Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sorcery project sorcery vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-11052
In Sorcery prior to 0.15.0, there is a brute force vulnerability when using password authentication via Sorcery. The brute force protection submodule will prevent a brute force attack for the defined lockout period, but once expired, protection will not be re-enabled until a user...
Sorcery Project Sorcery
7.2
CVSSv2
CVE-2021-26936
The replay-sorcery program in ReplaySorcery 0.4.0 up to and including 0.5.0, when using the default setuid-root configuration, allows a local malicious user to escalate privileges to root by specifying video output paths in privileged locations.
Replaysorcery Project Replaysorcery
7.2
CVSSv2
CVE-2021-36983
replay-sorcery-kms in Replay Sorcery 0.6.0 allows a local malicious user to gain root privileges via a symlink attack on /tmp/replay-sorcery or /tmp/replay-sorcery/device.sock.
Replaysorcery Project Replaysorcery 0.6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started