Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
superuser vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2022-25804
An issue exists in the IGEL Universal Management Suite (UMS) 6.07.100. Insecure permissions for the serverconfig registry key (under JavaSoft\Prefs\de\igel\rm\config in HKEY_LOCAL_MACHINE\SOFTWARE) allow an unprivileged local malicious user to read the encrypted dbuser and dbpass...
Igel Universal Management Suite 6.07.100
NA
CVE-2013-1903
PostgreSQL, possibly 9.2.x prior to 9.2.4, 9.1.x prior to 9.1.9, 9.0.x prior to 9.0.13, 8.4.x prior to 8.4.17, and 8.3.x prior to 8.3.23 incorrectly provides the superuser password to scripts related to "graphical installers for Linux and Mac OS X," which has unspecifie...
Postgresql Postgresql 9.2.3
Postgresql Postgresql 9.2.2
Postgresql Postgresql 9.2.1
Postgresql Postgresql 9.2
Postgresql Postgresql 9.1.3
Postgresql Postgresql 9.1.6
Postgresql Postgresql 9.1.7
Postgresql Postgresql 9.1.4
Postgresql Postgresql 9.1.1
Postgresql Postgresql 9.1.5
Postgresql Postgresql 9.1
Postgresql Postgresql 9.1.8
Postgresql Postgresql 9.1.2
Postgresql Postgresql 9.0.12
Postgresql Postgresql 9.0
Postgresql Postgresql 9.0.5
Postgresql Postgresql 9.0.3
Postgresql Postgresql 9.0.6
Postgresql Postgresql 9.0.4
Postgresql Postgresql 9.0.1
Postgresql Postgresql 9.0.2
Postgresql Postgresql 9.0.10
9.8
CVSSv3
CVE-2021-43035
An issue exists in Kaseya Unitrends Backup Appliance prior to 10.5.5. Two unauthenticated SQL injection vulnerabilities were discovered, allowing arbitrary SQL queries to be injected and executed under the postgres superuser account. Remote code execution was possible, leading to...
Kaseya Unitrends Backup
NA
CVE-2015-4544
EMC Documentum Content Server prior to 7.1P20 and 7.2.x prior to 7.2P04 does not properly verify authorization for dm_job object access, which allows remote authenticated users to obtain superuser privileges via crafted object operations. NOTE: this vulnerability exists because o...
Emc Documentum Content Server 7.2
Emc Documentum Content Server 7.1
NA
CVE-2004-0308
Unknown vulnerability in Cisco ONS 15327 prior to 4.1(3), ONS 15454 prior to 4.6(1), ONS 15454 SD prior to 4.1(3), and Cisco ONS15600 prior to 1.3(0) allows a superuser whose account is locked out, disabled, or suspended to gain unauthorized access via a Telnet connection to the ...
Cisco Optical Networking Systems Software 4.0.0
Cisco Optical Networking Systems Software 4.1.0
Cisco Optical Networking Systems Software 4.5
Cisco Optical Networking Systems Software 4.0\\(1\\)
Cisco Optical Networking Systems Software 4.0\\(2\\)
Cisco Optical Networking Systems Software 4.1\\(0\\)
Cisco Optical Networking Systems Software 4.1\\(1\\)
Cisco Optical Networking Systems Software 4.1\\(3\\)
Cisco Optical Networking Systems Software 1.0
Cisco Optical Networking Systems Software 4.1\\(2\\)
9.8
CVSSv3
CVE-2018-1822
IBM FlashSystem 900 product GUI allows a specially crafted attack to bypass the authentication requirements of the system, resulting in the ability to remotely change the superuser password. This can be used by an malicious user to gain administrative control or to deny service. ...
Ibm Flashsystem 900 Firmware 1.4
Ibm Flashsystem 840 Firmware 1.4
NA
CVE-2003-0985
The mremap system call (do_mremap) in Linux kernel 2.4.x prior to 2.4.21, and possibly other versions prior to 2.4.24, does not properly perform bounds checks, which allows local users to cause a denial of service and possibly gain privileges by causing a remapping of a virtual m...
Linux Linux Kernel 2.4.0
Linux Linux Kernel 2.4.15
Linux Linux Kernel 2.4.16
Linux Linux Kernel 2.4.18
Linux Linux Kernel 2.4.19
Linux Linux Kernel 2.4.21
Linux Linux Kernel 2.4.22
Linux Linux Kernel 2.4.9
Linux Linux Kernel 2.4.1
Linux Linux Kernel 2.4.10
Linux Linux Kernel 2.4.17
Linux Linux Kernel 2.4.2
Linux Linux Kernel 2.4.23
Linux Linux Kernel 2.4.3
Linux Linux Kernel 2.4.13
Linux Linux Kernel 2.4.14
Linux Linux Kernel 2.4.7
Linux Linux Kernel 2.4.8
Linux Linux Kernel 2.4.11
Linux Linux Kernel 2.4.12
Linux Linux Kernel 2.4.20
Linux Linux Kernel 2.4.4
3 EDB exploits
NA
CVE-2007-0528
The admin web console implemented by the Centrality Communications (aka Aredfox) PA168 chipset and firmware 1.54 and previous versions, as provided by various IP phones, does not require passwords or authentication tokens when using HTTP, which allows remote malicious users to co...
Centrality Communications Pa168 Chipset
1 EDB exploit
NA
CVE-2014-86123
Core Security Technologies Advisory - Multiple vulnerabilities have been found in the FreeBSD kernel code that implements the vt console driver (previously known as Newcons) and the code that implements SCTP sockets. These vulnerabilities could allow local unprivileged attackers ...
NA
CVE-2007-3723
The process scheduler in the Sun Solaris kernel does not make use of the process statistics kept by the kernel and performs scheduling based upon CPU billing gathered from periodic process sampling ticks, which allows local users to cause a denial of service (CPU consumption), as...
Sun Solaris
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »