PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS
PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS RM3/CRS dispenser firmware (all versions up to and including 41128 1002 RM3_CRS.BTR + 170329 2332 RM3_CRS.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5 CMDv5 dispenser firmware (all versions up to and including 141128 1002 CD5_ATM.BTR + 170329 2332 CD5_ATM.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be...
7.2AI Score
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, policy-controller, supercronic, tekton-chains, stakater-reloader, hugo-extended, hubble, prometheus-alertmanager, vault, gitness, temporal,...
7.5AI Score
Vulnerabilities for packages: local-static-provisioner, kubernetes-csi-driver-hostpath, kubernetes, node-feature-discovery, ip-masq-agent, cluster-autoscaler, nodetaint, spark-operator, aws-ebs-csi-driver, kubernetes-dns-node-cache,...
3.8AI Score
0.0004EPSS
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
6.5AI Score
0.0004EPSS
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, stakater-reloader, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, dotnet, secrets-store-csi-driver-provider-gcp, gobuster, prometheus-bind-exporter,...
8.7AI Score
0.72EPSS
CVE-2024-24787 vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...
6.5AI Score
0.0004EPSS
GHSA-5FQ7-4MXC-535H vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...
7.5AI Score
CVE-2023-45285 vulnerabilities
Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...
8.2AI Score
0.001EPSS
CVE-2024-24786 vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, sigstore-scaffolding, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, policy-controller, supercronic, tekton-chains, stakater-reloader, hugo-extended, hubble, prometheus-alertmanager, vault, gitness, temporal,...
6.7AI Score
0.0004EPSS
CVE-2024-24784 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
6.5AI Score
0.0004EPSS
GHSA-RR6R-CFGF-GC6H vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score
GHSA-JJG7-2V4V-X38H vulnerabilities
Vulnerabilities for packages: kubeflow-jupyter-web-app, kubeflow-pipelines-visualization-server, kubeflow-katib, ggshield, kubeflow-volumes-web-app, py3-idna, confluent-docker-utils, datadog-agent, k8s-sidecar, kubeflow-pipelines, py3.10-tensorflow-core, dask-gateway, py3-cassandra-medusa, az,...
7.5AI Score
Vulnerabilities for packages: kubeflow-jupyter-web-app, kubeflow-pipelines-visualization-server, kubeflow-katib, ggshield, kubeflow-volumes-web-app, py3-idna, confluent-docker-utils, datadog-agent, k8s-sidecar, kubeflow-pipelines, py3.10-tensorflow-core, dask-gateway, py3-cassandra-medusa, az,...
6.5AI Score
GHSA-H75V-3VVJ-5MFJ vulnerabilities
Vulnerabilities for packages: pytorch, kubeflow-jupyter-web-app, superset, kubeflow-volumes-web-app, confluent-docker-utils, reflex,...
7.5AI Score
7.8AI Score
0.0004EPSS
7.5AI Score
CVE-2023-45288 vulnerabilities
Vulnerabilities for packages: vt-cli, sigstore-scaffolding, gitlab-runner, harbor-cli, opentofu, tekton-chains, harbor-scanner-trivy, spqr, render-template, kube-rbac-proxy, aactl, kubeflow-pipelines, nri-mysql, s5cmd, mkcert, wireguard-go, nuclei, kyverno-policy-reporter, minio,...
7AI Score
0.0004EPSS
GHSA-FGQ5-Q76C-GX78 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score
Vulnerabilities for packages: aws-efs-csi-driver, ip-masq-agent, cluster-autoscaler, nodetaint, prometheus-adapter, spark-operator, aws-ebs-csi-driver, kubernetes-dns-node-cache,...
8.9AI Score
0.001EPSS
GHSA-HQ6Q-C2X6-HMCH vulnerabilities
Vulnerabilities for packages: aws-efs-csi-driver, ip-masq-agent, cluster-autoscaler, nodetaint, prometheus-adapter, spark-operator, aws-ebs-csi-driver, kubernetes-dns-node-cache,...
7.5AI Score
CVE-2024-34064 vulnerabilities
Vulnerabilities for packages: pytorch, kubeflow-jupyter-web-app, superset, kubeflow-volumes-web-app, confluent-docker-utils, reflex,...
5.6AI Score
0.0004EPSS
GHSA-4V7X-PQXF-CX7M vulnerabilities
Vulnerabilities for packages: vt-cli, sigstore-scaffolding, gitlab-runner, harbor-cli, opentofu, tekton-chains, harbor-scanner-trivy, spqr, render-template, kube-rbac-proxy, aactl, kubeflow-pipelines, nri-mysql, s5cmd, mkcert, wireguard-go, nuclei, kyverno-policy-reporter, minio,...
7.5AI Score
GHSA-2JWV-JMQ4-4J3R vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...
7.5AI Score
GHSA-3Q2C-PVP5-3CQP vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score
GHSA-J6M3-GC37-6R6Q vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score
6.4AI Score
0.0004EPSS
GHSA-5F94-VHJQ-RPG8 vulnerabilities
Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...
7.5AI Score
GHSA-9F76-WG39-X86H vulnerabilities
Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...
7.5AI Score
CVE-2024-24783 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
6.5AI Score
0.0004EPSS
CVE-2024-24785 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
6.5AI Score
0.0004EPSS
GHSA-32CH-6X54-Q4H9 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
7.5AI Score
7.5AI Score
CVE-2023-39326 vulnerabilities
Vulnerabilities for packages: protoc-gen-go-grpc, metrics-server, cni-plugins, go-licenses, sops, configmap-reload, influx, aws-flb-cloudwatch, falco, cilium-envoy, petname, sbom-scorecard, local-path-provisioner, gosu, hey, cortex, docker-credential-ecr-login,...
7.4AI Score
0.001EPSS
GHSA-QPPJ-FM5R-HXR3 vulnerabilities
Vulnerabilities for packages: metrics-server, sigstore-scaffolding, gitlab-runner, opentofu, stakater-reloader, gitness, aws-efs-csi-driver, kubernetes-csi-node-driver-registrar, aactl, cluster-autoscaler, dotnet, secrets-store-csi-driver-provider-gcp, gobuster, prometheus-bind-exporter,...
7.5AI Score
CVE-2024-24788 vulnerabilities
Vulnerabilities for packages: flannel, metrics-server, vt-cli, gitlab-runner, configmap-reload, gostatsd, influx, harbor-cli, policy-controller, tekton-chains, mockery, mongo-tools, prometheus-alertmanager, gitness, aws-efs-csi-driver, boring-registry, step, harbor-scanner-trivy, mods, spqr,...
6.5AI Score
0.0004EPSS
CVE-2023-45290 vulnerabilities
Vulnerabilities for packages: vt-cli, metrics-server, cni-plugins, gitlab-runner, temporal-ui-server, configmap-reload, influx, opentofu, supercronic, mockery, yq, nri-rabbitmq, mongo-tools, stakater-reloader, prometheus-alertmanager, gitness, temporal, aws-efs-csi-driver,...
6.5AI Score
0.0004EPSS
GHSA-PXHW-596R-RWQ5 vulnerabilities
Vulnerabilities for packages: local-static-provisioner, kubernetes-csi-driver-hostpath, kubernetes, node-feature-discovery, ip-masq-agent, cluster-autoscaler, nodetaint, spark-operator, aws-ebs-csi-driver, kubernetes-dns-node-cache,...
7.5AI Score
GHSA-V845-JXX5-VC9F vulnerabilities
Vulnerabilities for packages: kubeflow-jupyter-web-app, kube-downscaler, kubeflow-volumes-web-app, k8s-sidecar, py3-urllib3,...
7.5AI Score
CVE-2023-43804 vulnerabilities
Vulnerabilities for packages: kubeflow-jupyter-web-app, kube-downscaler, kubeflow-volumes-web-app, k8s-sidecar, py3-urllib3,...
8AI Score
0.001EPSS
CVE-2022-3064 affecting package application-gateway-kubernetes-ingress 1.4.0-19
CVE-2022-3064 affecting package application-gateway-kubernetes-ingress 1.4.0-19. This CVE either no longer is or was never...
7.8AI Score
0.004EPSS
CVE-2021-4235 affecting package application-gateway-kubernetes-ingress 1.4.0-19
CVE-2021-4235 affecting package application-gateway-kubernetes-ingress 1.4.0-19. This CVE either no longer is or was never...
6.6AI Score
0.001EPSS
CVE-2023-44487 affecting package application-gateway-kubernetes-ingress for versions less than 1.4.0-15. A patched version of the package is...
8.2AI Score
0.72EPSS
6.2AI Score
0.019EPSS
ip172.ip-51-255-15.eu Cross Site Scripting vulnerability OBB-3932087
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...
6.2AI Score
6.9AI Score
0.019EPSS
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : Java (SUSE-SU-2024:1874-1)
The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:1874-1 advisory. This update for Java fixes thefollowing issues: apiguardian was updated to vesion 1.1.2: - Added...
8.1AI Score
7.1AI Score
0.008EPSS
CVE-2024-34008 moodle: CSRF risk in analytics management of models
Actions in the admin management of analytics models did not include the necessary token to prevent a CSRF...
6.9AI Score