CVE-2024-3375

CRITICAL Year: 2024
CVSS v3 Score
9.4
Critical
Weakness Type
CWE-732
View all →

Vulnerability Description

Incorrect Permission Assignment for Critical Resource vulnerability in Havelsan Inc. Dialogue allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Dialogue: from v1.83 before v1.83.1 or v1.84.

Related Vulnerabilities

CVE-2020-12041

CRITICAL
CVSS:9.4(Critical)

The Baxter Spectrum WBM (v17, v20D29, v20D30, v20D31, and v22D24) telnet Command-Line Interface, grants access to sensitive data stored on the WBM that permits temporary configuration changes to netwo...

CWE-7322020

CVE-2020-8768

CRITICAL
CVSS:9.4(Critical)

An issue was discovered on Phoenix Contact Emalytics Controller ILC 2050 BI before 1.2.3 and BI-L before 1.2.3 devices. There is an insecure mechanism for read and write access to the configuration of...

CWE-7322020

CVE-2018-3974

CRITICAL
CVSS:9.3(Critical)

An exploitable local privilege elevation vulnerability exists in the file system permissions of GOG Galaxy's install directory. An attacker can overwrite an executable that is launched as a system ser...

CWE-7322018

CVE-2018-4049

CRITICAL
CVSS:9.3(Critical)

An exploitable local privilege elevation vulnerability exists in the file system permissions of GOG Galaxy's “Games” directory, version 1.2.48.36 (Windows 64-bit Installer). An attacker can overwrite ...

CWE-7322018

CVE-2016-5202

CRITICAL
CVSS:9.1(Critical)

browser/extensions/api/dial/dial_registry.cc in Google Chrome before 54.0.2840.98 on macOS, before 54.0.2840.99 on Windows, and before 54.0.2840.100 on Linux neglects to copy a device ID before an era...

CWE-7322016

CVE-2017-7337

CRITICAL
CVSS:9.1(Critical)

An improper Access Control vulnerability in Fortinet FortiPortal versions 4.0.0 and below allows an attacker to interact with unauthorized VDOMs or enumerate other ADOMs via another user's stolen sess...

CWE-7322017