Page 42 of 5009 results (0.028 seconds)

CVSS: 9.8EPSS: 0%CPEs: -EXPL: 1

Insecure permissions in contour v1.28.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token. • https://github.com/Abdurahmon3236/CVE-2024-36539 https://gist.github.com/HouqiyuA/c92f9ec979653dceeea947afd0b47a80 • CWE-277: Insecure Inherited Permissions •

CVSS: 8.4EPSS: 0%CPEs: -EXPL: 0

Insecure permissions in hwameistor v0.14.3 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token. • https://gist.github.com/HouqiyuA/0de688e6b874e480ddc1154350368450 • CWE-266: Incorrect Privilege Assignment •

CVSS: 9.8EPSS: 0%CPEs: -EXPL: 0

Insecure permissions in meshery v0.7.51 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token. • https://gist.github.com/HouqiyuA/2950c3993cdeff23afcbd73ba7a33879 • CWE-284: Improper Access Control •

CVSS: 9.8EPSS: 0%CPEs: -EXPL: 0

Insecure permissions in external-secrets v0.9.16 allows attackers to access sensitive data and escalate privileges by obtaining the service account's token. • https://gist.github.com/HouqiyuA/a4834f3c8450f9d89e2bc4d5c4beef6a •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0

The improper privilege management vulnerability in the Zyxel WBE660S firmware version 6.70(ACGG.3) and earlier versions could allow an authenticated user to escalate privileges and download the configuration files on a vulnerable device. • https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-improper-privilege-management-vulnerability-in-aps-07-23-2024 • CWE-269: Improper Privilege Management •