How severe is CVE-2024-12786?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.8 out of 10.

What type of vulnerability is CVE-2024-12786?

This is classified as CWE-266, which is a common weakness in software security.

CVE-2024-12786

HIGH Year: 2024

CVSS v3 Score

7.8

High

CVSS v2 Score

6.8

Medium

Weakness Type

CWE-266

View all →

Vulnerability Description

A vulnerability, which was classified as critical, was found in X1a0He Adobe Downloader up to 1.3.1 on macOS. Affected is the function shouldAcceptNewConnection of the file com.x1a0he.macOS.Adobe-Downloader.helper of the component XPC Service. The manipulation leads to improper privilege management. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. This product is not affiliated with the company Adobe.

CVE-2016-7066

HIGH

CVSS:7.8(High)

It was found that the improper default permissions on /tmp/auth directory in JBoss Enterprise Application Platform before 7.1.0 can allow any local user to connect to CLI and allow the user to execute...

CWE-2662016

CVE-2017-12711

HIGH

CVSS:7.8(High)

An Incorrect Privilege Assignment issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. A built-in user account has been granted a sensitive privilege that may allow a user to e...

CWE-2662017

CVE-2019-19345

HIGH

CVSS:7.8(High)

A vulnerability was found in all openshift/mediawiki-apb 4.x.x versions prior to 4.3.0, where an insecure modification vulnerability in the /etc/passwd file was found in the container openshift/mediaw...

CWE-2662019

CVE-2019-19349

HIGH

CVSS:7.8(High)

An insecure modification vulnerability in the /etc/passwd file was found in the container operator-framework/operator-metering as shipped in Red Hat Openshift 4. An attacker with access to the contain...

CWE-2662019

CVE-2019-19350

HIGH

CVSS:7.8(High)

An insecure modification vulnerability in the /etc/passwd file was found in the openshift/ansible-service-broker as shipped in Red Hat Openshift 4 and 3.11. An attacker with access to the container co...

CWE-2662019

CVE-2019-19354

HIGH

CVSS:7.8(High)

An insecure modification vulnerability in the /etc/passwd file was found in the operator-framework/hadoop as shipped in Red Hat Openshift 4. An attacker with access to the container could use this fla...

CWE-2662019

CVE-2024-12786

Vulnerability Description

Related Vulnerabilities

CVE-2016-7066

CVE-2017-12711

CVE-2019-19345

CVE-2019-19349

CVE-2019-19350

CVE-2019-19354