Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
superuser vulnerabilities and exploits
(subscribe to this query)
552
VMScore
CVE-2020-25584
In FreeBSD 13.0-STABLE before n245118, 12.2-STABLE before r369552, 11.4-STABLE before r369560, 13.0-RC5 before p1, 12.2-RELEASE before p6, and 11.4-RELEASE before p9, a superuser inside a FreeBSD jail configured with the non-default allow.mount permission could cause a race condi...
Freebsd Freebsd
Freebsd Freebsd 11.4
Freebsd Freebsd 12.2
Freebsd Freebsd 13.0
801
VMScore
CVE-2017-7220
OpenText Documentum Content Server allows superuser access via sys_obj_save or save of a crafted object, followed by an unauthorized "UPDATE dm_dbo.dm_user_s SET user_privileges=16" command, aka an "RPC save-commands" attack. NOTE: this vulnerability exists be...
Opentext Documentum Content Server -
187
VMScore
CVE-2007-3724
The process scheduler in the Microsoft Windows XP kernel does not make use of the process statistics kept by the kernel, performs scheduling based on CPU billing gathered from periodic process sampling ticks, and gives preference to "interactive" processes that perform ...
Microsoft Windows Xp
312
VMScore
CVE-2004-1865
Cross-site scripting (XSS) vulnerability in the administration panel in bBlog 0.7.2 allows remote authenticated users with superuser privileges to inject arbitrary web script or HTML via a blog name ($blogname). NOTE: if administrators are normally allowed to add HTML by other me...
Bblog Bblog 0.7.2
NA
CVE-2023-25149
TimescaleDB, an open-source time-series SQL database, has a privilege escalation vulnerability in versions 2.8.0 up to and including 2.9.2. During installation, TimescaleDB creates a telemetry job that is runs as the installation user. The queries run as part of the telemetry dat...
Timescale Timescaledb
NA
CVE-2023-3939
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in ZkTeco-based OEM devices allows OS Command Injection. Since all the found command implementations are executed from the superuser, their impact is the maximum pos...
725
VMScore
CVE-2000-0993
Format string vulnerability in pw_error function in BSD libutil library allows local users to gain root privileges via a malformed password in commands such as chpass or passwd.
Freebsd Freebsd 3.4
Freebsd Freebsd 3.5
Openbsd Openbsd 2.5
Openbsd Openbsd 2.6
Freebsd Freebsd 4.0
Netbsd Netbsd 1.4
Openbsd Openbsd 2.7
Netbsd Netbsd 1.4.1
Netbsd Netbsd 1.4.2
Freebsd Freebsd 3.2
Freebsd Freebsd 3.3
Openbsd Openbsd 2.3
Openbsd Openbsd 2.4
1 EDB exploit
NA
CVE-2023-41118
An issue exists in EnterpriseDB Postgres Advanced Server (EPAS) prior to 11.21.32, 12.x prior to 12.16.20, 13.x prior to 13.12.16, 14.x prior to 14.9.0, and 15.x prior to 15.4.0. It may allow an authenticated user to bypass authorization requirements and access underlying impleme...
Enterprisedb Postgres Advanced Server
668
VMScore
CVE-2001-0668
Buffer overflow in line printer daemon (rlpdaemon) in HP-UX 10.01 up to and including 11.11 allows remote malicious users to execute arbitrary commands.
Hp Hp-ux 10.01
Hp Hp-ux 10.10
Hp Hp-ux 10.20
Hp Hp-ux 11.00
Hp Hp-ux 11.11
605
VMScore
CVE-2010-0668
Unspecified vulnerability in MoinMoin 1.5.x up to and including 1.7.x, 1.8.x prior to 1.8.7, and 1.9.x prior to 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or...
Moinmo Moinmoin 1.8.1
Moinmo Moinmoin 1.8.2
Moinmo Moinmoin 1.5.0
Moinmo Moinmoin 1.5.3
Moinmo Moinmoin 1.6.0
Moinmo Moinmoin 1.7.0
Moinmo Moinmoin 1.7.2
Moinmo Moinmoin 1.7.3
Moinmo Moinmoin 1.8.3
Moinmo Moinmoin 1.8.4
Moinmo Moinmoin 1.5.4
Moinmo Moinmoin 1.5.5
Moinmo Moinmoin 1.8.6
Moinmo Moinmoin 1.5.1
Moinmo Moinmoin 1.5.5a
Moinmo Moinmoin 1.5.6
Moinmo Moinmoin 1.6.1
Moinmo Moinmoin 1.6.2
Moinmo Moinmoin 1.9.0
Moinmo Moinmoin 1.9.1
Moinmo Moinmoin 1.8.0
Moinmo Moinmoin 1.5.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »