-
Hi!
Currently, StackRox policies do not apply `allowPrivilegeEscalation` checks to init/ephemeral containers.
We request support for this setting to ensure privilege escalation restrictions are…
-
-
### NCC-E003660-WV3: Privilege Escalation via `nodes/proxy` Permission
This issue was reported in the [Kubernetes 1.24 Security Audit Report](https://github.com/kubernetes/sig-security/blob/main/sig-…
-
Hello,
On line 3 of kill.php you have
```
echo shell_exec("sudo ./smbkill ".$_GET['kill']." 2>&1");
```
This presents privilege escalation issues, like this:
GET /kill.php?kill=%26%26%20sudo%20in…
-
It's currently possible to update your own user data via PUT requests to `api/users/me`. The only requirement is that you have the Contributor role and be signed in. Once you meet those requirements y…
-
__Summary:__
A business logic flaw in influxdb allows users who own a valid allAccess token to escalate their privileges at operator level by listing current authorization tokens.
__Example Scenar…
-
I have been logging chat on my server and i have noticed some of my /root files written in chat log by some player while the folder was in /root/gtaserver (Yes, my bad, i ran the server as root in roo…
-
Hi,
When I tried to install ODFE in a single node, there is a task which fail:
`TASK [../roles/opendistro/opendistro-elasticsearch : RedHat/CentOS/Fedora | Add OpenDistro repo] *******
fatal: […
-
Please check and fix:
```
tk@bananapim3:~$ id
uid=1000(tk) gid=1000(tk) groups=1000(tk),20(dialout),27(sudo),29(audio),44(video),46(plugdev),108(netdev)
tk@bananapim3:~$ echo "rootmydevice" > /proc/s…
-
as demoed / discussed
DrTom updated
9 months ago