Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
superuser vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-45899
An issue in the component SuperUserSetuserModuleFrontController:init() of idnovate superuser before v2.4.2 allows malicious users to bypass authentication via a crafted HTTP call.
Idnovate Superuser
5
CVSSv2
CVE-2013-6768
Untrusted search path vulnerability in the CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.2.x and previous versions allows malicious users to trigger the launch of a Trojan horse app_process program via a crafted PATH environment variable for a /system/xbi...
Koushik Dutta Superuser 1.0.2.1
10
CVSSv2
CVE-2013-6769
The CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android allows malicious users to gain privileges via shell metacharacters in the -c option to /system/xbin/su.
Koushik Dutta Superuser 1.0.2.1
7.6
CVSSv2
CVE-2013-6770
The CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.3 and 4.4 does not properly restrict the set of users who can execute /system/xbin/su with the --daemon option, which allows malicious users to gain privileges by leveraging ADB shell access and a certain ...
Koushik Dutta Superuser 1.0.2.1
Google Android 4.4
10
CVSSv2
CVE-2013-6774
Untrusted search path vulnerability in the ChainsDD Superuser package 3.1.3 for Android 4.2.x and previous versions, CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.2.x and previous versions, and Chainfire SuperSU package prior to 1.69 for Android 4.2.x and...
Chainfire Supersu 1.69
Androidsu Chainsdd Superuser 3.1.3
Koushik Dutta Superuser 1.0.2.1
5
CVSSv2
CVE-2018-7745
An issue exists in Western Bridge Cobub Razor 0.7.2. Authentication is not required for /index.php?/install/installation/createuserinfo requests, resulting in account creation.
Cobub Razor 0.7.2
1 EDB exploit
10
CVSSv2
CVE-2013-6775
The Chainfire SuperSU package prior to 1.69 for Android allows malicious users to gain privileges via the (1) backtick or (2) $() type of shell metacharacters in the -c option to /system/xbin/su.
Chainfire Supersu 1.69
10
CVSSv2
CVE-2001-0008
Backdoor account in Interbase database server allows remote malicious users to overwrite arbitrary files using stored procedures.
Firebirdsql Firebird
Borland Software Interbase 5.0
Borland Software Interbase 6.0
Borland Software Interbase 4.0
1 EDB exploit
NA
CVE-2022-2568
A privilege escalation flaw was found in the Ansible Automation Platform. This flaw allows a remote authenticated user with 'change user' permissions to modify the account settings of the superuser account and also remove the superuser privileges.
Redhat Ansible Automation Platform 2.1
Redhat Ansible Automation Platform 2.2
Redhat Ansible Automation Platform 2.0
6.8
CVSSv2
CVE-2008-6532
Multiple cross-site request forgery (CSRF) vulnerabilities in the update feature in Drupal 5.x prior to 5.13 and 6.x prior to 6.7 allow remote malicious users to perform unauthorized actions as the superuser via unspecified vectors, as demonstrated by causing the superuser to &qu...
Drupal Drupal 5.7
Drupal Drupal 5.6
Drupal Drupal 6.0
Drupal Drupal 6.1
Drupal Drupal 5.11
Drupal Drupal 5.10
Drupal Drupal 5.3
Drupal Drupal 5.2
Drupal Drupal 6.4
Drupal Drupal 6.5
Drupal Drupal 6.6
Drupal Drupal 5.12
Drupal Drupal 5.5
Drupal Drupal 5.4
Drupal Drupal 6.2
Drupal Drupal 6.3
Drupal Drupal 5.9
Drupal Drupal 5.8
Drupal Drupal 5.1
Drupal Drupal 5.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »