800xA, Control Software For AC 800M Security Vulnerabilities
CVE-2024-28147 Unrestricted Upload of Files in edu-sharing
An authenticated user can upload arbitrary files in the upload function for collection preview images. An attacker may upload an HTML file that includes malicious JavaScript code which will be executed if a user visits the direct URL of the collection preview image (Stored Cross Site...
EPSS
samsung-service-fehlersuche.samsung.de Cross Site Scripting vulnerability OBB-3936873
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
repositorio.uema.br Cross Site Scripting vulnerability OBB-3936872
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
novokosino.3dn.ru Cross Site Scripting vulnerability OBB-3936871
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
maxim-averin.ucoz.ru Cross Site Scripting vulnerability OBB-3936869
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
kprf35.ucoz.ru Cross Site Scripting vulnerability OBB-3936868
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
kino.trc-forum.ru Cross Site Scripting vulnerability OBB-3936867
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
archives.polemia.com Cross Site Scripting vulnerability OBB-3936863
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
1.mukcbs.org Cross Site Scripting vulnerability OBB-3936861
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
Chinese Cyber Espionage Targets Telecom Operators in Asia Since 2021
Cyber espionage groups associated with China have been linked to a long-running campaign that has infiltrated several telecom operators located in a single Asian country at least since 2021. "The attackers placed backdoors on the networks of targeted companies and also attempted to steal...
9.1CVSS
7.4AI Score
0.975EPSS
oriohome.gr Cross Site Scripting vulnerability OBB-3936859
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
TikTok facing fresh lawsuit in US over children’s privacy
The Federal Trade Commission (FTC) has announced it's referred a complaint against TikTok and parent company ByteDance to the Department of Justice. The investigation originally focused on Musical.ly which was acquired by ByteDance on November 10, 2017, and merged it into TikTok. The FTC started a....
6.8AI Score
Improper Input Validation vulnerability in Apache Superset, allows for an authenticated attacker to create a MariaDB connection with local_infile enabled. If both the MariaDB server (off by default) and the local mysql client on the web server are set to allow for local infile, it's possible for...
6.8CVSS
EPSS
Improper Input Validation vulnerability in Apache Superset, allows for an authenticated attacker to create a MariaDB connection with local_infile enabled. If both the MariaDB server (off by default) and the local mysql client on the web server are set to allow for local infile, it's possible for...
6.8CVSS
6.9AI Score
EPSS
Summary There is a vulnerability in jQuery used by IBM Decision Optimization for IBM Cloud Pak for Data. IBM Decision Optimization for IBM Cloud Pak for Data has addressed the applicable CVE. Vulnerability Details ** CVEID: CVE-2020-11022 DESCRIPTION: **jQuery is vulnerable to cross-site...
6.9CVSS
6.3AI Score
0.061EPSS
Summary There are vulnerabilities in IBM WebSphere Application Server Liberty related packages that are shipped with IBM TXSeries for Multiplatforms. The version of IBM WebSphere Application Server Liberty shipped with IBM TXSeries for Multiplatforms has been updated to address the applicable...
7.5CVSS
7AI Score
0.0004EPSS
Summary There is a vulnerability in jQuery used by IBM Decision Optimization for IBM Cloud Pak for Data. IBM Decision Optimization for IBM Cloud Pak for Data has addressed the applicable CVE. Vulnerability Details ** CVEID: CVE-2019-11358 DESCRIPTION: **jQuery, as used in Drupal core, is...
6.1CVSS
6.2AI Score
0.035EPSS
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: kubescape, minio, aws-ebs-csi-driver, flux-helm-controller, ip-masq-agent, kubernetes-dashboard, prometheus-pushgateway, skopeo, argo-cd, grafana, rqlite, spicedb, temporal-server, ctop, istio-cni, clusterctl, cri-tools, kor, kubernetes-csi-livenessprobe, trillian,...
7.5AI Score
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: minio, aws-ebs-csi-driver, flux-helm-controller, ip-masq-agent, kubernetes-dashboard, prometheus-pushgateway, kubebuilder, argo-cd, dataplaneapi, yam, rqlite, tailscale, petname, temporal-server, ctop, clusterctl, cri-tools, kor, aws-flb-firehose,...
7.8AI Score
0.0004EPSS
CVE-2024-27304 vulnerabilities
Vulnerabilities for packages: telegraf, amass, kube-bench, argo-workflows, ferretdb, kine, kots, caddy, vault, keda, step-ca, trillian, k3s, spicedb, temporal-server,...
9.8CVSS
9.7AI Score
0.0004EPSS
7.5AI Score
6.2CVSS
7.1AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
Vulnerabilities for packages: kubernetes, aws-ebs-csi-driver, ip-masq-agent, kubernetes-dns-node-cache, kubernetes-csi-driver-hostpath, spark-operator, calico, local-static-provisioner, node-feature-discovery, cluster-autoscaler,...
2.7CVSS
4.3AI Score
0.0004EPSS
7.5CVSS
7.7AI Score
0.001EPSS
7.5AI Score
7.5AI Score
7.2CVSS
7.3AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
6.3AI Score
0.0004EPSS
CVE-2024-25620 vulnerabilities
Vulnerabilities for packages: kubescape, chartmuseum, k9s, flux-helm-controller, eksctl, k8sgpt, kots, up, zot, cert-manager, trivy, helm-operator, cilium-cli, zarf, helm-push, flux-source-controller,...
6.4CVSS
6.7AI Score
0.0004EPSS
GHSA-R53H-JV2G-VPX6 vulnerabilities
Vulnerabilities for packages: kubescape, chartmuseum, k9s, flux-helm-controller, eksctl, k8sgpt, kots, up, zot, cert-manager, trivy, helm-operator, cilium-cli, zarf, helm-push, flux-source-controller,...
7.5AI Score
7.5AI Score
0.0004EPSS
8.9AI Score
0.0005EPSS
7.5AI Score
7.5AI Score
8.8CVSS
6.8AI Score
0.001EPSS
7.5AI Score
7.1AI Score
0.0004EPSS
7.2AI Score
0.0004EPSS
5.5CVSS
7.7AI Score
0.001EPSS
9.8CVSS
7.2AI Score
0.0004EPSS
7.5CVSS
7.8AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
7.5AI Score
7.5CVSS
7.1AI Score
0.002EPSS
9.8CVSS
7.7AI Score
0.001EPSS