Vulmon
Recent Vulnerabilities
Trends
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
unprivileged vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2017-12582
Unprivileged user can access all functions in the Surveillance Station component in QNAP TS212P devices with firmware 4.2.1 build 20160601. Unprivileged user cannot login at front end but with that unprivileged user SID, all function can access at Surveillance Station....
Qnap
Ts-212p Firmware
NA
CVE-2020-5291
Bubblewrap (bwrap) before version 0.4.1, if installed in setuid mode and the kernel supports unprivileged user namespaces, then the `bwrap --userns2` option can be used to make the setuid process keep running as root while being traceable. This can in turn be used to gain root...
Projectatomic
Bubblewrap
Archlinux
Arch Linux
Centos
Debian
Debian Linux
215
VMScore
CVE-2000-0881
The dccscan setuid program in LPPlus does not properly check if the user has the permissions to print the file that is specified to dccscan, which allows local users to print arbitrary files....
Plus Technologies
Lpplus
1 EDB exploit available
641
VMScore
CVE-2017-16834
PNP4Nagios through 0.6.26 has /usr/bin/npcd and npcd.cfg owned by an unprivileged account but root code execution depends on these files, which allows local users to gain privileges by leveraging access to this unprivileged account....
Pnp4nagios
187
VMScore
CVE-2017-2328
An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unprivileged, authenticated, user to elevate their permissions through reading unprivileged information stored in the NorthStar controller....
Juniper
Northstar Controller
641
VMScore
CVE-2018-10361
An issue was discovered in KTextEditor 5.34.0 through 5.45.0. Insecure handling of temporary files in the KTextEditor's kauth_ktexteditor_helper service (as utilized in the Kate text editor) can allow other unprivileged users on the local system to gain root privileges. The...
Kde
Ktexteditor
1000
VMScore
CVE-2017-5689
An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged...
Intel
Active Management Technology Firmware
1 EDB exploit available
1 Metasploit module available
1 Nmap script available
33 Github repositories available
9 Articles available
NA
CVE-2019-14345
TemaTres 3.0 allows remote unprivileged users to create an administrator account...
Vocabularyserver
Tematres
1 EDB exploit available
578
VMScore
CVE-2013-4404
cumin in Red Hat Enterprise MRG Grid 2.4 does not properly enforce user roles, which allows remote authenticated users to bypass intended role restrictions and obtain sensitive information or perform privileged operations via unspecified vectors....
Redhat
Enterprise Mrg
320
VMScore
CVE-2018-1799
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could allow a local unprivileged user to overwrite files on the system which could cause damage to the database. IBM X-Force ID: 149429....
Ibm
Db2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-11061
mods for hesk
CVE-2020-8193
remote attackers
CVE-2020-8558
reflected XSS
CVE-2020-7693
administrator privileges
mods-for-hesk
CVE-2020-15526
CVE-2020-7457
1
2
3
4
5
NEXT »
Vulmon