4723 matches found
openSUSE: Security Advisory for avahi (openSUSE-SU-2021:1845-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2021-35064
KramerAV VIAWare, all tested versions, allow privilege escalation through misconfiguration of sudo. Sudoers permits running of multiple dangerous commands, including unzip, systemctl and dpkg...
Design/Logic Flaw
KramerAV VIAWare, all tested versions, allow privilege escalation through misconfiguration of sudo. Sudoers permits running of multiple dangerous commands, including unzip, systemctl and dpkg...
CVE-2021-35064
KramerAV VIAWare, all tested versions, allow privilege escalation through misconfiguration of sudo. Sudoers permits running of multiple dangerous commands, including unzip, systemctl and dpkg...
CVE-2021-35064
Kramer VIAware (VIAware web interface) is affected by CVE-2021-35064 with concrete details in connected sources: misconfigured sudoers permissions grant privilege escalation by allowing dangerous commands (e.g., unzip, systemctl, dpkg), enabling possible remote code execution patterns. Nuclei tem...
CVE-2021-35064
KramerAV VIAWare, all tested versions, allow privilege escalation through misconfiguration of sudo. Sudoers permits running of multiple dangerous commands, including unzip, systemctl and dpkg. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...
VIAware 安全漏洞
Kramer Electronics VIAware is a wireless presentation collaboration software solution from Kramer Electronics, Israel. A security vulnerability exists in all tested versions of KramerAV VIAWare, which can be exploited by an attacker to elevate privileges via misconfigured sudo...
PT-2021-20822
Name of the Vulnerable Software and Affected Versions KramerAV VIAWare affected versions not specified Description The software allows for privilege escalation due to improper sudo configuration. The sudoers file permits the execution of multiple dangerous commands, including unzip, systemctl, an...
Polkit D-Bus Authentication Bypass Exploit
A vulnerability exists within the polkit system service that can be leveraged by a local, unprivileged attacker to perform privileged operations. In order to leverage the vulnerability, the attacker invokes a method over D-Bus and kills the client process. This will occasionally cause the operati...
Polkit D-Bus Authentication Bypass
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'unixcrypt' class MetasploitModule 'Polkit D-Bus Authentication Bypass', 'Description' = %q A vulnerability exists within the polkit system service that can be...
CLSA-2021-1625650209 Fix of CVE: CVE-2021-23240
sudo-1.8.6p3-CVE-2021-23240-2.patch: fixed issue with credentials management in sudoedit - sudo-1.8.6p3-CVE-2021-23240-3.patch: fixed issue with origin file removal in sesh...
Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2021-2170)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Visual Tools DVR VX16 4.2.28 - Local Privilege Escalation Vulnerability
Exploit Title: Visual Tools DVR VX16 4.2.28 - Local Privilege Escalation Exploit Author: Andrea D'Ubaldo Vendor Homepage: https://visual-tools.com/ Version: Visual Tools VX16 v4.2.28.0 Tested on: VX16 Embedded Linux 2.6.35.4. An attacker can perform a system-level root local privilege escalation...
Visual Tools DVR VX16 4.2.28 Privilege Escalation
Exploit Title: Visual Tools DVR VX16 4.2.28 - Local Privilege Escalation Date: 2021-07-05 Exploit Author: Andrea D'Ubaldo Vendor Homepage: https://visual-tools.com/ Version: Visual Tools VX16 v4.2.28.0 Tested on: VX16 Embedded Linux 2.6.35.4. An attacker can perform a system-level root local...
Visual Tools DVR VX16 4.2.28 - Local Privilege Escalation
Exploit Title: Visual Tools DVR VX16 4.2.28 - Local Privilege Escalation Date: 2021-07-05 Exploit Author: Andrea D'Ubaldo Vendor Homepage: https://visual-tools.com/ Version: Visual Tools VX16 v4.2.28.0 Tested on: VX16 Embedded Linux 2.6.35.4. An attacker can perform a system-level root local...
EulerOS Virtualization 3.0.2.2 : sudo (EulerOS-SA-2021-2170)
According to the version of the sudo package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - Sudo before 1.9.5p2 has a Heap-based Buffer Overflow,allowing privilege escalation to root via 'sudoedit -s' and a command-line argumen...
Advisory ROSA-SA-2021-2005
Software: zsh 5.0.2 OS: Cobalt 7.9 CVE-ID: CVE-2014-10070 CVE-Crit: HIGH CVE-DESC: zsh before 5.0.7 allows the initial values of integer variables imported from the environment to be evaluated instead of treating them as literal numbers. This may allow local privilege escalation under some specif...
Advisory ROSA-SA-2021-1980
Software: sudo 1.8.23 OS: Cobalt 7.9 CVE-ID: CVE-2021-23239 CVE-Crit: LOW CVE-DESC: The sudoedit personality in sudo before 1.9.5 can allow a local unprivileged user to perform arbitrary directory existence tests by winning the sudoedit.c race condition when replacing a user-controlled directory...
Exploit for Off-by-one Error in Sudo_Project Sudo
Baron Samedit - Sudo CVE 2021-3156 PoC...
Exploit for Off-by-one Error in Sudo_Project Sudo
CVE-2021-3156 Root shell PoC for CVE-2021-3156 no brutef...