136 matches found
GHSA-V4GP-HF5J-4566 IKUS Rdiffweb allows an attacker with any valid or stolen access token to act as other users
IKUS Rdiffweb version 2.10.5 and below have an improper authorization flaw that allows an attacker with any valid or stolen access token to act as other users. The API does not enforce binding between the authenticated subject and the targeted user/tenant, so crafted requests can read or modify...
CVE-2026-41079
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to 2.4.17, a network-adjacent attacker can send a crafted SNMP response to the CUPS SNMP backend that causes an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory i...
CVE-2026-33668
Vikunja is an open-source self-hosted task management platform. Starting in version 0.18.0 and prior to version 2.2.1, when a user account is disabled or locked, the status check is only enforced on the local login and JWT token refresh paths. Three other authentication paths — API tokens, CalDAV...
International Datacasting SFX2100 SuperFlex Satellite Receiver 安全漏洞
The International Datacasting SFX2100 SuperFlex Satellite Receiver is a professional broadcast-grade satellite signal receiving device from the International Datacasting company. The SFX2100 SuperFlex Satellite Receiver has a security vulnerability, which stems from the setuid bit being set for t...
IBM Storage Scale 安全漏洞
IBM Storage Scale is a storage solution offered by the American multinational company International Business Machines IBM. It aims to help businesses effectively manage and scale storage resources to meet growing data storage needs. Versions 5.2.3.0 to 5.2.3.5, as well as versions 6.0.0.0 to...
CVE-2019-11658
Information exposure in Micro Focus Content Manager, versions 9.1, 9.2 and 9.3. This vulnerability when configured to use an Oracle database, allows valid system users to gain access to a limited subset of records they would not normally be able to access when the system is in an undisclosed...
CVE-1999-0132
Expreserve, as used in vi and ex, allows local users to overwrite arbitrary files and gain root access...
CVE-1999-0961
HPUX sysdiag allows local users to gain root privileges via a symlink attack during log file creation...
CVE-1999-0044
fsdump command in IRIX allows local users to obtain root access by modifying sensitive files...
CVE-2025-8074
Origin validation error vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.3-13973 allows local users to write arbitrary files with non-sensitive information via unspecified vectors...
GHSA-X3HX-CH7P-8XGG Mattermost allows regular users to access archived channel content and files
Mattermost versions 11.0 fail to properly enforce the "Allow users to view archived channels" setting which allows regular users to access archived channel content and files via the "Open in Channel" functionality from followed threads...
EUVD-2016-8855
Malware in sbrugna...
EUVD-2011-2460
Malware in sbrugna...
EUVD-2018-8930
Malware in sbrugna...
EUVD-2008-0590
Malware in sbrugna...
EUVD-2010-2699
Malware in sbrugna...
EUVD-2014-0256
Malware in sbrugna...
EUVD-2018-3537
Malware in sbrugna...
EUVD-2006-2428
Malware in sbrugna...
EUVD-2013-1103
Malware in sbrugna...