Lucene search
K

8 matches found

RedHat Linux
RedHat Linux
added 2026/02/18 1:51 a.m.3 views

wheel: wheel: Privilege Escalation or Arbitrary Code Execution via malicious wheel file unpacking

A path traversal flaw has been discovered in the python wheel too. The unpack function is vulnerable to file permission modification through mishandling of file permissions after extraction. The logic blindly trusts the filename from the archive header for the chmod operation, even though the...

7.1CVSS6.3AI score0.00311EPSS
Exploits2References7
Vulnrichment
Vulnrichment
added 2026/01/21 4:26 p.m.4 views

CVE-2026-20092 Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability

A vulnerability in the read-only maintenance shell of Cisco Intersight Virtual Appliance could allow an authenticated, local attacker with administrative privileges to elevate privileges to root on the virtual appliance. This vulnerability is due to improper file permissions on configuration file...

6CVSS5.6AI score0.00104EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-47499

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.004EPSS
Exploits0References3
OSV
OSV
added 2025/02/26 5:15 p.m.4 views

CVE-2025-20119

A vulnerability in the system file permission handling of Cisco APIC could allow an authenticated, local attacker to overwrite critical system files, which could cause a DoS condition. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is du...

5.7CVSS5.8AI score
Exploits0References1
CVE
CVE
added 2025/02/26 4:23 p.m.86 views

CVE-2025-20119

CVE-2025-20119 references describe a vulnerability in the Cisco APIC system responsible for handling system file permissions. The root cause is a race condition during system-file operations, which an authenticated, local attacker with valid administrative credentials could exploit to overwrite c...

6CVSS5.8AI score0.00094EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/02/26 12:0 a.m.6 views

PT-2025-8734 · Cisco · Cisco Apic

Name of the Vulnerable Software and Affected Versions: Cisco APIC affected versions not specified Description: A vulnerability in the system file permission handling could allow an authenticated, local attacker to overwrite critical system files, causing a DoS condition. The attacker must have...

6.2CVSS6.7AI score0.00094EPSS
Exploits0References6
NVD
NVD
added 2025/02/12 11:15 p.m.11 views

CVE-2024-34521

A directory traversal vulnerability exists in the Mavenir SCE Application Provisioning Portal, version PORTAL-LBS-R10240, which allows an administrative user to access system files with the file permissions of the privileged system user running the application...

3.5CVSS0.00561EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/12 12:0 a.m.5 views

CVE-2024-34521

A directory traversal vulnerability exists in the Mavenir SCE Application Provisioning Portal, version PORTAL-LBS-R10240, which allows an administrative user to access system files with the file permissions of the privileged system user running the application...

4AI score0.00561EPSS
Exploits0References1
Rows per page
Query Builder