PYSEC-2025-96

An incorrect authorization vulnerability exists in gaizhenbiao/chuanhuchatgpt version git c91dbfc. The vulnerability allows any user to restart the server at will, leading to a complete loss of availability. The issue arises because the function responsible for restarting the server is not proper...

CVE-2024-53542

Incorrect access control in the component /iclock/Settings?restartNCS=1 of NovaCHRON Zeitsysteme GmbH & Co. KG Smart Time Plus v8.x to v8.6 allows attackers to arbitrarily restart the NCServiceManger via a crafted GET request...

CVE-2024-52551

A flaw was found in Jenkins Pipeline: Declarative Plugin pipeline-model-definition. This vulnerability allows attackers with Item/Build permission to restart a previous build whose Jenkinsfile script is no longer approved via insufficient script approval checks. Mitigation Mitigation for this iss...

CVE-2020-23793

A flaw was found in spice-server in Redhat's VDI product that can restart KVMvirtual machine without any authorization. A handshake is required before spice-server and spice-client can establish communication, and spice-client will send a request containing information that the server needs. This...

DEBIAN-CVE-2020-23793

An issue was discovered in spice-server spice-server-0.14.0-6.el76.1.x8664 of Redhat's VDI product. There is a security vulnerablility that can restart KVMvirtual machine without any authorization. It is not yet known if there will be other other effects...

CVE-2020-23793

An issue was discovered in spice-server spice-server-0.14.0-6.el76.1.x8664 of Redhat's VDI product. There is a security vulnerablility that can restart KVMvirtual machine without any authorization. It is not yet known if there will be other other effects...

CVE-2020-23793

An issue was discovered in spice-server spice-server-0.14.0-6.el76.1.x8664 of Redhat's VDI product. There is a security vulnerablility that can restart KVMvirtual machine without any authorization. It is not yet known if there will be other other effects...

PT-2023-11653 · Red Hat · Spice-Server

Name of the Vulnerable Software and Affected Versions: spice-server version 0.14.0-6.el7 6.1.x86 64 Description: A security issue was discovered in Redhat's VDI product, allowing a KVM virtual machine to be restarted without authorization. The full extent of the effects is not yet known...

Information Disclosure

Supervisor is vulnerable to unauthorized restart and information disclosure. It is possible because the inet HTTP server, which is not enabled by default, does not use authentication by default, allowing an unauthenticated user to access log files or restart a service if the inet HTTP server is...

Default configuration

A vulnerability in the default configuration of the Cisco Aironet Active Sensor could allow an unauthenticated, remote attacker to restart the sensor. The vulnerability is due to a default local account with a static password. The account has privileges only to reboot the device. An attacker coul...

CVE-2010-0976

Acidcat CMS 3.5.x does not prevent access to install.asp after installation finishes, which might allow remote attackers to restart the installation process and have unspecified other impact via requests to install.asp and other install.asp scripts. NOTE: the final installation screen states...