Vulnerabilities > Permissions, Privileges, and Access Controls
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-02-15 | CVE-2016-10089 | Permissions, Privileges, and Access Controls vulnerability in Nagios Nagios 4.3.2 and earlier allows local users to gain root privileges via a hard link attack on the Nagios init script file, related to CVE-2016-8641. | 7.8 |
| 2017-02-13 | CVE-2016-9366 | Permissions, Privileges, and Access Controls vulnerability in Moxa products An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. | 9.8 |
| 2017-02-13 | CVE-2016-9353 | Permissions, Privileges, and Access Controls vulnerability in Advantech Susiaccess 3.0 An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior. | 7.8 |
| 2017-02-13 | CVE-2016-9345 | Permissions, Privileges, and Access Controls vulnerability in Emerson Deltav 12.3/12.3.1/13.3 An issue was discovered in Emerson DeltaV Easy Security Management DeltaV V12.3, DeltaV V12.3.1, and DeltaV V13.3. | 6.8 |
| 2017-02-13 | CVE-2016-8363 | Permissions, Privileges, and Access Controls vulnerability in Moxa products An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127 Series, WAC-1001 V2 Series, WAC-2004 Series, AWK-3121-M12-RTG Series, AWK-3131-M12-RCC Series, AWK-5232-M12-RCC Series, TAP-6226 Series, AWK-3121/4121 Series, AWK-3131/4131 Series, and AWK-5222/6222 Series. | 10.0 |
| 2017-02-13 | CVE-2016-8357 | Permissions, Privileges, and Access Controls vulnerability in Lynxspring Jenesys BAS Bridge 1.1.8 An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. | 7.1 |
| 2017-02-13 | CVE-2016-8353 | Permissions, Privileges, and Access Controls vulnerability in Osisoft PI web API 2015 R2 1.5.1 An issue was discovered in OSIsoft PI Web API 2015 R2 (Version 1.5.1). | 6.4 |
| 2017-02-13 | CVE-2016-8659 | Permissions, Privileges, and Access Controls vulnerability in Bubblewrap Project Bubblewrap Bubblewrap before 0.1.3 sets the PR_SET_DUMPABLE flag, which might allow local users to gain privileges by attaching to the process, as demonstrated by sending commands to a PrivSep socket. | 7.0 |
| 2017-02-13 | CVE-2015-8768 | Permissions, Privileges, and Access Controls vulnerability in multiple products click/install.py in click does not require files in package filesystem tarballs to start with ./ (dot slash), which allows remote attackers to install an alternate security policy and gain privileges via a crafted package, as demonstrated by the test.mmrow app for Ubuntu phone. | 9.8 |
| 2017-02-09 | CVE-2016-8494 | Permissions, Privileges, and Access Controls vulnerability in Fortinet Connect Insufficient verification of uploaded files allows attackers with webui administrators privileges to perform arbitrary code execution by uploading a new webui theme. | 7.2 |