EUVD-2023-54440

Malicious code in bioql PyPI...

CVE-2023-21387

In User Backup Manager, there is a possible way to leak a token to bypass user confirmation for backup due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

Information disclosure

In User Backup Manager, there is a possible way to leak a token to bypass user confirmation for backup due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

CVE-2023-21387

In User Backup Manager, there is a possible way to leak a token to bypass user confirmation for backup due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

CVE-2023-21387

The CVE-2023-21387 entry concerns Google Android’s User Backup Manager. The connected documents describe a token leakage via log information disclosure that can bypass user confirmation for backups, leading to local information disclosure with System execution privileges potentially required. Thi...

CVE-2023-21387

In User Backup Manager, there is a possible way to leak a token to bypass user confirmation for backup due to log information disclosure. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation...

PT-2023-18162 · Unknown · User Backup Manager

Name of the Vulnerable Software and Affected Versions: User Backup Manager affected versions not specified Description: The issue is related to log information disclosure, which could lead to local information disclosure. It is possible to leak a token and bypass user confirmation for backup...

CVE-2023-4587

An IDOR vulnerability has been found in ZKTeco ZEM800 product affecting version 6.60. This vulnerability allows a local attacker to obtain registered user backup files or device configuration files over a local network or through a VPN server...

Information disclosure

UNSUPPPORTED WHEN ASSIGNED An IDOR vulnerability has been found in ZKTeco ZEM800 product affecting version 6.60. This vulnerability allows a local attacker to obtain registered user backup files or device configuration files over a local network or through a VPN server...

CVE-2023-4587 Insecure direct object reference in ZKTeco ZEM800

An IDOR vulnerability has been found in ZKTeco ZEM800 product affecting version 6.60. This vulnerability allows a local attacker to obtain registered user backup files or device configuration files over a local network or through a VPN server...

DELL Dell EMC Avamar Server 安全漏洞

DELL Dell EMC Avamar Server is a suite of fully virtualized backup and recovery software for servers from Dell USA. A security vulnerability exists in Dell EMC Avamar, which can be exploited by an attacker to bypass access restrictions via user backup data on a Dell EMC Avamar Server in order to...

CVE-2017-18410

In cPanel before 67.9999.103, a user account's backup archive could contain all MySQL databases on the server SEC-284...

Mandrake Linux Security Advisory : postgresql (MDKSA-2002:062-1)

Vulnerabilities were discovered in the Postgresql relational database by Mordred Labs. These vulnerabilities are buffer overflows in the rpad, lpad, repeat, and cashwords functions. The Postgresql developers also fixed a buffer overflow in functions that deal with time/date and timezone. Finally,...