Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OpenVAS
OpenVASadded 2025/05/07 12:0 a.m.2 views

Ensure That the su Command Inherits the User Environment Variables Without Escalating Privileges

The su command enables a common user to have the permissions of the superuser or other users. It is often used for switching the user from a common user to the root user. The su command provides a convenient way for users to change their identities. However, if the su command is run without...

7.3AI score
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2023/05/07 12:0 a.m.25 views

EulerOS 2.0 SP11 : sudo (EulerOS-SA-2023-1792)

According to the versions of the sudo package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Sudo before 1.9.12p2, the sudoedit aka -e feature mishandles extra arguments passed in the user- provided environment variables SUDOEDITOR,...

7.8CVSS8.2AI score0.39861EPSS
Exploits20References2
Debian CVE
Debian CVEadded 2023/01/18 12:0 a.m.66 views

CVE-2023-22809

In Sudo before 1.9.12p2, the sudoedit aka -e feature mishandles extra arguments passed in the user-provided environment variables SUDOEDITOR, VISUAL, and EDITOR, allowing a local attacker to append arbitrary entries to the list of files to process. This can lead to privilege escalation. Affected...

7.8CVSS7.8AI score0.39861EPSS
Exploits20
OSV
OSVadded 2021/07/27 8:39 a.m.3 views

SUSE-SU-2021:2473-1 Security update for slurm

This update for slurm fixes the following issues: Updated to 20.11.7 Summary of new features: CVE-2021-31215: Fixed a remote code execution as SlurmUser bsc1186024. slurmd - handle configless failures gracefully instead of hanging indefinitely. select/constres - fix Dragonfly topology not selecti...

8.8CVSS9.1AI score0.02472EPSS
Exploits0References4
Packet Storm
Packet Stormadded 2019/06/28 12:0 a.m.123 views

Windows Escalate UAC Protection Bypass Via SilentCleanup

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows Escalate UAC Protection Bypass Via SilentCleanup', 'Description' = %q There's a task in Windows Task Scheduler called "SilentCleanup"...

0.8AI score
Exploits0
Prion
Prionadded 2015/03/18 4:59 p.m.19 views

Directory traversal

automount 5.0.8, when a program map uses certain interpreted languages, uses the calling user's USER and HOME environment variable values instead of the values for the user used to run the mapped program, which allows local users to gain privileges via a Trojan horse program in the user home...

4.4CVSS6.8AI score0.0011EPSS
Exploits0References7Affected Software6
Cvelist
Cvelistadded 2015/03/18 4:0 p.m.17 views

CVE-2014-8169

automount 5.0.8, when a program map uses certain interpreted languages, uses the calling user's USER and HOME environment variable values instead of the values for the user used to run the mapped program, which allows local users to gain privileges via a Trojan horse program in the user home...

6.1AI score0.0011EPSS
Exploits0References7
Rows per page
Query Builder