3 results (0.002 seconds)

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

Prezi Next 1.3.101.11 has a documented purpose of creating HTML5 presentations but has SE_DEBUG_PRIVILEGE on Windows, which might allow attackers to bypass intended access restrictions. Prezi Next 1.3.101.11 tiene el propósito documentado de crear presentaciones HTML5, pero tiene SE_DEBUG_PRIVILEGE en Windows, lo que podría permitir que los atacantes omitan las restricciones de acceso planeadas. • https://github.com/GitHubAssessments/CVE_Assessment_04_2018 •

CVSS: 10.0EPSS: 2%CPEs: 1EXPL: 0

The "me" user in NeXT NeXTstep 2.1 and earlier has wheel group privileges, which could allow the me user to use the su command to become root. • http://www.cert.org/advisories/CA-1991-06.html http://www.securityfocus.com/bid/20 https://exchange.xforce.ibmcloud.com/vulnerabilities/581 •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0

BuildDisk program on NeXT systems before 2.0 does not prompt users for the root password, which allows local users to gain root privileges. • http://ciac.llnl.gov/ciac/bulletins/b-01.shtml http://www.cert.org/advisories/CA-1990-06.html http://www.iss.net/security_center/static/7141.php http://www.securityfocus.com/bid/11 •