17 matches found
EUVD-2010-4151
Malware in sbrugna...
EUVD-2025-25522
Malicious code in bioql PyPI...
CVE-2025-50691
MCSManager 10.5.3 daemon process runs as a root account by default, and its sensitive data including tokens and terminal content is stored in the data directory, readable by all users. Other users on the system can read the daemon's key and use it to log in, leading to privilege escalation...
CVE-2025-50691
MCSManager 10.5.3 daemon process runs as a root account by default, and its sensitive data including tokens and terminal content is stored in the data directory, readable by all users. Other users on the system can read the daemon's key and use it to log in, leading to privilege escalation...
CVE-2025-50691
MCSManager 10.5.3 daemon process runs as a root account by default, and its sensitive data including tokens and terminal content is stored in the data directory, readable by all users. Other users on the system can read the daemon's key and use it to log in, leading to privilege escalation...
iTerm2 安全漏洞
iTerm2 is a terminal emulation program written for Mac OS X by George Nachman, a personal developer. A security vulnerability exists in iTerm2. A remote attacker can exploit the vulnerability to obtain sensitive information from terminal commands by reading the /tmp/framer.txt file...
CVE-2024-39278
CVE-2024-39278 affects Hughes WL3000 Fusion Software (versions prior to 2.7.0.10). The issue arises from credentials used to access device configuration information being stored unencrypted in flash memory, allowing read-only access to network and terminal configuration data. According to connect...
SUSE CVE-2022-4170
The rxvt-unicode package is vulnerable to a remote code execution, in the Perl background extension, when an attacker can control the data written to the user's terminal and certain options are set...
DEBIAN-CVE-2022-4170
The rxvt-unicode package is vulnerable to a remote code execution, in the Perl background extension, when an attacker can control the data written to the user's terminal and certain options are set...
Rockwell Automation/Allen-Bradley PanelView Plus 6 400 HMI Terminal
Binary data 751113.prm...
Veris: Critical IDOR - Get anyone's Terminal Data remotely
Hello Team, I have found a critical IDOR using which an attacker can get anyone's terminal data remotely by just changing the terminal/gatekeeper id. Proof of Concept: Please find the attached screenshots. Best Regards, Hely H. Shah...
CVE-2010-4176
plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 and 14, sets weak permissions for the /dev/systty device file, which allows remote authenticated users to read terminal data from tty0 for local users...
Code injection
plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 and 14, sets weak permissions for the /dev/systty device file, which allows remote authenticated users to read terminal data from tty0 for local users...
CVE-2010-4176
plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 and 14, sets weak permissions for the /dev/systty device file, which allows remote authenticated users to read terminal data from tty0 for local users...
CVE-2010-4176
plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 and 14, sets weak permissions for the /dev/systty device file, which allows remote authenticated users to read terminal data from tty0 for local users...
CVE-2010-4176
plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 and 14, sets weak permissions for the /dev/systty device file, which allows remote authenticated users to read terminal data from tty0 for local users...
CVE-2010-4176
CVE-2010-4176 describes a permission issue in plymouth-pretrigger.sh used by dracut/udev on Fedora 13 and 14. The script sets weak permissions on the /dev/systty device file, enabling remote authenticated users to read terminal data from tty0 for local users. Connected sources (OSV/OpenVAS/CVE re...