Fallos del tipo CWE-281
210 resultadosCVE-2024-52869MEDIUMCertain Teradata account-handling code through 2024-11-04, used with SUSE Enterprise Linux Server, mismanages groups. Specifically, when theEPSS 0.2%CVE-2023-32388—A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in watchOS 9.5, macOS Ventura 13.4, EPSS 0.2%CVE-2024-40805HIGHA permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.EPSS 0.2%CVE-2025-31184HIGHThis issue was addressed with improved permissions checking. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.EPSS 0.2%CVE-2024-22121MEDIUMZabbix Agent MSI Installer Allows Non-Admin User to Access Change Option via msiexec.exeEPSS 0.2%CVE-2022-31237LOWDell PowerScale OneFS, versions 9.2.0 up to and including 9.2.1.12 and 9.3.0.5 contain an improper preservation of permissions vulnerabilityEPSS 0.2%CVE-2023-32400—This issue was addressed with improved checks. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, macOS Ventura 13.4. EntitlementEPSS 0.2%CVE-2023-28646MEDIUMApp lockout in nextcloud Android app can be bypassed via thirdparty appsEPSS 0.2%CVE-2020-15113MEDIUMImproper Preservation of Permissions in etcdEPSS 0.2%CVE-2024-40821HIGHAn access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS VEPSS 0.2%CVE-2025-30449HIGHA permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS VenturEPSS 0.2%CVE-2022-31608HIGHNVIDIA GPU Display Driver for Linux contains a vulnerability in an optional D-Bus configuration file, where a local user with basic capabiliEPSS 0.2%CVE-2022-4326MEDIUMTrellix xAgent permission bypass vulnerabilityEPSS 0.2%CVE-2023-1386LOWQemu: 9pfs: suid/sgid bits not dropped on file writeEPSS 0.2%CVE-2024-12125HIGH3scale-porta: readonly fields not validated server-sideEPSS 0.2%CVE-2022-44020MEDIUMAn issue was discovered in OpenStack Sushy-Tools through 0.21.0 and VirtualBMC through 2.2.2. Changing the boot device configuration with thEPSS 0.2%CVE-2024-54484MEDIUMThe issue was resolved by sanitizing logging. This issue is fixed in macOS Sequoia 15.2. An app may be able to access user-sensitive data.EPSS 0.2%CVE-2022-21203HIGHImproper permissions in the SafeNet Sentinel driver for Intel(R) Quartus(R) Prime Standard Edition before version 21.1 may allow an authentiEPSS 0.2%CVE-2024-40811HIGHThe issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6. An app may be able to modify protected parts of the EPSS 0.2%CVE-2024-50929MEDIUMInsecure permissions in Silicon Labs (SiLabs) Z-Wave Series 700 and 800 v7.21.1 allow attackers to arbitrarily change the device type in theEPSS 0.2%