Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sorcery vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-11052
In Sorcery prior to 0.15.0, there is a brute force vulnerability when using password authentication via Sorcery. The brute force protection submodule will prevent a brute force attack for the defined lockout period, but once expired, protection will not be re-enabled until a user...
Sorcery Project Sorcery
7.2
CVSSv2
CVE-2021-36983
replay-sorcery-kms in Replay Sorcery 0.6.0 allows a local malicious user to gain root privileges via a symlink attack on /tmp/replay-sorcery or /tmp/replay-sorcery/device.sock.
Replaysorcery Project Replaysorcery 0.6.0
7.2
CVSSv2
CVE-2021-26936
The replay-sorcery program in ReplaySorcery 0.4.0 up to and including 0.5.0, when using the default setuid-root configuration, allows a local malicious user to escalate privileges to root by specifying video output paths in privileged locations.
Replaysorcery Project Replaysorcery
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started