 12:0 a.m.4 views

Adups Local Information Disclosure Vulnerability

Adups Fota is a professional wireless upgrade solution for IoT devices smart car, wearable, home, VR, etc. from Shanghai Guangsheng Information Technology Co. Adups suffers from a local information disclosure vulnerability. The vulnerability is caused by the AndroidManifest.xml file of the...

7.8CVSS6.3AI score0.00447EPSS
Exploits0References1
CNVD
CNVD
added 2016/01/12 12:0 a.m.6 views

ownCloud Server Information Disclosure Vulnerability (CNVD-2016-00189)

OwnCloud is a free and open source personal cloud storage solution from German company OwnCloud, which provides file management, music storage, calendaring, etc. OwnCloud Server is a server version. A security vulnerability exists in ownCloud Server that stems from a failure of the program to...

3.5CVSS6.7AI score0.0085EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2013/08/13 3:52 p.m.8 views

Microsoft Fixes ASLR/DEP Bypass Bug

Buried in the details of the Microsoft Patch Tuesday release for August is the explanation of an important change that the company made to Windows that defeats a group of exploit mitigation bypasses. The change is a small one, but it prevents dangerous attacks that previously worked on most...

1AI score
Exploits0References3
OpenVAS
OpenVAS
added 2012/06/28 12:0 a.m.84 views

openssh-server Forced Command Handling Information Disclosure Vulnerability

The authparseoptions function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorizedkeys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user accoun...

6.5CVSS5.1AI score0.03672EPSS
Exploits0References3
Prion
Prion
added 2009/05/26 3:30 p.m.21 views

Design/Logic Flaw

The PackageManagerService class in services/java/com/android/server/PackageManagerService.java in Android 1.5 through 1.5 CRB42 does not properly check developer certificates during processing of sharedUserId requests at an application's installation time, which allows remote user-assisted...

4.3CVSS7.2AI score0.0068EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 1999/01/01 12:0 a.m.3 views

PT-1999-1189 · Unix · Unix

Name of the Vulnerable Software and Affected Versions: Unix affected versions not specified Description: The issue arises when two or more Unix accounts share the same user ID UID, potentially leading to unauthorized access and privilege escalation. Recommendations: At the moment, there is no...

10CVSS6.3AI score0.01855EPSS
Exploits0References2
Rows per page
Query Builder