Lucene search
K

2839 matches found

Exploit DB
Exploit DB
added 2022/06/14 12:0 a.m.481 views

phpIPAM 1.4.5 - Remote Code Execution (RCE) (Authenticated)

Exploit Title: phpIPAM 1.4.5 - Remote Code Execution RCE Authenticated Date: 2022-04-10 Exploit Author: Guilherme '@behiNdyk1' Alves Vendor Homepage: https://phpipam.net/ Software Link: https://github.com/phpipam/phpipam/releases/tag/v1.4.5 Version: 1.4.5 Tested on: Linux Ubuntu 20.04.3 LTS...

7.4AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/06/09 5:15 p.m.2 views

CVE-2022-26363

x86 pv: Insufficient care with non-coherent mappings This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Xen maintains a type reference count for pages, in addition to a regular reference count. This scheme is used to...

7.2CVSS7AI score0.00341EPSS
Exploits0References10
OSV
OSV
added 2022/06/09 5:15 p.m.2 views

ALPINE-CVE-2022-26362

x86 pv: Race condition in typeref acquisition Xen maintains a type reference count for pages, in addition to a regular reference count. This scheme is used to maintain invariants required for Xen's safety, e.g. PV guests may not have direct writeable access to pagetables; updates need auditing by...

6.4CVSS6.7AI score0.00379EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2022/05/17 3:44 a.m.23 views

Doctrine Security Misconfiguration Vulnerability

Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local...

7.8CVSS7.6AI score0.00381EPSS
Exploits0References19Affected Software11
OSV
OSV
added 2022/05/17 3:44 a.m.38 views

GHSA-PW5C-XQF2-6XC2 Doctrine Security Misconfiguration Vulnerability

Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local...

7.8CVSS8AI score0.00381EPSS
Exploits0References18
OSV
OSV
added 2022/04/28 11:15 a.m.5 views

CVE-2021-33436

NoMachine for Windows prior to version 6.15.1 and 7.5.2 suffer from local privilege escalation due to the lack of safe DLL loading. This vulnerability allows local non-privileged users to perform DLL Hijacking via any writable directory listed under the system path and ultimately execute code as ...

7.3CVSS7.2AI score0.0027EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/04/28 12:0 a.m.3 views

NoMachine 安全漏洞

Nomachine NoMachine is a remote desktop access tool from Nomachine, Luxembourg. A security vulnerability exists in NoMachine for Windows versions prior to 6.15.1 and 7.5.2, which stems from a lack of secure DLL loading subject to local elevation of privilege. An attacker exploits the vulnerabilit...

7.3CVSS7.6AI score0.0027EPSS
Exploits0References5
Veracode
Veracode
added 2022/04/26 4:59 a.m.35 views

Privilege Escalation

qemu is vulnerable to privilege escalation. The vulnerability exists due to a lack of validation of authorization which allows an attacker to create files in the directories shared by virtio-fs with unintended group ownership in a scenario where a directory is SGID to a certain group and is...

7.8CVSS5AI score0.00332EPSS
Exploits0References5Affected Software2
NVD
NVD
added 2022/04/20 10:15 a.m.14 views

CVE-2022-29527

Amazon AWS amazon-ssm-agent before 3.1.1208.0 creates a world-writable sudoers file, which allows local attackers to inject Sudo rules and escalate privileges to root. This occurs in certain situations involving a race condition...

7CVSS0.00296EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/04/20 10:15 a.m.2 views

CVE-2022-29527

Amazon AWS amazon-ssm-agent before 3.1.1208.0 creates a world-writable sudoers file, which allows local attackers to inject Sudo rules and escalate privileges to root. This occurs in certain situations involving a race condition...

7CVSS5.9AI score0.00296EPSS
Exploits1References4
NVD
NVD
added 2022/04/12 5:15 p.m.30 views

CVE-2021-39802

In changepterange of mprotect.c , there is a possible way to make a shared mmap writable due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.8CVSS0.00145EPSS
Exploits0References1
Prion
Prion
added 2022/04/12 5:15 p.m.17 views

Design/Logic Flaw

In changepterange of mprotect.c , there is a possible way to make a shared mmap writable due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.2CVSS7.6AI score0.00145EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2022/04/12 4:11 p.m.37 views

CVE-2021-39802

In changepterange of mprotect.c , there is a possible way to make a shared mmap writable due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.8CVSS7.6AI score0.00145EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2022/04/12 12:0 a.m.4 views

PT-2022-7341 · Google · Android Kernel

Name of the Vulnerable Software and Affected Versions: Android kernel versions affected versions not specified Description: The issue is related to a permissions bypass in the change pte range function of mprotect.c, which could allow making a shared mmap writable. This could lead to local...

7.8CVSS7.4AI score0.00145EPSS
Exploits0References16
ATTACKERKB
ATTACKERKB
added 2022/04/11 8:15 p.m.2 views

CVE-2022-27578

An attacker can perform a privilege escalation through the SICK OEE if the application is installed in a directory where non authenticated or low privilege users can modify its content...

7.8CVSS5.9AI score0.00294EPSS
Exploits0References2
OSV
OSV
added 2022/04/11 8:15 p.m.2 views

CVE-2022-27578

An attacker can perform a privilege escalation through the SICK OEE if the application is installed in a directory where non authenticated or low privilege users can modify its content...

7.8CVSS5.8AI score0.00294EPSS
Exploits0References1
Sick AG
Sick AG
added 2022/04/11 3:0 p.m.10 views

Vulnerability in SICK Overall Equipment Effectiveness (OEE)

SICK received a report about a vulnerability in the SICK Overall Equipment Effectiveness OEE. The services under the OEE application are started in the context of system privileges. An attacker can perform a privilege escalation if the application is installed in a directory, where non...

8.4CVSS7.2AI score0.00294EPSS
Exploits0
CNNVD
CNNVD
added 2022/04/11 12:0 a.m.4 views

SICK OEE 安全漏洞

Sick SICK OEE is a programmable controller from Sick, Germany. A security vulnerability exists in the SICK OEE, which can be exploited by an attacker to perform an elevation of privilege via the SICK OEE if the application is installed in a directory whose contents can be modified by an...

7.8CVSS7.4AI score0.00294EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/03/17 4:15 p.m.2 views

CVE-2022-26526

Anaconda Anaconda3 Anaconda Distribution through 2021.11.0.0 and Miniconda3 through 4.11.0.0 can create a world-writable directory under %PROGRAMDATA% and place that directory into the system PATH environment variable. Thus, for example, local users can gain privileges by placing a Trojan horse...

7.8CVSS7AI score0.00338EPSS
Exploits1References5
OSV
OSV
added 2022/03/17 4:15 p.m.2 views

CVE-2022-26526

Anaconda Anaconda3 Anaconda Distribution through 2021.11.0.0 and Miniconda3 through 4.11.0.0 can create a world-writable directory under %PROGRAMDATA% and place that directory into the system PATH environment variable. Thus, for example, local users can gain privileges by placing a Trojan horse...

7.8CVSS5.8AI score0.00338EPSS
Exploits1References4
Rows per page
Query Builder