Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2020-28392

A vulnerability has been identified in SIMARIS configuration (All versions < V4.0.1). During installation to default target folder, incorrect permissions are configured for the application folder and subfolders which could allow an attacker to gain persistence or potentially escalate privileges should a user with elevated credentials log onto the machine.

CVE
Open in Source
#vulnerability#mac#pdf

%PDF-1.5 %���� 1 0 obj << /D [2 0 R /XYZ 70.866 771.024 null] >> endobj 3 0 obj << /D [2 0 R /XYZ 70.866 646.963 null] >> endobj 4 0 obj << /D [2 0 R /XYZ 70.866 473.966 null] >> endobj 5 0 obj << /D [2 0 R /XYZ 70.866 372.92 null] >> endobj 6 0 obj << /D [7 0 R /XYZ 85.039 618.089 null] >> endobj 8 0 obj << /D [7 0 R /XYZ 70.866 350.755 null] >> endobj 9 0 obj << /S /GoTo /D [2 0 R /Fit] >> endobj 2 0 obj << /Contents 10 0 R /Type /Page /Resources 11 0 R /Parent 12 0 R /Annots [13 0 R 14 0 R 15 0 R 16 0 R 17 0 R 18 0 R] /MediaBox [0 0 595.276 841.89] >> endobj 13 0 obj << /A << /S /URI /Type /Action /URI (https://support.industry.siemens.com/cs/ww/en/view/109740118/) >> /C [0 1 1] /Subtype /Link /Type /Annot /H /I /Border [0 0 0] /Rect [303.117 499.366 518.276 510.783] >> endobj 15 0 obj << /A << /S /URI /Type /Action /URI (https://www.siemens.com/cert/operational-guidelines-industrial-security) >> /C [0 1 1] /Subtype /Link /Type /Annot /H /I /Border [0 0 0] /Rect [164.798 280.968 487.754 292.504] >> endobj 16 0 obj << /A << /S /URI /Type /Action /URI (https://www.siemens.com/industrialsecurity) >> /C [0 1 1] /Subtype /Link /Type /Annot /H /I /Border [0 0 0] /Rect [406.699 251.199 525.406 262.616] >> endobj 18 0 obj << /A << /S /URI /Type /Action /URI (https://www.first.org/cvss/) >> /C [0 1 1] /Subtype /Link /Type /Annot /H /I /Border [0 0 0] /Rect [131.954 93.078 248.203 104.614] >> endobj 11 0 obj << /ProcSet [/PDF /Text] /Font << /F52 19 0 R /F49 20 0 R >> >> endobj 10 0 obj << /Filter /FlateDecode /Length 2988 >> stream xڵZKs�8��W�25TՈƛ@j/ۙ�l^K��T2��e�P����Ϳ��K"%ZaJ��D$4������e��߮~�_]�e*P�D� F�"���8���"���l���ј�2�e��1��m�,^�F�B��uD�ϝ��U�ئ����z�G����_�� �B(�xS�����`�~PD� v��*`�F�Qx.��տ��3��vdj�b."$�9��E*f{��?��F��q�A\EXH��d+�ysj�<�d��<��nK���r��8�L�� a.�L׵^��T{��H6dnQ��O��y�������"]�ߖ�"�z�4�%�HyGB�A�C#��Y�A�B�����Y���:/a��XA9�����Y�Ġ�$��:g�F�Q�������/Rve���ˈ��0nB��u��’�٩��H����g���x��!0�s�ka\��7�� Bd�����Xq �G?�G1�����Q�pk��S+�`�m�do�%#!A�#�’�c *sa��K�Ǝy�,�(c�Fq��ŝ�۪��n৑��@�Ͱ��’���q�f3;���>��ԙK7iYib�C�� �}!��X��) ��� ]�je�I� NmH=���q��’?�?����pAA��X����1�Ž���(��A����ڐ�pf��}�T��O�4��Y��f޼=�� -f�����=�^�s�����v��f��~y�0=�����)�z�r�%�Jk�Ƒ���ȖnɲFͣ�zR������=TY���/�[�bvk��>?id-+n��� /$-W |�6���<�P5���P{�{C� ���B�CA���۷w7���AT�2`f QD���)���s�ka�i��1����ͼ����������"���5���-��� �"� �F�!��S���Z�qW���w����=1����Q�xj�D���{���d��0rNt� C�2���8���Q�C�4�r՚F��9;���,xj�ǭ�)6qJ#�\�4yzaHii�1���n�#����(�+$�(p%��w%# c/tE ��u=�0��L�c �(�!�����ag��e�{����mg�`�І����.�0�̻���M+�C��� E �Y��+,w0 !���&Eq��\V���R�",#ۯ|o�����m�cOVvJ�g��u��N�q�kM�K̃vF���gE SY���4����u��lJGu�|��֍�D��FJ�Q�X ��H�uZ_�v����C�(���Y��?�m3�K�id�]c�b�0�ׯ{�o���I�k �r� ˏt��\��L�~Ā�c��m��?’�i<~��#EDQ�U�!���x��<�A����3�� �]���+"�����(ʻj��Χ�MF ��k���!L��� ��C-��=���auc����V��9w��W)�zi��M���}�i�Իz��T�֕�’e] 5��`j��S��� `Ž���n6�7׹�+�!&�۪ �@vT\����M ,�ʪna��r���1G(�e�`�2�$�s@�v��kB3�l����ߎ '#L�����SO���0��{�����&�*��g��A�ρ�uS�X�M��%u~�_W��|S�6f+f�� Ŧ�͖��m,u��krC�VҾtk?ؘ�����ܩ�(��l�J��N\x�b�W4��A4����

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE