CVE & Exploit Intelligence Database

CVE-2023-50328 3.7 LOW EPSS 0.00

IBM PowerSC 1.3, 2.0, and 2.1 may allow a remote attacker to view session identifiers passed via URL query strings. IBM X-Force ID: 275110.

CWE-598 Feb 02, 2024

CVE-2024-21626 8.6 HIGH EXPLOITED 19 PoCs Analysis EPSS 0.07

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process (from runc exec) to have a working directory in the host filesystem namespace, allowing for a container escape by giving access to the host filesystem ("attack 2"). The same attack could be used by a malicious image to allow a container process to gain access to the host filesystem through runc run ("attack 1"). Variants of attacks 1 and 2 could be also be used to overwrite semi-arbitrary host binaries, allowing for complete container escapes ("attack 3a" and "attack 3b"). runc 1.1.12 includes patches for this issue.

CWE-403 Jan 31, 2024

CVE-2023-7204 7.5 HIGH EPSS 0.00

The WP STAGING WordPress Backup plugin before 3.2.0 allows access to cache files during the cloning process which provides

CWE-668 Jan 29, 2024

CVE-2024-21597 5.3 MEDIUM EPSS 0.00

An Exposure of Resource to Wrong Sphere vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on MX Series allows an unauthenticated, network-based attacker to bypass the intended access restrictions. In an Abstracted Fabric (AF) scenario if routing-instances (RI) are configured, specific valid traffic destined to the device can bypass the configured lo0 firewall filters as it's received in the wrong RI context. This issue affects Juniper Networks Junos OS on MX Series: * All versions earlier than 20.4R3-S9; * 21.2 versions earlier than 21.2R3-S3; * 21.4 versions earlier than 21.4R3-S5; * 22.1 versions earlier than 22.1R3; * 22.2 versions earlier than 22.2R3; * 22.3 versions earlier than 22.3R2.

CWE-668 Jan 12, 2024

CVE-2024-0443 5.5 MEDIUM EPSS 0.00

A flaw was found in the blkgs destruction path in block/blk-cgroup.c in the Linux kernel, leading to a cgroup blkio memory leakage problem. When a cgroup is being destroyed, cgroup_rstat_flush() is only called at css_release_work_fn(), which is called when the blkcg reference count reaches 0. This circular dependency will prevent blkcg and some blkgs from being freed after they are made offline. This issue may allow an attacker with a local access to cause system instability, such as an out of memory error.

CWE-668 Jan 12, 2024

CVE-2024-20694 5.5 MEDIUM EPSS 0.01

Windows CoreMessaging Information Disclosure Vulnerability

CWE-668 Jan 09, 2024

CVE-2024-20692 5.7 MEDIUM EPSS 0.01

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

CWE-326 Jan 09, 2024

CVE-2023-48291 4.3 MEDIUM EPSS 0.00

Apache Airflow, in versions prior to 2.8.0, contains a security vulnerability that allows an authenticated user with limited access to some DAGs, to craft a request that could give the user write access to various DAG resources for DAGs that the user had no access to, thus, enabling the user to clear DAGs they shouldn't. This is a missing fix for CVE-2023-42792 in Apache Airflow 2.7.2  Users of Apache Airflow are strongly advised to upgrade to version 2.8.0 or newer to mitigate the risk associated with this vulnerability.

CWE-668 Dec 21, 2023

CVE-2023-49347 6.0 MEDIUM EPSS 0.00

Temporary data passed between application components by Budgie Extras Windows Previews could potentially be viewed or manipulated. The data is stored in a location that is accessible to any user who has local access to the system. Attackers may read private information from windows, present false information to users, or deny access to the application.

CWE-377 Dec 14, 2023

CVE-2023-49346 6.0 MEDIUM EPSS 0.00

Temporary data passed between application components by Budgie Extras WeatherShow applet could potentially be viewed or manipulated. The data is stored in a location that is accessible to any user who has local access to the system. Attackers may pre-create and control this file to present false information to users or deny access to the application and panel.

CWE-377 Dec 14, 2023

CVE-2023-49345 6.0 MEDIUM EPSS 0.00

Temporary data passed between application components by Budgie Extras Takeabreak applet could potentially be viewed or manipulated. The data is stored in a location that is accessible to any user who has local access to the system. Attackers may pre-create and control this file to present false information to users or deny access to the application and panel.

CWE-377 Dec 14, 2023

CVE-2023-49344 6.0 MEDIUM EPSS 0.00

Temporary data passed between application components by Budgie Extras Window Shuffler applet could potentially be viewed or manipulated. The data is stored in a location that is accessible to any user who has local access to the system. Attackers may pre-create and control this file to present false information to users or deny access to the application and panel.

CWE-377 Dec 14, 2023

CVE-2023-49343 6.0 MEDIUM EPSS 0.00

Temporary data passed between application components by Budgie Extras Dropby applet could potentially be viewed or manipulated. The data is stored in a location that is accessible to any user who has local access to the system. Attackers may pre-create and control this file to present false information to users or deny access to the application and panel.

CWE-337 Dec 14, 2023

CVE-2023-49342 6.0 MEDIUM EPSS 0.00

Temporary data passed between application components by Budgie Extras Clockworks applet could potentially be viewed or manipulated. The data is stored in a location that is accessible to any user who has local access to the system. Attackers may pre-create and control this file to present false information to users or deny access to the application and panel.

CWE-377 Dec 14, 2023

CVE-2023-41120 6.5 MEDIUM EPSS 0.00

An issue was discovered in EnterpriseDB Postgres Advanced Server (EPAS) before 11.21.32, 12.x before 12.16.20, 13.x before 13.12.16, 14.x before 14.9.0, and 15.x before 15.4.0. It permits an authenticated user to use DBMS_PROFILER to remove all accumulated profiling data on a system-wide basis, regardless of that user's permissions.

CWE-668 Dec 12, 2023

CVE-2023-39171 7.2 HIGH EPSS 0.00

SENEC Storage Box V1,V2 and V3 accidentially expose a management UI accessible with publicly known admin credentials.

CWE-668 Dec 07, 2023

CVE-2023-42718 5.5 MEDIUM EPSS 0.00

In dialer, there is a possible way to write permission usage records of an app due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CWE-668 Dec 04, 2023

CVE-2023-42717 7.5 HIGH EPSS 0.00

In telephony service, there is a possible missing permission check. This could lead to remote information disclosure no additional execution privileges needed

CWE-668 Dec 04, 2023

CVE-2023-42716 7.5 HIGH EPSS 0.00

In telephony service, there is a possible missing permission check. This could lead to remote information disclosure no additional execution privileges needed

CWE-668 Dec 04, 2023

CVE-2023-42715 5.5 MEDIUM EPSS 0.00

In telephony service, there is a possible missing permission check. This could lead to local information disclosure with no additional execution privileges needed

CWE-668 Dec 04, 2023