Search
Total
6 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-36372 | 1 Apache | 1 Ozone | 2021-11-20 | 7.5 HIGH | 9.8 CRITICAL |
| In Apache Ozone versions prior to 1.2.0, Initially generated block tokens are persisted to the metadata database and can be retrieved with authenticated users with permission to the key. Authenticated users may use them even after access is revoked. | |||||
| CVE-2020-24361 | 1 Snmptt | 1 Snmptt | 2020-10-02 | 7.5 HIGH | 9.8 CRITICAL |
| SNMPTT before 1.4.2 allows attackers to execute shell code via EXEC, PREXEC, or unknown_trap_exec. | |||||
| CVE-2011-3350 | 1 Marmaro | 1 Masqmail | 2019-12-03 | 7.5 HIGH | 9.8 CRITICAL |
| masqmail 0.2.21 through 0.2.30 improperly calls seteuid() in src/log.c and src/masqmail.c that results in improper privilege dropping. | |||||
| CVE-2011-2921 | 1 Ktsuss Project | 1 Ktsuss | 2019-11-21 | 10.0 HIGH | 9.8 CRITICAL |
| ktsuss versions 1.4 and prior has the uid set to root and does not drop privileges prior to executing user specified commands, which can result in command execution with root privileges. | |||||
| CVE-2012-1187 | 1 Bitlbee | 1 Bitlbee | 2019-10-31 | 7.5 HIGH | 9.8 CRITICAL |
| Bitlbee does not drop extra group privileges correctly in unix.c | |||||
| CVE-2017-6972 | 2 Alienvault, Nfsen | 3 Ossim, Unified Security Management, Nfsen | 2019-10-03 | 10.0 HIGH | 9.8 CRITICAL |
| AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 have an error in privilege dropping and unnecessarily execute the NfSen Perl code as root, aka AlienVault ID ENG-104945, a different vulnerability than CVE-2017-6970 and CVE-2017-6971. | |||||