tor-consensus-checker NSE Script
Checks if a target is a known Tor node. The script works by querying the Tor directory authorities. Initially, the script stores all IPs of Tor nodes in a lookup table to reduce the number of requests and make lookups quicker. Script Arguments slaxml.debug See the documentation for the slaxml...
9.8CVSS
AI Score
0.973EPSS
[SECURITY] Fedora 20 Update: xen-4.3.4-4.fc20
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...
2.1AI Score
0.013EPSS
[SECURITY] Fedora 21 Update: xen-4.4.2-4.fc21
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...
2.1AI Score
0.013EPSS
The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 before 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to...
7.2AI Score
0.112EPSS
The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 before 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to...
7.4AI Score
0.112EPSS
The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 before 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to...
7.7AI Score
0.112EPSS
The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 before 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to...
7.2AI Score
0.112EPSS
SUSE SLES11 Security Update : xen (SUSE-SU-2014:1710-1)
xen was updated to fix 14 security issues : Guest effectable page reference leak in MMU_MACHPHYS_UPDATE handling (CVE-2014-9030). Insufficient bounding of 'REP MOVS' to MMIO emulated inside the hypervisor (CVE-2014-8867). Missing privilege level checks in x86 HLT, LGDT, LIDT, and...
8AI Score
0.006EPSS
SUSE SLES11 Security Update : xen (SUSE-SU-2014:1732-1)
xen was updated to fix 10 security issues : Guest effectable page reference leak in MMU_MACHPHYS_UPDATE handling (CVE-2014-9030). Insufficient bounding of 'REP MOVS' to MMIO emulated inside the hypervisor (CVE-2014-8867). Missing privilege level checks in x86 emulation of far ...
0.7AI Score
0.006EPSS
SUSE SLES10 Security Update : Xen (SUSE-SU-2014:1691-1)
Xen has been updated to fix six security issues : Guest effectable page reference leak in MMU_MACHPHYS_UPDATE handling (CVE-2014-9030). Insufficient bounding of 'REP MOVS' to MMIO emulated inside the hypervisor (CVE-2014-8867). Missing privilege level checks in x86 emulation of...
0.2AI Score
0.006EPSS
Dell Sonicwall GMS Virtual Appliance Multiple Remote Code Execution Vulnerabilities
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Dell SonicWALL Global Management System (GMS) virtual appliance. Authentication is required to exploit this vulnerability. The specific flaw exists within the GMS ViewPoint (GMSVP) web...
7.2AI Score
0.112EPSS
7.2AI Score
0.013EPSS
7.7AI Score
0.013EPSS
[SECURITY] Fedora 20 Update: xen-4.3.4-3.fc20
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...
2.1AI Score
0.013EPSS
[SECURITY] Fedora 21 Update: xen-4.4.2-3.fc21
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...
2.1AI Score
0.013EPSS
GLSA-201504-04 : Xen: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201504-04 (Xen: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact : A local attacker could possibly cause a Denial of...
0.5AI Score
0.013EPSS
7.7AI Score
0.013EPSS
7.2AI Score
0.013EPSS
[SECURITY] Fedora 20 Update: xen-4.3.4-2.fc20
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...
2.1AI Score
0.013EPSS
[SECURITY] Fedora 21 Update: xen-4.4.2-2.fc21
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...
2.1AI Score
0.013EPSS
Background Xen is a bare-metal hypervisor. Description Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below for details. Impact A local attacker could possibly cause a Denial of Service condition or obtain sensitive information. Workaround...
7.6AI Score
0.013EPSS
The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic...
4.8AI Score
0.003EPSS
Flash Player <= 16.0.0.296 Multiple Vulnerabilities (APSB15-04)
Versions of Adobe Flash player equal or prior to 16.0.0.296 are outdated and thus unpatched for the following vulnerabilities : Several use-after-free errors exist that allow arbitrary code execution. (CVE-2015-0313, CVE-2015-0315, CVE-2015-0320, CVE-2015-0322) Several memory corruption errors...
3.5AI Score
0.975EPSS
7.6AI Score
0.009EPSS
[SECURITY] Fedora 21 Update: xen-4.4.1-16.fc21
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...
2.1AI Score
0.009EPSS
[SECURITY] Fedora 20 Update: xen-4.3.3-12.fc20
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...
2.1AI Score
0.009EPSS
6.8AI Score
0.009EPSS
Security Advisory - Glibc Buffer Overflow Vulnerability
Huawei noticed that Qualys had disclosed the buffer overflow in the GNU C Library (glibc) on January 27th, 2015, Applications call various gethostbyname function are affected and attackers can exploit this vulnerability to perform remote code execution. (Vulnerability ID: HWPSIRT-2015-01045) This.....
8AI Score
0.975EPSS
openSUSE Security Update : xen (openSUSE-2015-129)
The XEN virtualization was updated to fix bugs and security issues : Security issues fixed: CVE-2015-0361: XSA-116: xen: xen crash due to use after free on hvm guest teardown CVE-2014-9065, CVE-2014-9066: XSA-114: xen: p2m lock starvation CVE-2014-9030: XSA-113: Guest effectable page reference...
8AI Score
0.009EPSS
Security update for xen (important)
The XEN virtualization was updated to fix bugs and security issues: Security issues fixed: CVE-2015-0361: XSA-116: xen: xen crash due to use after free on hvm guest teardown CVE-2014-9065, CVE-2014-9066: XSA-114: xen: p2m lock starvation CVE-2014-9030: XSA-113: Guest effectable page reference...
-0.2AI Score
0.009EPSS
openSUSE Security Update : xen (openSUSE-2015-113)
The virtualization software XEN was updated to version 4.3.3 and also to fix bugs and security issues. Security issues fixed: CVE-2015-0361: XSA-116: xen: xen crash due to use after free on hvm guest teardown CVE-2014-9065, CVE-2014-9066: XSA-114: xen: p2m lock starvation CVE-2014-9030: XSA-113:...
0.1AI Score
0.009EPSS
openSUSE: Security Advisory for xen (openSUSE-SU-2015:0226-1)
The remote host is missing an update for...
6.8AI Score
0.009EPSS
Security update for xen (important)
The virtualization software XEN was updated to version 4.3.3 and also to fix bugs and security issues. Security issues fixed: CVE-2015-0361: XSA-116: xen: xen crash due to use after free on hvm guest teardown CVE-2014-9065, CVE-2014-9066: XSA-114: xen: p2m lock starvation CVE-2014-9030:...
0.4AI Score
0.009EPSS
1.2AI Score
0.003EPSS
[SECURITY] [DSA 3140-1] xen security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Debian Security Advisory DSA-3140-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 27, 2015 http://www.debian.org/security/faq Package : xen CVE...
2.5AI Score
0.006EPSS
Debian DSA-3140-1 : xen - security update
Multiple security issues have been discovered in the Xen virtualisation solution which may result in denial of service, information disclosure or privilege escalation. CVE-2014-8594 Roger Pau Monne and Jan Beulich discovered that incomplete restrictions on MMU update hypercalls may ...
1AI Score
0.006EPSS
[SECURITY] [DSA 3140-1] xen security update
Debian Security Advisory DSA-3140-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 27, 2015 http://www.debian.org/security/faq Package : xen CVE ID : CVE-2014-8594 CVE-2014-8595...
6.8AI Score
0.006EPSS
Debian Security Advisory DSA 3140-1 (xen - security update)
Multiple security issues have been discovered in the Xen virtualisation solution which may result in denial of service, information disclosure or privilege escalation. CVE-2014-8594 Roger Pau Monne and Jan Beulich discovered that incomplete restrictions on MMU update hypercalls may result in...
0.8AI Score
0.006EPSS
Multiple security issues have been discovered in the Xen virtualisation solution which may result in denial of service, information disclosure or privilege escalation. CVE-2014-8594 Roger Pau Monne and Jan Beulich discovered that incomplete restrictions on MMU update hypercalls may result in...
3.8AI Score
0.006EPSS
6.7AI Score
0.006EPSS
ManageEngine Multiple Products Authenticated File Upload Exploit
This Metasploit module exploits a directory traversal vulnerability in ManageEngine ServiceDesk, AssetExplorer, SupportCenter and IT360 when uploading attachment files. The JSP that accepts the upload does not handle correctly '../' sequences, which can be abused to write in the file system....
-0.2AI Score
0.971EPSS
0.4AI Score
0.971EPSS
7.4AI Score
EPSS
6.8AI Score
0.009EPSS
7.5AI Score
0.009EPSS
[SECURITY] Fedora 20 Update: xen-4.3.3-9.fc20
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...
2.1AI Score
0.009EPSS
[SECURITY] Fedora 21 Update: xen-4.4.1-12.fc21
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen...
2.1AI Score
0.009EPSS
Security update for xen (important)
xen was updated to fix nine security issues. These security issues were fixed: - Guest affectable page reference leak in MMU_MACHPHYS_UPDATE handling (CVE-2014-9030). - Insufficient bounding of "REP MOVS" to MMIO emulated inside the hypervisor (CVE-2014-8867). - Excessive...
0.4AI Score
0.006EPSS
7.5AI Score
0.006EPSS
ManageEngine Multiple Products Authenticated File Upload
This module exploits a directory traversal vulnerability in ManageEngine ServiceDesk, AssetExplorer, SupportCenter and IT360 when uploading attachment files. The JSP that accepts the upload does not handle correctly '../' sequences, which can be abused to write to the file system. Authentication...
7AI Score