1683 matches found
CVE-2024-32010
A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP12 Update 2. The affected application is vulnerable to extraction of database credentials via a world-readable credential file. This allows an attacker to connect to the database as privileged application user and to run...
CVE-2024-32010
A vulnerability has been identified in Spectrum Power 4 All versions V4.70 SP12 Update 2. The affected application is vulnerable to extraction of database credentials via a world-readable credential file. This allows an attacker to connect to the database as privileged application user and to run...
PT-2025-46535
Name of the Vulnerable Software and Affected Versions Spectrum Power versions prior to 4.70 SP12 Update 2 Description The application is susceptible to the exposure of database credentials through a world-readable credential file. Successful exploitation allows an attacker to connect to the...
curl: curl’s persistence files inherit world-readable/writable perms from umask, leaking and tampering with cookies/HSTS/Alt-Svc caches
Executive Summary Curlfopen clones the permissions of any pre-existing persistence file when creating its temporary file. When the persistence file does not exist, it first creates one with the process umask typically 022, i.e., 0644. That mode is then copied to the temp file via 0600 | sb.stmode...
CVE-2025-54808
Oxford Nanopore Technologies' MinKNOW software at or prior to version 24.11 stores authentication tokens in a file located in the system's temporary directory /tmp on the host machine. This directory is typically world-readable, allowing any local user or application to access the token. If the...
CVE-2025-54808 Oxford Nanopore Technologies MinKNOW Insufficiently Protected Credentials
Oxford Nanopore Technologies' MinKNOW software at or prior to version 24.11 stores authentication tokens in a file located in the system's temporary directory /tmp on the host machine. This directory is typically world-readable, allowing any local user or application to access the token. If the...
PT-2025-43541
Name of the Vulnerable Software and Affected Versions Oxford Nanopore Technologies MinKNOW versions prior to 24.11 Description The MinKNOW software stores authentication tokens in a world-readable file within the system's temporary directory /tmp on the host machine. If a token is compromised, an...
EUVD-2018-13490
Malware in sbrugna...
EUVD-2013-4346
Malware in sbrugna...
EUVD-2003-0408
Malware in sbrugna...
EUVD-2016-4161
Malware in sbrugna...
EUVD-2005-0788
Malware in sbrugna...
EUVD-2002-0560
Malware in sbrugna...
EUVD-2015-1976
Malware in sbrugna...
EUVD-2019-6923
Malware in sbrugna...
EUVD-2014-0219
Malware in sbrugna...
EUVD-2016-4164
Malware in sbrugna...
EUVD-2013-4344
Malware in sbrugna...
EUVD-2021-2318
Malware in sbrugna...
EUVD-2001-1156
Malware in sbrugna...