Lucene search
K

60 matches found

Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.24 views

EulerOS Virtualization 3.0.2.6 : cifs-utils (EulerOS-SA-2021-1409)

According to the version of the cifs-utils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject...

7CVSS6.3AI score0.00652EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/03/04 12:0 a.m.30 views

EulerOS Virtualization for ARM 64 3.0.6.0 : cifs-utils (EulerOS-SA-2021-1546)

According to the version of the cifs-utils package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used ...

7CVSS6.3AI score0.00652EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/01/05 12:0 a.m.21 views

EulerOS Virtualization for ARM 64 3.0.2.0 : cifs-utils (EulerOS-SA-2021-1054)

According to the version of the cifs-utils package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used ...

7CVSS6.3AI score0.00652EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/10/09 12:0 a.m.25 views

EulerOS 2.0 SP9 : cifs-utils (EulerOS-SA-2020-2174)

According to the version of the cifs-utils package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary...

7CVSS6.4AI score0.00652EPSS
Exploits1References2
Veracode
Veracode
added 2020/09/21 6:27 a.m.33 views

Privilege Escalation

cifs-utils:devel is vulnerable to privilege escalation. It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could...

7CVSS4.2AI score0.00652EPSS
Exploits1References8Affected Software5
Microsoft CVE
Microsoft CVE
added 2020/09/17 7:0 a.m.5 views

It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission such as via sudo rules could use this flaw to escalate their privileges.

...

7CVSS7AI score0.00652EPSS
Exploits1
NVD
NVD
added 2020/09/09 12:15 p.m.17 views

CVE-2020-14342

It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges...

7CVSS0.00652EPSS
Exploits1References6
OSV
OSV
added 2020/09/09 12:15 p.m.2 views

DEBIAN-CVE-2020-14342

It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges...

7CVSS6.2AI score0.00652EPSS
Exploits1References1
OSV
OSV
added 2020/09/09 12:15 p.m.3 views

ALPINE-CVE-2020-14342

It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges...

7CVSS7.2AI score0.00652EPSS
Exploits1References1
OSV
OSV
added 2020/09/09 12:15 p.m.31 views

CVE-2020-14342

It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges...

7CVSS4.2AI score0.00652EPSS
Exploits1References6
Prion
Prion
added 2020/09/09 12:15 p.m.18 views

Design/Logic Flaw

It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges...

4.4CVSS6.8AI score0.00652EPSS
Exploits1References6Affected Software3
Cvelist
Cvelist
added 2020/09/09 11:13 a.m.26 views

CVE-2020-14342

It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges...

4.4CVSS7AI score0.00652EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2020/09/09 12:0 a.m.31 views

CVE-2020-14342

It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission, such as via sudo rules, could use this flaw to escalate their privileges...

7CVSS6.7AI score0.00652EPSS
Exploits1References4
0daydb
0daydb
added 2020/06/03 3:51 p.m.123 views

QuickBox Pro 2.1.8 CVE-2020-13448 - Remote Code Execution

CVE-2020-13448 QuickBox Pro versions 2.1.8 and below suffer from an authenticated remote code execution vulnerability. Exploit Title: QuickBox Pro 2.1.8 - Authenticated Remote Code Execution Date: 2020-05-26 Exploit Author: s1gh Vendor Homepage: https://quickbox.io/ Vulnerability Details:...

9CVSS1AI score0.90384EPSS
Exploits36
Packet Storm
Packet Storm
added 2020/06/02 12:0 a.m.331 views

QuickBox Pro 2.1.8 Remote Code Execution

Exploit Title: QuickBox Pro 2.1.8 - Authenticated Remote Code Execution Date: 2020-05-26 Exploit Author: s1gh Vendor Homepage: https://quickbox.io/ Vulnerability Details: https://s1gh.sh/cve-2020-13448-quickbox-authenticated-rce/ Version: = 2.1.8 Description: An authenticated low-privileged user...

8.8AI score0.17772EPSS
Exploits7
0day.today
0day.today
added 2020/06/01 12:0 a.m.110 views

QuickBox Pro 2.1.8 - Authenticated Remote Code Execution Exploit

Exploit for php platform in category web applications Exploit Title: QuickBox Pro 2.1.8 - Authenticated Remote Code Execution Exploit Author: s1gh Vendor Homepage: https://quickbox.io/ Vulnerability Details: https://s1gh.sh/cve-2020-13448-quickbox-authenticated-rce/ Version: = 2.1.8 Description: ...

9CVSS8.6AI score0.17772EPSS
Exploits7
Exploit DB
Exploit DB
added 2020/06/01 12:0 a.m.252 views

QuickBox Pro 2.1.8 - Authenticated Remote Code Execution

Exploit Title: QuickBox Pro 2.1.8 - Authenticated Remote Code Execution Date: 2020-05-26 Exploit Author: s1gh Vendor Homepage: https://quickbox.io/ Vulnerability Details: https://s1gh.sh/cve-2020-13448-quickbox-authenticated-rce/ Version: = 2.1.8 Description: An authenticated low-privileged user...

9CVSS8.7AI score0.17772EPSS
Exploits7
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for sssd (EulerOS-SA-2019-1193)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01519EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for sssd (EulerOS-SA-2019-1411)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.3AI score0.01519EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2019/08/13 12:0 a.m.41 views

sssd security, bug fix, and enhancement update

1.16.4-21 - Resolves: rhbz1714952 - sssd RHEL 7.7 Tier 0 Localization - Rebuild japanese gmo file explicitly 1.16.4-20 - Resolves: rhbz1714952 - sssd RHEL 7.7 Tier 0 Localization 1.16.4-19 - Resolves: rhbz1707959 - sssd does not properly check GSS-SPNEGO 1.16.4-18 - Resolves: rhbz1710286 - The...

5.5CVSS0.1AI score0.01122EPSS
Exploits0
Rows per page
Query Builder