10 matches found
tigervnc bug fix update
An update is available for tigervnc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Virtual Network Computing VNC is a remote display system which allows users ...
CVE-2024-22026
A local privilege escalation vulnerability in EPMM before 12.1.0.0 allows an authenticated local user to bypass shell restriction and execute arbitrary commands on the appliance...
CVE-2024-22026
A local privilege escalation vulnerability in EPMM before 12.1.0.0 allows an authenticated local user to bypass shell restriction and execute arbitrary commands on the appliance...
CVE-2024-22026
A local privilege escalation vulnerability in EPMM before 12.1.0.0 allows an authenticated local user to bypass shell restriction and execute arbitrary commands on the appliance...
CVE-2024-22026
CVE-2024-22026 is a local privilege-escalation flaw in Ivanti EPMM (MobileIron Core) prior to 12.1.0.0. The root cause is inadequate validation in the software-update CLI, which can fetch an unverified RPM from a remote URL and execute it with root privileges, enabling arbitrary code execution. A...
[SECURITY] [DLA 1650-1] rssh security update
Package : rssh Version : 2.3.4-4+deb8u1 CVE ID : CVE-2019-1000018 Debian Bug : 919623 The ESnet security team discovered a vulnerability in rssh, a restricted shell that allows users to perform only scp, sftp, cvs, svnserve Subversion, rdist and/or rsync operations. Missing validation in the scp...
IBM Security Access Manager for Web Encryption Protection Mechanism Compromise Vulnerability
IBM Security Access Manager ISAM for Web formerly known as IBM Tivoli Access Manager for e-business is a suite of IBM products for user authentication, authorization, and Web single sign-on solutions that provide user access management and Web application protection Functions. A security...
AIX OpenSSH Vulnerability : openssh_advisory3.asc
The mmnewkeysfromblob function in monitorwrap.c in sshd in OpenSSH 6.2 and 6.3, when an AES-GCM cipher is used, does not properly initialize memory for a MAC context data structure, which allows remote authenticated users to bypass intended ForceCommand and login-shell restrictions via packet dat...
CVE-2003-0452
Buffer overflows in osh before 1.7-11 allow local users to execute arbitrary code and bypass shell restrictions via 1 long environment variables or 2 long "file redirections."...
CVE-2003-0452
The CVE-2003-0452 issue affects the Operator Shell (OSH) up to version 1.7-11. A buffer overflow in OSH can be triggered by long environment variables or lengthy file redirections, enabling a local attacker to execute arbitrary code and bypass the shell’s restrictions. Public sources (including D...