Lucene search

K

KDDI +Message App For Android And For IOS, NTT DOCOMO +Message App For Android And For IOS, And SoftBank +Message App For Android And For IOS Security Vulnerabilities

redhatcve
redhatcve

CVE-2021-47592

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix tc flower deletion for VLAN priority Rx steering To replicate the issue:- 1) Add 1 flower filter for VLAN Priority based frame steering:- $ IFDEVNAME=eth0 $ tc qdisc add dev $IFDEVNAME ingress $ tc qdisc add dev...

6.8AI Score

0.0004EPSS

2024-06-20 10:53 AM
redhatcve
redhatcve

CVE-2021-47591

In the Linux kernel, the following vulnerability has been resolved: mptcp: remove tcp ulp setsockopt support TCP_ULP setsockopt cannot be used for mptcp because its already used internally to plumb subflow (tcp) sockets to the mptcp layer. syzbot managed to trigger a crash for mptcp connections...

7.1AI Score

0.0004EPSS

2024-06-20 10:53 AM
redhatcve
redhatcve

CVE-2021-47590

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix deadlock in __mptcp_push_pending() __mptcp_push_pending() may call mptcp_flush_join_list() with subflow socket lock held. If such call hits mptcp_sockopt_sync_all() then subsequently __mptcp_sockopt_sync() could try to.....

7.1AI Score

0.0004EPSS

2024-06-20 10:53 AM
openbugbounty
openbugbounty

attackpoint.org Cross Site Scripting vulnerability OBB-3936889

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:53 AM
1
openbugbounty
openbugbounty

arizonatreeoflife.com Cross Site Scripting vulnerability OBB-3936887

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:52 AM
2
openbugbounty
openbugbounty

allwatchesen.com Cross Site Scripting vulnerability OBB-3936883

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:51 AM
1
openbugbounty
openbugbounty

adil93.org Cross Site Scripting vulnerability OBB-3936881

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:50 AM
2
openbugbounty
openbugbounty

agpsamara.ru Cross Site Scripting vulnerability OBB-3936882

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:50 AM
1
thn
thn

Tool Overload: Why MSPs Are Still Drowning with Countless Cybersecurity Tools in 2024

Highlights Complex Tool Landscape: Explore the wide array of cybersecurity tools used by MSPs, highlighting the common challenge of managing multiple systems that may overlap in functionality but lack integration. Top Cybersecurity Challenges: Discuss the main challenges MSPs face, including...

7AI Score

2024-06-20 10:49 AM
4
openbugbounty
openbugbounty

visitevirtuelle.sevre-nantaise.com Cross Site Scripting vulnerability OBB-3936879

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:48 AM
1
openbugbounty
openbugbounty

sovetsk-ruo.ucoz.ru Cross Site Scripting vulnerability OBB-3936874

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:47 AM
2
openbugbounty
openbugbounty

static4.museoreinasofia.es Cross Site Scripting vulnerability OBB-3936875

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:47 AM
2
cvelist
cvelist

CVE-2024-28147 Unrestricted Upload of Files in edu-sharing

An authenticated user can upload arbitrary files in the upload function for collection preview images. An attacker may upload an HTML file that includes malicious JavaScript code which will be executed if a user visits the direct URL of the collection preview image (Stored Cross Site...

EPSS

2024-06-20 10:46 AM
1
openbugbounty
openbugbounty

samsung-service-fehlersuche.samsung.de Cross Site Scripting vulnerability OBB-3936873

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:46 AM
3
openbugbounty
openbugbounty

repositorio.uema.br Cross Site Scripting vulnerability OBB-3936872

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:46 AM
1
openbugbounty
openbugbounty

novokosino.3dn.ru Cross Site Scripting vulnerability OBB-3936871

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:45 AM
3
openbugbounty
openbugbounty

mobile.060608.it Cross Site Scripting vulnerability OBB-3936870

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:45 AM
openbugbounty
openbugbounty

maxim-averin.ucoz.ru Cross Site Scripting vulnerability OBB-3936869

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:44 AM
2
openbugbounty
openbugbounty

kprf35.ucoz.ru Cross Site Scripting vulnerability OBB-3936868

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:40 AM
2
openbugbounty
openbugbounty

kino.trc-forum.ru Cross Site Scripting vulnerability OBB-3936867

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:40 AM
2
openbugbounty
openbugbounty

job.bham.pl Cross Site Scripting vulnerability OBB-3936866

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:39 AM
openbugbounty
openbugbounty

blog.promopult.ru Cross Site Scripting vulnerability OBB-3936865

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:38 AM
openbugbounty
openbugbounty

archives.polemia.com Cross Site Scripting vulnerability OBB-3936863

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:38 AM
2
openbugbounty
openbugbounty

1.mukcbs.org Cross Site Scripting vulnerability OBB-3936861

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:37 AM
2
thn
thn

Chinese Cyber Espionage Targets Telecom Operators in Asia Since 2021

Cyber espionage groups associated with China have been linked to a long-running campaign that has infiltrated several telecom operators located in a single Asian country at least since 2021. "The attackers placed backdoors on the networks of targeted companies and also attempted to steal...

9.1CVSS

7.4AI Score

0.975EPSS

2024-06-20 10:22 AM
6
openbugbounty
openbugbounty

oriohome.gr Cross Site Scripting vulnerability OBB-3936859

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently...

6.2AI Score

2024-06-20 10:20 AM
2
malwarebytes
malwarebytes

TikTok facing fresh lawsuit in US over children’s privacy

The Federal Trade Commission (FTC) has announced it's referred a complaint against TikTok and parent company ByteDance to the Department of Justice. The investigation originally focused on Musical.ly which was acquired by ByteDance on November 10, 2017, and merged it into TikTok. The FTC started a....

6.8AI Score

2024-06-20 09:58 AM
1
redhatcve
redhatcve

CVE-2024-28863

node-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no limit on the number of sub-folders created in the folder creation process. An attacker who generates a large number of sub-folders can consume memory on the system running node-tar and even crash the Node.js client within few...

6.5CVSS

6.7AI Score

0.0004EPSS

2024-06-20 09:51 AM
githubexploit
githubexploit

Exploit for CVE-2024-36527

CVE-2024-36527 PoC and Bulk Scanner...

6.9AI Score

0.0004EPSS

2024-06-20 09:42 AM
3
nvd
nvd

CVE-2024-34693

Improper Input Validation vulnerability in Apache Superset, allows for an authenticated attacker to create a MariaDB connection with local_infile enabled. If both the MariaDB server (off by default) and the local mysql client on the web server are set to allow for local infile, it's possible for...

6.8CVSS

EPSS

2024-06-20 09:15 AM
3
cve
cve

CVE-2024-34693

Improper Input Validation vulnerability in Apache Superset, allows for an authenticated attacker to create a MariaDB connection with local_infile enabled. If both the MariaDB server (off by default) and the local mysql client on the web server are set to allow for local infile, it's possible for...

6.8CVSS

6.9AI Score

EPSS

2024-06-20 09:15 AM
3
ibm
ibm

Security Bulletin: IBM Decision Optimization for Cloud Pak for Data is vulnerable to a remote attacker (CVE-2020-11022)

Summary There is a vulnerability in jQuery used by IBM Decision Optimization for IBM Cloud Pak for Data. IBM Decision Optimization for IBM Cloud Pak for Data has addressed the applicable CVE. Vulnerability Details ** CVEID: CVE-2020-11022 DESCRIPTION: **jQuery is vulnerable to cross-site...

6.9CVSS

6.3AI Score

0.061EPSS

2024-06-20 09:12 AM
6
ibm
ibm

Security Bulletin: Due to the use of IBM Websphere Application Server Liberty, IBM TXSeries for Multiplatforms is vulnerable to a Denial of Service.

Summary There are vulnerabilities in IBM WebSphere Application Server Liberty related packages that are shipped with IBM TXSeries for Multiplatforms. The version of IBM WebSphere Application Server Liberty shipped with IBM TXSeries for Multiplatforms has been updated to address the applicable...

7.5CVSS

7AI Score

0.0004EPSS

2024-06-20 09:09 AM
3
ibm
ibm

Security Bulletin: IBM Decision Optimization for Cloud Pak for Data is vulnerable to a remote attacker (CVE-2019-11358)

Summary There is a vulnerability in jQuery used by IBM Decision Optimization for IBM Cloud Pak for Data. IBM Decision Optimization for IBM Cloud Pak for Data has addressed the applicable CVE. Vulnerability Details ** CVEID: CVE-2019-11358 DESCRIPTION: **jQuery, as used in Drupal core, is...

6.1CVSS

6.2AI Score

0.035EPSS

2024-06-20 09:08 AM
6
wolfi
wolfi

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: kubescape, minio, aws-ebs-csi-driver, flux-helm-controller, ip-masq-agent, kubernetes-dashboard, prometheus-pushgateway, skopeo, argo-cd, grafana, rqlite, spicedb, temporal-server, ctop, istio-cni, clusterctl, cri-tools, kor, kubernetes-csi-livenessprobe, trillian,...

7.5AI Score

2024-06-20 09:08 AM
165
wolfi
wolfi

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: minio, aws-ebs-csi-driver, flux-helm-controller, ip-masq-agent, kubernetes-dashboard, prometheus-pushgateway, kubebuilder, argo-cd, dataplaneapi, yam, rqlite, tailscale, petname, temporal-server, ctop, clusterctl, cri-tools, kor, aws-flb-firehose,...

7.8AI Score

0.0004EPSS

2024-06-20 09:08 AM
178
wolfi
wolfi

CVE-2024-27304 vulnerabilities

Vulnerabilities for packages: telegraf, amass, kube-bench, argo-workflows, ferretdb, kine, kots, caddy, vault, keda, step-ca, trillian, k3s, spicedb, temporal-server,...

9.8CVSS

9.7AI Score

0.0004EPSS

2024-06-20 09:08 AM
114
wolfi
wolfi

GHSA-X32M-MVFJ-52XV vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-20 09:08 AM
75
wolfi
wolfi

CVE-2023-38470 vulnerabilities

Vulnerabilities for packages:...

6.2CVSS

7.1AI Score

0.0004EPSS

2024-06-20 09:08 AM
160
wolfi
wolfi

GHSA-5QM6-J92F-79JP vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-20 09:08 AM
155
wolfi
wolfi

GHSA-JM46-725R-HH9V vulnerabilities

Vulnerabilities for packages: python,...

7.5AI Score

2024-06-20 09:08 AM
88
wolfi
wolfi

CVE-2024-3177 vulnerabilities

Vulnerabilities for packages: kubernetes, aws-ebs-csi-driver, ip-masq-agent, kubernetes-dns-node-cache, kubernetes-csi-driver-hostpath, spark-operator, calico, local-static-provisioner, node-feature-discovery, cluster-autoscaler,...

2.7CVSS

4.3AI Score

0.0004EPSS

2024-06-20 09:08 AM
64
wolfi
wolfi

CVE-2022-3736 vulnerabilities

Vulnerabilities for packages:...

7.5CVSS

7.7AI Score

0.001EPSS

2024-06-20 09:08 AM
336
wolfi
wolfi

GHSA-V5QP-MX94-J49V vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-20 09:08 AM
117
wolfi
wolfi

GHSA-7P63-JGG6-RGPV vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-20 09:08 AM
243
wolfi
wolfi

CVE-2024-3154 vulnerabilities

Vulnerabilities for packages: wolfictl,...

7.2CVSS

7.3AI Score

0.0004EPSS

2024-06-20 09:08 AM
57
wolfi
wolfi

GHSA-C5PJ-MQFH-RVC3 vulnerabilities

Vulnerabilities for packages: wolfictl,...

7.5AI Score

2024-06-20 09:08 AM
55
wolfi
wolfi

GHSA-VR64-R9QJ-H27F vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-06-20 09:08 AM
59
wolfi
wolfi

CVE-2024-29131 vulnerabilities

Vulnerabilities for packages: cassandra-reaper, neo4j,...

6.3AI Score

0.0004EPSS

2024-06-20 09:08 AM
56
wolfi
wolfi

CVE-2024-25620 vulnerabilities

Vulnerabilities for packages: kubescape, chartmuseum, k9s, flux-helm-controller, eksctl, k8sgpt, kots, up, zot, cert-manager, trivy, helm-operator, cilium-cli, zarf, helm-push, flux-source-controller,...

6.4CVSS

6.7AI Score

0.0004EPSS

2024-06-20 09:08 AM
93
Total number of security vulnerabilities3007655