2 matches found
CVE-2026-0394
When dovecot has been configured to use per-domain passwd files, and they are placed one path component above /etc, or slash has been added to allowed characters, path traversal can happen if the domain component is directory partial. This allows inadvertently reading /etc/passwd or some other pa...
The vulnerability of the vi command-line editor for system data storage, Backup Manager, allows a hacker to obtain root privileges.
The vulnerability of the vi script service for the system data storage, Backup Manager, is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to obtain root privileges and compromise the integrity of the critical /etc/passwd file by executing a speci...