Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
acl vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2005-2700
ssl_engine_kernel.c in mod_ssl prior to 2.8.24, when using "SSLVerifyClient optional" in the global virtual host configuration, does not properly enforce "SSLVerifyClient require" in a per-location context, which allows remote malicious users to bypass intende...
Apache Http Server
Debian Debian Linux 3.1
Debian Debian Linux 3.0
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
605
VMScore
CVE-2010-2841
Unspecified vulnerability in Cisco Wireless LAN Controller (WLC) software 4.2 prior to 4.2.209.0; 4.2M prior to 4.2.207.54M; 5.0, 5.1, and 6.0 prior to 6.0.196.0; and 5.2 prior to 5.2.193.11 allows remote authenticated users to cause a denial of service (device reload) via crafte...
Cisco Wireless Lan Controller Software 4.2.174.0
Cisco Wireless Lan Controller Software 4.2.173.0
Cisco Wireless Lan Controller Software 4.2.130.0
Cisco Wireless Lan Controller Software 4.2.99.0
Cisco Wireless Lan Controller Software 4.0.217.0
Cisco Wireless Lan Controller Software 5.0.148.0
Cisco Wireless Lan Controller Software 5.0.148.2
Cisco Wireless Lan Controller Software 5.1
Cisco Wireless Lan Controller Software 5.1.151.0
Cisco Wireless Lan Controller Software 4.2.112.0
Cisco Wireless Lan Controller Software 4.2
Cisco Wireless Lan Controller Software 4.2m
Cisco Wireless Lan Controller Software 4.0.155.5
Cisco Wireless Lan Controller Software 4.0.219.0
Cisco Wireless Lan Controller Software 5.1.152.0
Cisco Wireless Lan Controller Software 6.0
Cisco Wireless Lan Controller Software 4.0.108
Cisco Wireless Lan Controller Software 4.0.155.0
Cisco Wireless Lan Controller Software 4.0.179.8
Cisco Wireless Lan Controller Software 4.0.196
Cisco Wireless Lan Controller Software 4.2.117.0
Cisco Wireless Lan Controller Software 4.2.176.0
446
VMScore
CVE-2020-35616
An issue exists in Joomla! 1.7.0 up to and including 3.9.22. Lack of input validation while handling ACL rulesets can cause write ACL violations.
Joomla Joomla\\!
NA
CVE-2021-28511
This advisory documents the impact of an internally found vulnerability in Arista EOS for security ACL bypass. The impact of this vulnerability is that the security ACL drop rule might be bypassed if a NAT ACL rule filter with permit action matches the packet flow. This could all...
Arista Eos
695
VMScore
CVE-2012-4425
libgio, when used in setuid or other privileged programs in spice-gtk and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: it could be argued that this is a vulnerability in the a...
Freedesktop Spice-gtk -
Gtk Libgio -
1 EDB exploit
641
VMScore
CVE-2018-20669
An issue where a provided address with access_ok() is not checked exists in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the Linux kernel up to and including 4.19.13. A local attacker can craft a malicious IOCTL function call to overwrite arbitrary ...
Linux Linux Kernel
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Cn1610 Firmware -
1 Article
NA
CVE-2023-1250
Improper Input Validation vulnerability in OTRS AG OTRS (ACL modules), OTRS AG ((OTRS)) Community Edition (ACL modules) allows Local Execution of Code. When creating/importing an ACL it was possible to inject code that gets executed via manipulated comments and ACL-names This iss...
Otrs Otrs
490
VMScore
CVE-2010-3707
plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x prior to 1.2.15 and 2.0.x prior to 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a directive to replace the permissions granted by another ACL entry, in certain circ...
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.7
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.13
Dovecot Dovecot 2.0.2
Dovecot Dovecot 2.0.1
Dovecot Dovecot 2.0.4
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.0
490
VMScore
CVE-2010-3706
plugins/acl/acl-backend-vfile.c in Dovecot 1.2.x prior to 1.2.15 and 2.0.x prior to 2.0.5 interprets an ACL entry as a directive to add to the permissions granted by another ACL entry, instead of a directive to replace the permissions granted by another ACL entry, in certain circ...
Dovecot Dovecot 1.2.6
Dovecot Dovecot 1.2.7
Dovecot Dovecot 1.2.4
Dovecot Dovecot 1.2.5
Dovecot Dovecot 1.2.13
Dovecot Dovecot 1.2.14
Dovecot Dovecot 1.2.2
Dovecot Dovecot 1.2.3
Dovecot Dovecot 1.2.11
Dovecot Dovecot 1.2.12
Dovecot Dovecot 1.2.0
Dovecot Dovecot 1.2.1
Dovecot Dovecot 1.2.8
Dovecot Dovecot 1.2.9
Dovecot Dovecot 1.2.10
Dovecot Dovecot 2.0.4
Dovecot Dovecot 2.0.1
Dovecot Dovecot 2.0.0
Dovecot Dovecot 2.0.3
Dovecot Dovecot 2.0.2
294
VMScore
CVE-2014-1264
Finder in Apple OS X prior to 10.9.2 does not ensure ACL integrity after the viewing of file ACL information, which allows local users to bypass intended access restrictions in opportunistic circumstances via standard filesystem operations on a file with a damaged ACL.
Apple Mac Os X
Apple Mac Os X 10.9
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »