Intel Video Processing Library 代码问题漏洞

Intel Video Processing Library Intel VPL is a video processing library from Intel Corporation USA. A code issue vulnerability exists in Intel Video Processing Library versions prior to 2023.4.0 that stems from an unrestricted path search that results in elevated local privileges...

OpenStack Glance v2 API unrestricted path traversal through filesystem:// scheme

The V2 API in OpenStack Image Registry and Delivery Service Glance before 2014.1.4 and 2014.2.x before 2014.2.2 allows remote authenticated users to read or delete arbitrary files via a full pathname in a filesystem:// URL in the image location property. NOTE: this vulnerability exists because of...

UBUNTU-CVE-2019-17009

When running, the updater service wrote status and log files to an unrestricted location; potentially allowing an unprivileged process to locate and exploit a vulnerability in file handling in the updater service. Note: This attack requires local system access and only affects Windows. Other...

ManageEngine ServiceDesk Arbitrary File Download Vulnerability

ZOHO ManageEngine ServiceDesk is the United States ZhuoHao ZOHO company's set of web-based help desk HelpDesk and asset management software. An arbitrary file download vulnerability exists in ZOHO ManageEngine ServiceDesk version 9.3.9328, which stems from the program failing to restrict the...

The vulnerability of microprogramming software in mobile storage devices like Wireless Plus Mobile Storage, Wireless Mobile Storage, LaCie FUEL, and GoFlex Satellite allows a perpetrator to read arbitrary files.

The vulnerability of microprogramming software in mobile storage devices like Wireless Plus Mobile Storage, Wireless Mobile Storage, LaCie FUEL, and GoFlex Satellite exists due to an incorrect limitation on the path name to the restricted directory. Exploiting this vulnerability allows a maliciou...