4723 matches found
Privilege Escalation admin user to root user
Description "admin" user has sudo rights and can gain root access. By default sudo installation "admin" group has root rights. "admin" user created by hestia installation and this user is also in "admin" group. if the attackers access "admin" user, can gain root access. Proof of Concept...
CVE-2021-44954
In QVIS NVR DVR before 2021-12-13, an attacker can escalate privileges from a qvisdvr user to the root user by abusing a Sudo misconfiguration...
CVE-2021-44954
In QVIS NVR DVR before 2021-12-13, an attacker can escalate privileges from a qvisdvr user to the root user by abusing a Sudo misconfiguration...
Design/Logic Flaw
In QVIS NVR DVR before 2021-12-13, an attacker can escalate privileges from a qvisdvr user to the root user by abusing a Sudo misconfiguration...
CVE-2021-44954
CVE-2021-44954 affects QVIS NVR DVR prior to 2021-12-13. A sudo misconfiguration allows local privilege escalation from the qvisdvr user to root. The base score is 7.8 (HIGH) with LOCAL attack vector and no user interaction required. The provided documents do not specify a patch/version for remed...
CVE-2021-44954
In QVIS NVR DVR before 2021-12-13, an attacker can escalate privileges from a qvisdvr user to the root user by abusing a Sudo misconfiguration...
QVIS NVR Camera Management System 安全漏洞
QVIS NVR Camera Management System is a surveillance system from QVIS Corporation. A security vulnerability exists in the QVIS NVR Camera Management System. An attacker can escalate privileges from the qvisdvr user to the root user by abusing the Sudo misconfiguration...
Pamspy - Credentials Dumper For Linux Using eBPF
pamspy leverage eBPF technologies to achieve an equivalent work of 3snake. It will track a particular userland function inside the PAM Pluggable Authentication Modules library, used by many critical applications to handle authentication like: sudo sshd passwd gnome x11 and many other ... How to...
Exploit for Off-by-one Error in Sudo_Project Sudo
CVE-2021-3156 Visualization, Fuzzing, Exploit and Patch...
Exploit for Off-by-one Error in Sudo_Project Sudo
CVE-2021-3156 Visualization, Fuzzing, Exploit and Patch...
CVE-2022-2104
The www-data Apache web server account is configured to run sudo with no password for many commands including /bin/sh and /bin/bash...
CVE-2022-2104
The CVE-2022-2104 entry concerns the Secheron SEPCOS Control and Protection Relay. The issue is that the www-data (Apache web server) account is configured to run sudo without a password for many commands (including /bin/sh and /bin/bash), enabling potential OS-level privilege escalation. Public ...
CVE-2022-2104 Secheron SEPCOS Control and Protection Relay
The www-data Apache web server account is configured to run sudo with no password for many commands including /bin/sh and /bin/bash...
CVE-2022-2104 Secheron SEPCOS Control and Protection Relay
The www-data Apache web server account is configured to run sudo with no password for many commands including /bin/sh and /bin/bash...
Exploit for Off-by-one Error in Sudo_Project Sudo
CVE-2021-3156: Heap-Based Buffer Overflow in Sudo Baron Samed...
CVE-2022-33070
Protobuf-c v1.4.0 was discovered to contain an invalid arithmetic shift via the function parsetagandwiretype in protobuf-c/protobuf-c.c. This vulnerability allows attackers to cause a Denial of Service DoS via unspecified vectors...
CVE-2022-31214
A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a join target, a local attacker can enter an environment in which the Linux user namespace is still the initial user...
UBUNTU-CVE-2022-31214
A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a join target, a local attacker can enter an environment in which the Linux user namespace is still the initial user...
CVE-2019-9971
PhoneSystem Terminal in 3CX Phone System Debian based installation 16.0.0.1570 allows an attacker to gain root privileges by using sudo with the tcpdump command, without a password. This occurs because the -z aka postrotate-command option to tcpdump can be unsafe when used in conjunction with sud...
CVE-2019-9971
PhoneSystem Terminal in 3CX Phone System Debian based installation 16.0.0.1570 allows an attacker to gain root privileges by using sudo with the tcpdump command, without a password. This occurs because the -z aka postrotate-command option to tcpdump can be unsafe when used in conjunction with sud...