Lucene search
K

38 matches found

RedhatCVE
RedhatCVE
added 2026/05/12 2:27 a.m.9 views

CVE-2026-29203

A chmod call in the cPanel Nova plugin's Cpanel::Nova::Connector follows symlinks, allowing setting root permissions on arbitrary system files or directories. That can cause DoS or local privilege escalation when an authenticated cPanel user places a symlink at a user-controlled legacy Nova path...

8.8CVSS6.1AI score0.00493EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/09 6:30 p.m.4 views

EUVD-2025-33387

An Authentication Bypass by Primary Weakness in the FTP server of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to get limited read-write access to files on the device. When the FTP server is enabled and a user named "ftp" or "anonymous" is configured, that user can...

6.9CVSS6.6AI score0.00275EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2021-26499

Malware in sbrugna...

5.5CVSS5.3AI score0.0026EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2011-1501

Malware in sbrugna...

2.1CVSS6.3AI score0.00341EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-31289

Malicious code in bioql PyPI...

8.8CVSS6.7AI score0.02195EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2025/06/26 12:12 p.m.6 views

oath-toolkit: Local root exploit in a PAM module

A vulnerability was found in a PAM module, the oath-toolkit. The module gained a feature that allowed placing the OTP state file, called the usersfile, in the home directory of the to-be-authenticated user. The PAM module performed unsafe file operations in the users' home directories. Since PAM...

7.1CVSS5.7AI score0.00341EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/05/07 12:48 p.m.7 views

oath-toolkit: Local root exploit in a PAM module

A vulnerability was found in a PAM module, the oath-toolkit. The module gained a feature that allowed placing the OTP state file, called the usersfile, in the home directory of the to-be-authenticated user. The PAM module performed unsafe file operations in the users' home directories. Since PAM...

7.1CVSS5.7AI score0.00341EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/04/28 5:31 a.m.3 views

oath-toolkit: Local root exploit in a PAM module

A vulnerability was found in a PAM module, the oath-toolkit. The module gained a feature that allowed placing the OTP state file, called the usersfile, in the home directory of the to-be-authenticated user. The PAM module performed unsafe file operations in the users' home directories. Since PAM...

7.1CVSS5.7AI score0.00341EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/04/07 3:27 p.m.4 views

oath-toolkit: Local root exploit in a PAM module

A vulnerability was found in a PAM module, the oath-toolkit. The module gained a feature that allowed placing the OTP state file, called the usersfile, in the home directory of the to-be-authenticated user. The PAM module performed unsafe file operations in the users' home directories. Since PAM...

7.1CVSS5.7AI score0.00341EPSS
Exploits0References4
OSV
OSV
added 2021/04/12 10:15 p.m.24 views

CVE-2021-29429

In Gradle before version 7.0, files created with open permissions in the system temporary directory can allow an attacker to access information downloaded by Gradle. Some builds could be vulnerable to a local information disclosure. Remote files accessed through TextResourceFactory are downloaded...

5.5CVSS6AI score
Exploits0References2
OSV
OSV
added 2020/08/29 6:40 a.m.4 views

MGASA-2020-0353 Updated ark packages fix security vulnerability

A maliciously crafted TAR archive containing symlink entries would install files anywhere in the user's home directory upon extraction CVE-2020-24654...

4.3CVSS3.7AI score0.01496EPSS
Exploits0References3
Gentoo Linux
Gentoo Linux
added 2020/08/08 12:0 a.m.52 views

Ark: Arbitrary code execution

Background Ark is a graphical file compression/decompression utility with support for multiple formats. Description A maliciously crafted archive with “../” in the file paths could install files anywhere in the user’s home directory upon extraction. Impact A remote attacker could entice a user to...

4.3CVSS4.4AI score0.01706EPSS
Exploits0
FreeBSD
FreeBSD
added 2020/07/30 12:0 a.m.37 views

ark -- directory traversal

KDE Project Security Advisory reports: KDE Project Security Advisory Title: Ark: maliciously crafted archive can install files outside the extraction directory. Risk Rating: Important CVE: CVE-2020-16116 Versions: ark Date: 30 July 2020 Overview A maliciously crafted archive with "../" in the fil...

4.3CVSS5.8AI score0.01706EPSS
Exploits0References1
OSV
OSV
added 2019/11/25 3:15 p.m.4 views

CVE-2012-5644

libuser has information disclosure when moving user's home directory...

5.5CVSS6.3AI score0.00407EPSS
Exploits0References7
0day.today
0day.today
added 2018/08/17 12:0 a.m.92 views

Linux PAM 0.6.9 Authentication Replay Vulnerability

Exploit for linux platform in category local exploits Multiple Vulnerabilities in pampkcs11 ====================================== Overview - -------- Confirmed Affected Versions: 0.6.9 Confirmed Patched Versions: - Vendor: Unmaintained Vendor URL: https://github.com/OpenSC/pampkcs11 Credit: X41...

6.8AI score
Exploits0
Debian CVE
Debian CVE
added 2018/03/08 8:0 p.m.62 views

CVE-2014-7272

Simple Desktop Display Manager SDDM before 0.10.0 allows local users to gain root privileges because code running as root performs write operations within a user home directory, and this user may have created links in advance exploitation requires the user to win a race condition in the...

7.8CVSS7.6AI score0.00408EPSS
Exploits0
OSV
OSV
added 2017/12/20 11:13 a.m.6 views

SUSE-SU-2017:3380-1 Security update for Salt

This update for salt fixes one security issue and bugs. The following security issues have been fixed: - CVE-2017-14695: A directory traversal vulnerability in minion id validation allowed remote minions with incorrect credentials to authenticate to a master via a crafted minion ID. bsc1062462 -...

9.8CVSS8.8AI score0.02739EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2017/04/06 12:0 a.m.110 views

ProFTPD < 1.3.5e, 1.3.6 < 1.3.6rc5 Local Security Bypass Vulnerability

ProFTPD server is prone to local security bypass vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:proftpd:proftpd";...

5.5CVSS5.5AI score0.00419EPSS
Exploits0References5
ArchLinux
ArchLinux
added 2015/10/23 12:0 a.m.67 views

jre7-openjdk-headless: multiple issues

CVE-2015-4734 information disclosure It was discovered that the JGSS component of OpenJDK did not properly hide Kerberos realm information from all error exceptions when running under Security Manager. An untrusted Java application or applet could use this flaw to obtain certain information about...

10CVSS1.5AI score0.13354EPSS
Exploits0References22
ArchLinux
ArchLinux
added 2015/10/23 12:0 a.m.69 views

jre7-openjdk: multiple issues

CVE-2015-4734 information disclosure It was discovered that the JGSS component of OpenJDK did not properly hide Kerberos realm information from all error exceptions when running under Security Manager. An untrusted Java application or applet could use this flaw to obtain certain information about...

10CVSS1.5AI score0.13354EPSS
Exploits0References22
Rows per page
Query Builder