CVE-2018-15809
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-15809
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
AccuPOS 2017.8 is installed with the insecure "Authenticated Users: Modify" permission for files within the installation path. This may allow local attackers to compromise the integrity of critical resource and executable files.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
AccuPOS 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
AccuPOS是美国AccuPOS公司的一套零售系统。该系统具有订单管理、支付管理和库存管理等功能。 AccuPOS 2017.8版本中存在安全漏洞,该漏洞源于在安装时,程序在安装路径中为文件分配了不安全的‘Authenticated Users: Modify’权限。本地攻击者可利用该漏洞影响重要资源和可执行文件的完整性。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2018-15809
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-15809
请登录查看更多情报信息。
Other References for CVE-2018-15809 (1)
- https://versprite.com/advisories/accupos/x_refsource_MISC
Same Patch Batch · n/a · 2018-08-23 · 18 CVEs total
| CVE-2018-15804 | MapR Converged Data Platform和MapR-XD MapR文件系统安全漏洞 | |
| CVE-2018-15685 | GitHub Electron 安全漏洞 | |
| CVE-2018-15748 | Dell 2335dn Printer Firmware、Engine Firmware和Network Firmware安全漏洞 | |
| CVE-2018-1999047 | CloudBees Jenkins 安全漏洞 | |
| CVE-2018-1999046 | CloudBees Jenkins 信息泄露漏洞 | |
| CVE-2018-1999045 | CloudBees Jenkins 授权问题漏洞 | |
| CVE-2018-1999044 | CloudBees Jenkins 安全漏洞 | |
| CVE-2018-1999043 | CloudBees Jenkins 安全漏洞 | |
| CVE-2018-1999042 | CloudBees Jenkins 安全漏洞 | |
| CVE-2018-15822 | FFmpeg 安全漏洞 | |
| CVE-2018-1159 | Mikrotik RouterOS 安全漏洞 | |
| CVE-2018-1158 | Mikrotik RouterOS 资源管理错误漏洞 | |
| CVE-2018-1157 | Mikrotik RouterOS 安全漏洞 | |
| CVE-2018-1156 | Mikrotik RouterOS 缓冲区错误漏洞 | |
| CVE-2003-1605 | Haxx curl 信息泄露漏洞 | |
| CVE-2018-15808 | POSIM EVO for Windows 安全漏洞 | |
| CVE-2018-15807 | POSIM EVO for Windows 安全漏洞 |
IV. Related Vulnerabilities
V. Comments for CVE-2018-15809
No comments yet