Lucene search

K

BD Pyxis™ MedStation™ ES Server Security Vulnerabilities

wolfi
wolfi

CVE-2024-5629 vulnerabilities

Vulnerabilities for packages:...

4.7CVSS

7.2AI Score

0.0004EPSS

2024-06-16 03:20 PM
2
wolfi
wolfi

CVE-2023-39321 vulnerabilities

Vulnerabilities for packages:...

7.5CVSS

7.7AI Score

0.001EPSS

2024-06-16 03:20 PM
8
wolfi
wolfi

GHSA-892H-R6CR-53G4 vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
7
wolfi
wolfi

CVE-2023-6816 vulnerabilities

Vulnerabilities for packages:...

9.8CVSS

7.1AI Score

0.002EPSS

2024-06-16 03:20 PM
21
wolfi
wolfi

GHSA-W668-XCXF-V3GG vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
4
wolfi
wolfi

GHSA-VX3H-CJ8W-2H2C vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
6
wolfi
wolfi

GHSA-3FPG-J8CW-VCJQ vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
8
wolfi
wolfi

GHSA-MQQF-4P7R-RF89 vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
4
wolfi
wolfi

GHSA-Q6W6-RJJJ-5P52 vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
7
wolfi
wolfi

CVE-2024-29903 vulnerabilities

Vulnerabilities for packages: ko, zot, skaffold, goreleaser, neuvector-sigstore-interface, vexctl, aactl, falcoctl, melange, zarf, slsa-verifier, gitsign, apko, falco, flux-source-controller, spire-server, tekton-chains, tkn, wolfictl, policy-controller,...

4.2CVSS

4.6AI Score

0.0004EPSS

2024-06-16 03:20 PM
11
wolfi
wolfi

CVE-2023-39322 vulnerabilities

Vulnerabilities for packages:...

7.5CVSS

7.7AI Score

0.001EPSS

2024-06-16 03:20 PM
6
wolfi
wolfi

CVE-2024-21000 vulnerabilities

Vulnerabilities for packages:...

3.8CVSS

4.8AI Score

0.0004EPSS

2024-06-16 03:20 PM
wolfi
wolfi

CVE-2024-21015 vulnerabilities

Vulnerabilities for packages:...

5.5CVSS

6.3AI Score

0.0004EPSS

2024-06-16 03:20 PM
2
wolfi
wolfi

GHSA-2MPF-FQ5J-4HGP vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
1
wolfi
wolfi

GHSA-5V68-73XH-WCGW vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
wolfi
wolfi

GHSA-7JXX-P3JR-R2X9 vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
wolfi
wolfi

GHSA-R345-8C48-X279 vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
wolfi
wolfi

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: vault-k8s, mods, kube-bench, crossplane-provider-aws, smarter-device-manager, node-feature-discovery, prometheus-alertmanager, spicedb, trust-manager, cadvisor, direnv, skaffold, loki, src-fingerprint, external-secrets-operator, aactl, nats-server, falcoctl,...

6.5AI Score

0.0004EPSS

2024-06-16 03:20 PM
17
wolfi
wolfi

GHSA-236W-P7WF-5PH8 vulnerabilities

Vulnerabilities for packages: node-feature-discovery, prometheus-alertmanager, cadvisor, restic, metrics-server, postgres-operator, mc, sigstore-scaffolding, slsa-verifier, gitsign, nsc, govulncheck, kubernetes-dashboard, kubeadm-controlplane-controller, secrets-store-csi-driver-provider-aws,...

7.5AI Score

2024-06-16 03:20 PM
2
wolfi
wolfi

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: fq, vault-k8s, kube-bench, smarter-device-manager, envoy-ratelimit, consul, prometheus-alertmanager, nri-rabbitmq, cadvisor, datadog-agent, direnv, goreleaser, skaffold, loki, tctl, src-fingerprint, nats-server, temporal-server, yam, metrics-server, nri-kafka,...

5.9AI Score

0.0004EPSS

2024-06-16 03:20 PM
17
wolfi
wolfi

CVE-2024-21664 vulnerabilities

Vulnerabilities for packages: minio, vexctl, falco, boring-registry, external-secrets-operator, tekton-chains, spire-server, falcoctl, istio-operator, istio-pilot-discovery, mc, kubescape, istio-cni, istio-pilot-agent, kyverno,...

7.5CVSS

6.1AI Score

0.001EPSS

2024-06-16 03:20 PM
7
wolfi
wolfi

GHSA-VV9M-32RR-3G55 vulnerabilities

Vulnerabilities for packages: kind, metrics-server,...

7.5AI Score

2024-06-16 03:20 PM
3
wolfi
wolfi

GHSA-PVCR-V8J8-J5Q3 vulnerabilities

Vulnerabilities for packages: minio, vexctl, falco, boring-registry, external-secrets-operator, tekton-chains, spire-server, falcoctl, istio-operator, istio-pilot-discovery, mc, kubescape, istio-cni, istio-pilot-agent, kyverno,...

7.5AI Score

2024-06-16 03:20 PM
2
wolfi
wolfi

GHSA-MR45-RX8Q-WCM9 vulnerabilities

Vulnerabilities for packages: minio, nats-server, telegraf, k3s,...

7.5AI Score

2024-06-16 03:20 PM
4
wolfi
wolfi

CVE-2024-27454 vulnerabilities

Vulnerabilities for packages: py3-orjson,...

7.5CVSS

7.7AI Score

0.0004EPSS

2024-06-16 03:20 PM
11
wolfi
wolfi

GHSA-3RQ5-2G8H-59HC vulnerabilities

Vulnerabilities for packages: py3-dnspython,...

7.5AI Score

2024-06-16 03:20 PM
3
wolfi
wolfi

GHSA-PWR2-4V36-6QPR vulnerabilities

Vulnerabilities for packages: py3-orjson,...

7.5AI Score

2024-06-16 03:20 PM
5
wolfi
wolfi

GHSA-44WM-F244-XHP3 vulnerabilities

Vulnerabilities for packages: pytorch, py3-pillow,...

7.5AI Score

2024-06-16 03:20 PM
4
wolfi
wolfi

GHSA-9V7R-X7CV-V437 vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
10
wolfi
wolfi

CVE-2024-21009 vulnerabilities

Vulnerabilities for packages:...

4.9CVSS

6AI Score

0.0004EPSS

2024-06-16 03:20 PM
wolfi
wolfi

CVE-2024-21054 vulnerabilities

Vulnerabilities for packages:...

4.9CVSS

6AI Score

0.0004EPSS

2024-06-16 03:20 PM
wolfi
wolfi

CVE-2024-21087 vulnerabilities

Vulnerabilities for packages:...

4.9CVSS

6AI Score

0.0004EPSS

2024-06-16 03:20 PM
wolfi
wolfi

GHSA-26MF-52P6-23PQ vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
wolfi
wolfi

GHSA-3VX9-2CH5-M6R6 vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
wolfi
wolfi

GHSA-JFV3-GH3J-C5R7 vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
wolfi
wolfi

CVE-2024-0409 vulnerabilities

Vulnerabilities for packages:...

7.8CVSS

7.1AI Score

0.0004EPSS

2024-06-16 03:20 PM
6
wolfi
wolfi

GHSA-RCJ8-JX65-7C4R vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
8
wolfi
wolfi

CVE-2024-0229 vulnerabilities

Vulnerabilities for packages:...

7.8CVSS

7.1AI Score

0.0004EPSS

2024-06-16 03:20 PM
6
wolfi
wolfi

GHSA-2X93-8973-5MGQ vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-16 03:20 PM
4
wolfi
wolfi

CVE-2024-31083 vulnerabilities

Vulnerabilities for packages:...

7.8CVSS

7.1AI Score

0.0004EPSS

2024-06-16 03:20 PM
5
cve
cve

CVE-2024-38460

In SonarQube before 10.4 and 9.9.4 LTA, encrypted values generated using the Settings Encryption feature are potentially exposed in cleartext as part of the URL parameters in the logs (such as SonarQube Access Logs, Proxy Logs,...

4.9CVSS

7AI Score

EPSS

2024-06-16 03:15 PM
nvd
nvd

CVE-2024-38460

In SonarQube before 10.4 and 9.9.4 LTA, encrypted values generated using the Settings Encryption feature are potentially exposed in cleartext as part of the URL parameters in the logs (such as SonarQube Access Logs, Proxy Logs,...

4.9CVSS

EPSS

2024-06-16 03:15 PM
cvelist
cvelist

CVE-2024-38462

iRODS before 4.3.2 provides an msiSendMail function with a problematic dependency on the mail binary, such as in the mailMS.cpp#L94-L106...

EPSS

2024-06-16 12:00 AM
cvelist
cvelist

CVE-2024-38460

In SonarQube before 10.4 and 9.9.4 LTA, encrypted values generated using the Settings Encryption feature are potentially exposed in cleartext as part of the URL parameters in the logs (such as SonarQube Access Logs, Proxy Logs,...

4.9CVSS

EPSS

2024-06-16 12:00 AM
krebs
krebs

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider, a cybercrime group suspected of hacking into Twilio, LastPass, DoorDash, Mailchimp, and nearly 130 other organizations over the past two years. The Spanish daily Murcia Today...

7.8AI Score

2024-06-15 11:40 PM
2
githubexploit
githubexploit

Exploit for OS Command Injection in Php

CVE-2024-4577 In PHP when using Apache and PHP-CGI on...

9.8CVSS

8.7AI Score

0.932EPSS

2024-06-15 06:05 PM
23
thn
thn

Grandoreiro Banking Trojan Hits Brazil as Smishing Scams Surge in Pakistan

Pakistan has become the latest target of a threat actor called the Smishing Triad, marking the first expansion of its footprint beyond the E.U., Saudi Arabia, the U.A.E., and the U.S. "The group's latest tactic involves sending malicious messages on behalf of Pakistan Post to customers of mobile...

7AI Score

2024-06-15 09:51 AM
10
cve
cve

CVE-2024-4258

The Video Gallery – YouTube Playlist, Channel Gallery by YotuWP plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.13 via the settings parameter. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the...

9.8CVSS

9.8AI Score

0.001EPSS

2024-06-15 09:15 AM
10
cve
cve

CVE-2024-4551

The Video Gallery – YouTube Playlist, Channel Gallery by YotuWP plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.13 via the display function. This makes it possible for authenticated attackers, with contributor access and higher, to include and...

6.4CVSS

6.8AI Score

0.0004EPSS

2024-06-15 09:15 AM
6
nvd
nvd

CVE-2024-4551

The Video Gallery – YouTube Playlist, Channel Gallery by YotuWP plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.13 via the display function. This makes it possible for authenticated attackers, with contributor access and higher, to include and...

6.4CVSS

0.0004EPSS

2024-06-15 09:15 AM
2
Total number of security vulnerabilities434322