PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS
PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS RM3/CRS dispenser firmware (all versions up to and including 41128 1002 RM3_CRS.BTR + 170329 2332 RM3_CRS.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
EPSS
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5
PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5 CMDv5 dispenser firmware (all versions up to and including 141128 1002 CD5_ATM.BTR + 170329 2332 CD5_ATM.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...
2.1AI Score
EPSS
The Void Contact Form 7 Widget For Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cf7_redirect_page' attribute within the plugin's Void Contact From 7 widget in all versions up to, and including, 2.4 due to insufficient input sanitization and...
6.4CVSS
EPSS
The Void Contact Form 7 Widget For Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'cf7_redirect_page' attribute within the plugin's Void Contact From 7 widget in all versions up to, and including, 2.4 due to insufficient input sanitization and...
6.4CVSS
5.7AI Score
EPSS
GHSA-95PR-FXF5-86GV vulnerabilities
Vulnerabilities for packages: gitsign, goreleaser, spire-server, tekton-chains, melange, apko, tkn, kubescape, aactl, zot, falco, falcoctl, skaffold, flux-source-controller, ko, wolfictl, vexctl, neuvector-sigstore-interface, zarf, policy-controller,...
7.5AI Score
Vulnerabilities for packages: bank-vaults, keda, gitsign, goreleaser, spire-server, terragrunt, gh, scorecard, snyk-cli, fulcio, terraform-provider-azurerm, tekton-chains, vault-csi-provider, k3d, flux-kustomize-controller, kargo, flux, rook, step-ca, timestamp-authority,...
6CVSS
6AI Score
0.0004EPSS
CVE-2023-44487 vulnerabilities
Vulnerabilities for packages: kaf, fuse-overlayfs-snapshotter, gitness, kubevela, tomcat, nri-prometheus, kubescape, kubernetes-csi-livenessprobe, kubewatch, helm, flux-notification-controller, aactl, hey, spark-operator, frp, node-problem-detector, envoy-ratelimit, grpcurl, dotnet, skaffold,...
7.5CVSS
9AI Score
0.732EPSS
CVE-2024-29018 vulnerabilities
Vulnerabilities for packages: goreleaser, spire-server, trivy, kargo, up, buf, dagger, melange, prometheus, cadvisor, telegraf, datadog-agent, tkn, kubescape, kaniko, docker-compose, aactl, grype, loki, crossplane, zot, syft, wolfictl, ko, ctop, buildkitd,...
5.9CVSS
6.1AI Score
0.0004EPSS
GHSA-MQ39-4GV4-MVPX vulnerabilities
Vulnerabilities for packages: goreleaser, spire-server, trivy, kargo, up, buf, dagger, melange, prometheus, cadvisor, telegraf, datadog-agent, tkn, kubescape, kaniko, docker-compose, aactl, grype, loki, crossplane, zot, syft, wolfictl, ko, ctop, buildkitd,...
7.5AI Score
CVE-2023-45289 vulnerabilities
Vulnerabilities for packages: nri-apache, kaf, cni-plugins, kubernetes-csi-external-snapshotter, vault-k8s, fuse-overlayfs-snapshotter, gitness, nri-nginx, docker-credential-acr-env, fq, go-bindata, nri-memcached, thanos-operator, wait-for-port, trillian, prometheus-node-exporter,...
7.8AI Score
0.0004EPSS
GHSA-8R3F-844C-MC37 vulnerabilities
Vulnerabilities for packages: bank-vaults, kaf, kubernetes-csi-external-snapshotter, vault-k8s, boring-registry, fuse-overlayfs-snapshotter, gitness, istio-pilot-agent, k9s, tekton-chains, thanos-operator, istio-pilot-discovery, trillian, karpenter, prometheus-node-exporter,...
7.5AI Score
CVE-2024-27304 vulnerabilities
Vulnerabilities for packages: keda, temporal-server, trillian, amass, kube-bench, argo-workflows, telegraf, vault, ferretdb, k3s, kots, spicedb, caddy, kine, src,...
9.8CVSS
9.7AI Score
0.0004EPSS
GHSA-MRWW-27VC-GGHV vulnerabilities
Vulnerabilities for packages: keda, temporal-server, trillian, amass, kube-bench, argo-workflows, telegraf, vault, ferretdb, k3s, kots, spicedb, caddy, kine, src,...
7.5AI Score
GHSA-232P-VWFF-86MP vulnerabilities
Vulnerabilities for packages: up, helm, melange, ko, ctop, bom,...
7.5AI Score
Vulnerabilities for packages: argo-cd, aws-efs-csi-driver, cluster-autoscaler,...
8.8CVSS
8.9AI Score
0.001EPSS
CVE-2023-46402 vulnerabilities
Vulnerabilities for packages: flux-notification-controller, argo-cd, melange, pulumi-kubernetes-operator,...
7.5CVSS
7.7AI Score
0.0005EPSS
6.2CVSS
7.1AI Score
0.0004EPSS
7.5AI Score
7.5AI Score
7.5AI Score
Vulnerabilities for packages: kubernetes-dns-node-cache, cluster-autoscaler, kubernetes-csi-driver-hostpath, ip-masq-agent, nodetaint, kubernetes, calico, aws-ebs-csi-driver, local-static-provisioner, spark-operator,...
2.7CVSS
4.3AI Score
0.0004EPSS
7.5CVSS
7.7AI Score
0.001EPSS
7.5AI Score
5.3CVSS
7.2AI Score
0.0005EPSS
7.2CVSS
7.3AI Score
0.0004EPSS
8.8CVSS
7.2AI Score
0.001EPSS
8.8CVSS
7.2AI Score
0.001EPSS
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
7.5AI Score
Vulnerabilities for packages: cloudflared, kubernetes-dns-node-cache,...
5.3CVSS
5.5AI Score
0.0004EPSS
7.5AI Score
8.8CVSS
7.2AI Score
0.0004EPSS
8.8CVSS
7.2AI Score
0.0004EPSS
7.5AI Score
6.5CVSS
7AI Score
0.001EPSS
7.5AI Score
7.5AI Score
5.3CVSS
7.5AI Score
0.001EPSS
7.8CVSS
7.5AI Score
0.001EPSS
4.7CVSS
7.5AI Score
0.0004EPSS
6.5CVSS
7.5AI Score
0.001EPSS
5.9CVSS
6.1AI Score
0.001EPSS
CVE-2022-29526 vulnerabilities
Vulnerabilities for packages: grpcurl, dynamic-localpv-provisioner, ctop, k3d,...
5.3CVSS
9.3AI Score
0.002EPSS
7.5AI Score
7.5AI Score
7.5AI Score
GHSA-P782-XGP4-8HR8 vulnerabilities
Vulnerabilities for packages: grpcurl, dynamic-localpv-provisioner, ctop, k3d,...
7.5AI Score