Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-03-02 | CVE-2015-7964 | Permissions, Privileges, and Access Controls vulnerability in Gemalto Safenet Authentication Service for NPS Agent SafeNet Authentication Service for NPS Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module. | 7.8 |
| 2018-03-02 | CVE-2015-7963 | Permissions, Privileges, and Access Controls vulnerability in Gemalto Safenet Authentication Service for AD FS Agent SafeNet Authentication Service for AD FS Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module. | 7.8 |
| 2018-03-02 | CVE-2015-7962 | Permissions, Privileges, and Access Controls vulnerability in Gemalto Safenet Authentication Service for Outlook web APP Agent SafeNet Authentication Service for Outlook Web App Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module. | 7.8 |
| 2018-03-02 | CVE-2015-7961 | Permissions, Privileges, and Access Controls vulnerability in Gemalto Safenet Authentication Service Remote web Workplace Agent SafeNet Authentication Service Remote Web Workplace Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module. | 7.8 |
| 2018-03-02 | CVE-2015-7598 | Permissions, Privileges, and Access Controls vulnerability in Gemalto Safenet Authentication Service Tokenvalidator Proxy Agent SafeNet Authentication Service TokenValidator Proxy Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module. | 7.8 |
| 2018-03-02 | CVE-2015-7597 | Permissions, Privileges, and Access Controls vulnerability in Gemalto Safenet Authentication Service IIS Agent SafeNet Authentication Service IIS Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module. | 7.8 |
| 2018-03-02 | CVE-2015-7596 | Permissions, Privileges, and Access Controls vulnerability in Gemalto Safenet Authentication Service END User Software Tools for Windows SafeNet Authentication Service End User Software Tools for Windows uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module. | 7.8 |
| 2018-03-02 | CVE-2018-7433 | Information Exposure Through Log Files vulnerability in Ithemes Security The iThemes Security plugin before 6.9.1 for WordPress does not properly perform data escaping for the logs page. | 7.5 |
| 2018-03-02 | CVE-2017-9280 | Information Exposure vulnerability in Netiq Identity Manager 4.5 Some NetIQ Identity Manager Applications before Identity Manager 4.5.6.1 included the session token in GET URLs, potentially allowing exposure of user sessions to untrusted third parties via proxies, referer urls or similar. | 7.5 |
| 2018-03-02 | CVE-2017-9279 | Improper Input Validation vulnerability in Netiq Identity Manager 4.5 NetIQ Identity Manager before 4.5.6.1 allowed uploading files with double extensions or non-image content in the Themes handling of the User Application Administration, allowing malicious user administrators to potentially execute code or mislead users. | 7.2 |