Vulnerabilities > Permissions, Privileges, and Access Controls
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-22 | CVE-2016-1579 | Permissions, Privileges, and Access Controls vulnerability in Canonical Ubuntu Download Manager UDM provides support for running commands after a download is completed, this is currently made use of for click package installation. | 7.5 |
| 2019-04-22 | CVE-2015-1341 | Permissions, Privileges, and Access Controls vulnerability in Canonical Apport and Ubuntu Linux Any Python module in sys.path can be imported if the command line of the process triggering the coredump is Python and the first argument is -m in Apport before 2.19.2 function _python_module_path. | 7.2 |
| 2019-04-22 | CVE-2015-1327 | Permissions, Privileges, and Access Controls vulnerability in Canonical Ubuntu Linux 15.04 Content Hub before version 0.0+15.04.20150331-0ubuntu1.0 DBUS API only requires a file path for a content item, it doesn't actually require the confined app have access to the file to create a transfer. | 4.3 |
| 2019-04-22 | CVE-2019-11244 | Permissions, Privileges, and Access Controls vulnerability in Kubernetes In Kubernetes v1.8.x-v1.14.x, schema info is cached by kubectl in the location specified by --cache-dir (defaulting to $HOME/.kube/http-cache), written with world-writeable permissions (rw-rw-rw-). | 1.9 |
| 2019-04-09 | CVE-2019-0796 | Permissions, Privileges, and Access Controls vulnerability in Microsoft products An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. | 2.1 |
| 2019-04-09 | CVE-2019-0731 | Permissions, Privileges, and Access Controls vulnerability in Microsoft products An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. | 4.6 |
| 2019-04-09 | CVE-2019-0730 | Permissions, Privileges, and Access Controls vulnerability in Microsoft products An elevation of privilege vulnerability exists when Windows improperly handles calls to the LUAFV driver (luafv.sys), aka 'Windows Elevation of Privilege Vulnerability'. | 4.6 |
| 2019-04-05 | CVE-2019-10885 | Permissions, Privileges, and Access Controls vulnerability in Ivanti Workspace Control An issue was discovered in Ivanti Workspace Control before 10.3.90.0. | 4.6 |
| 2019-03-23 | CVE-2015-3965 | Permissions, Privileges, and Access Controls vulnerability in Pfizer Symbiq Infusion System Firmware 3.13 Hospira Symbiq Infusion System 3.13 and earlier allows remote authenticated users to trigger "unanticipated operations" by leveraging "elevated privileges" for an unspecified call to an incorrectly exposed function. | 9.0 |
| 2019-03-21 | CVE-2016-9166 | Permissions, Privileges, and Access Controls vulnerability in Microfocus Netiq Edirectory 9.0 NetIQ eDirectory versions prior to 9.0.2, under some circumstances, could be susceptible to downgrade of communication security. | 7.5 |