Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sorcery project sorcery vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2020-11052
In Sorcery prior to 0.15.0, there is a brute force vulnerability when using password authentication via Sorcery. The brute force protection submodule will prevent a brute force attack for the defined lockout period, but once expired, protection will not be re-enabled until a user...
Sorcery Project Sorcery
641
VMScore
CVE-2021-36983
replay-sorcery-kms in Replay Sorcery 0.6.0 allows a local malicious user to gain root privileges via a symlink attack on /tmp/replay-sorcery or /tmp/replay-sorcery/device.sock.
Replaysorcery Project Replaysorcery 0.6.0
641
VMScore
CVE-2021-26936
The replay-sorcery program in ReplaySorcery 0.4.0 up to and including 0.5.0, when using the default setuid-root configuration, allows a local malicious user to escalate privileges to root by specifying video output paths in privileged locations.
Replaysorcery Project Replaysorcery
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started