CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 2CVE-2023-34965
https://notcve.org/view.php?id=CVE-2023-34965
13 Jun 2023 — SSPanel-Uim 2023.3 does not restrict access to the /link/ interface which can lead to a leak of user information. • https://github.com/AgentY0/CVE-2023-34965 • CWE-863: Incorrect Authorization •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3149
https://notcve.org/view.php?id=CVE-2005-3149
05 Oct 2005 — Uim 0.4.x before 0.4.9.1 and 0.5.0 and earlier does not properly handle the LIBUIM_VANILLA environment variable when a suid or sgid application is linked to libuim, such as immodule for Qt, which allows local users to gain privileges. • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=331620 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2005-0503
https://notcve.org/view.php?id=CVE-2005-0503
21 Feb 2005 — uim before 0.4.5.1 trusts certain environment variables when libUIM is used in setuid or setgid applications, which allows local users to gain privileges. • http://lists.freedesktop.org/archives/uim/2005-February/000996.html •