Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:48 a.m.6 views

CVE-2025-23403

A vulnerability has been identified in SIMATIC IPC DiagBase All versions, SIMATIC IPC DiagMonitor All versions. The affected device do not properly restrict the user permission for the registry key. This could allow an authenticated attacker to load vulnerable drivers into the system leading to...

7.3CVSS7AI score0.00146EPSS
Exploits0References1
NVD
NVD
added 2025/06/26 9:15 p.m.8 views

CVE-2014-7210

pdns specific as packaged in Debian in version before 3.3.1-1 creates a too privileged MySQL user. It was discovered that the maintainer scripts of pdns-backend-mysql grant too wide database permissions for the pdns user. Other backends are not affected...

9.8CVSS0.00433EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/05 12:53 a.m.22 views

Security Bulletin: User permission vulnerability affects IBM Sterling B2B Integrator (CVE-2017-1326)

Summary IBM Sterling File Gateway does not properly restrict user requests based on permission level. This allows for users to update data related to other users, by manipulating the parameters passed in the POST request. Vulnerability Details CVEID: CVE-2017-1326 DESCRIPTION: IBM Sterling File...

4.3CVSS0.5AI score0.00796EPSS
Exploits0Affected Software1
CVE
CVE
added 2016/11/04 10:0 a.m.53 views

CVE-2016-9182

Exponent CMS 2.4 is vulnerable to a permission-bypass flaw in its controller dispatch: PHP reflection treats method names as case-insensitive and undefined actions may run by default. An attacker can use a capitalized method name (e.g., action=Preview) to bypass checks that would deny access with...

7.5CVSS8.1AI score0.01406EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder