55 matches found
CVE-2025-34288
Nagios XI versions prior to 2026R1.1 are vulnerable to local privilege escalation due to an unsafe interaction between sudo permissions and application file permissions. A user‑accessible maintenance script may be executed as root via sudo and includes an application file that is writable by a...
EUVD-2005-3626
Malware in sbrugna...
EUVD-2018-12482
Malware in sbrugna...
EUVD-2011-5174
Malware in sbrugna...
EUVD-2018-12629
Malware in sbrugna...
EUVD-2022-52588
Malicious code in bioql PyPI...
EUVD-2022-42933
Malicious code in bioql PyPI...
CVE-2022-30759
In Nokia One-NDS aka Network Directory Server through 20.9, some Sudo permissions can be exploited by some users to escalate to root privileges and execute arbitrary commands...
CVE-2011-5275
The install script in Domain Technologie Control DTC before 0.34.1 gives sudo permissions for chrootuid to the dtc user, which makes it easier for context-dependent users to gain privileges...
Fail2Ban 0.11.2 Privilege Escalation / Command Execution
If a user can execute fail2ban-client with sudo, they can achieve local privilege escalation and command injection via user-modified actions. Author: Raed Ahsan Date: 24/03/2025 Fail2Ban-client privilege-escalation """ Fail2Ban Automated Exploit Script - CVE Candidate...
PocketBook InkPad Color 3 安全漏洞
PocketBook InkPad Color 3 is a waterproof e-reader with a color display from PocketBook. It is used for reading eBooks, playing audiobooks, and more. A security vulnerability exists in the PocketBook InkPad Color 3 U743k version 3.6.8.3671, which stems from a misconfiguration of Sudo permissions...
Security update for cloud-regionsrv-client
This update for cloud-regionsrv-client contains the following fixes: Update to 10.3.11 bsc1234050 Send registration code for the extensions, not only base product Update to 10.3.9: bsc1234050 Send registration code for the extensions, not only base product Update to 10.3.8: bsc1233333 Fix the...
Granular sudo Permissions for Installing Veeam Plug-ins for Enterprise Applications using Protection Groups
Challenge This article provides an example granular 'sudoer' configuration for the Linux account that will be used by Veeam Backup & Replication when installing Veeam Plug-Ins for Enterprise Applications using a Protection Group, specifically for Veeam Plug-in for Oracle RMAN and Veeam Plug-in fo...
Granular sudo Permissions for Management of Veeam Agent for IBM AIX
Purpose This article provides examples of granular 'sudo' configuration for the Linux account that will be used by Veeam Backup & Replication when managing Veeam Agent for IBM AIX deployments with a Protection Group. Solution The following granular sudo permissions were tested with Veeam Agent fo...
CVE-2023-46295
An issue was discovered in Teledyne FLIR M300 2.00-19. Unauthenticated remote code execution can occur in the web server. An attacker can exploit this by sending a POST request to the vulnerable PHP page. An attacker can elevate to root permissions with Sudo...
Granular sudo Permissions Required for Management of Linux-base Tape Server
Purpose This article provides an example of a granular 'sudo' configuration for the Linux account that Veeam Backup & Replication will use when managing a Linux-based Tape Server. Solution The Linux user account used by Veeam Backup & Replication to connect to the Linux-based Tape Server use the...
CVE-2023-32696 Excessive permissions for ckan user
CKAN is an open-source data management system for powering data hubs and data portals. Prior to versions 2.9.9 and 2.10.1, the ckan user equivalent to www-data owned code and configuration files in the docker container and the ckan user had the permissions to use sudo. These issues allowed for co...
CVE-2022-30759
In Nokia One-NDS aka Network Directory Server through 20.9, some Sudo permissions can be exploited by some users to escalate to root privileges and execute arbitrary commands...
Command injection
In Nokia One-NDS aka Network Directory Server through 20.9, some Sudo permissions can be exploited by some users to escalate to root privileges and execute arbitrary commands...
PT-2023-13019 · Nokia · Nokia Onends
Name of the Vulnerable Software and Affected Versions: Nokia One-NDS aka Network Directory Server versions through 20.9 Description: The issue allows some users to exploit certain Sudo permissions, potentially escalating to root privileges and executing arbitrary commands. Recommendations: For...