Lucene search
K

278 matches found

Tenable Nessus
Tenable Nessus
added 2024/01/10 12:0 a.m.19 views

CentOS 8 : gnutls (CESA-2024:0155)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2024:0155 advisory. - A vulnerability was found that the response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertexts with correct...

5.9CVSS6.6AI score0.01257EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/03 12:0 a.m.34 views

GitLab < 15.8.5 (SECURITY-RELEASE-GITLAB-15-10-1-RELEASED)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting all versions starting from 12.8 before 15.8.5, all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. A...

9.8CVSS6.2AI score0.01242EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.28 views

Rockwell Automation Stratix Industrial Managed Ethernet Switch 7Pk Errors (CVE-2018-0155)

A vulnerability in the Bidirectional Forwarding Detection BFD offload implementation could allow an unauthenticated remote attacker to cause a crash of the iosd process, causing a DoS condition. The vulnerability is due to insufficient error handling when the BFD header in a BFD packet is...

8.6CVSS7.5AI score0.08369EPSS
Exploits0References4
Openbugbounty
Openbugbounty
added 2023/10/11 4:13 p.m.15 views

elks1475.org Cross Site Scripting vulnerability OBB-3743055

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
OpenVAS
OpenVAS
added 2023/06/22 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2023:2578-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.68603EPSS
Exploits9References19
OSV
OSV
added 2023/06/21 11:49 a.m.9 views

SUSE-SU-2023:2578-1 Security update for SUSE Manager Client Tools

This update fixes the following issues: bind: - Provide bind dependencies and solve installation issues on SUSE Linux Enterprise Micro - There are no source changes dracut-saltboot: - Update to version 0.1.1681904360.84ef141 Load network configuration even when missing protocol version bsc1210640...

9.8CVSS7.8AI score0.68603EPSS
Exploits9References32
Circl
Circl
added 2023/06/14 9:10 p.m.10 views

CVE-2018-0155

creationtimestamp| type| source ---|---|--- 2023-06-14 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-12-24 20:27:50+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/2971338 2025-02-23 02:10:17+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2026-02-02...

8.6CVSS7.3AI score0.07747EPSS
Exploits0References4
Circl
Circl
added 2023/05/04 12:32 a.m.7 views

CVE-2023-0155

creationtimestamp| type| source ---|---|--- 2023-05-04 00:32:14+00:00| seen| https://t.me/cibsecurity/63252...

5.4CVSS5.4AI score0.00773EPSS
Exploits1References1
NVD
NVD
added 2023/05/03 9:15 p.m.14 views

CVE-2023-0155

An issue has been discovered in GitLab CE/EE affecting all versions before 15.8.5, 15.9.4, 15.10.1. Open redirects was possible due to framing arbitrary content on any page allowing user controlled markdown...

5.4CVSS5.2AI score0.00773EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2023/05/03 9:15 p.m.27 views

CVE-2023-0155

An issue has been discovered in GitLab CE/EE affecting all versions before 15.8.5, 15.9.4, 15.10.1. Open redirects was possible due to framing arbitrary content on any page allowing user controlled markdown...

5.4CVSS6AI score0.00773EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/05/03 12:0 a.m.9 views

CVE-2023-0155

An issue has been discovered in GitLab CE/EE affecting all versions before 15.8.5, 15.9.4, 15.10.1. Open redirects was possible due to framing arbitrary content on any page allowing user controlled markdown...

5.4CVSS5.2AI score0.00773EPSS
Exploits1References3
CVE
CVE
added 2023/05/03 12:0 a.m.80 views

CVE-2023-0155

CVE-2023-0155 affects GitLab CE/EE and enables an open redirect due to framing arbitrary content on any page, with user-controlled markdown. Impact applies to all versions before 15.8.5, 15.9.4, and 15.10.1, per provided descriptions. Connected documents corroborate the vulnerability across multi...

5.4CVSS5.5AI score0.00773EPSS
Exploits1References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/04/04 12:0 a.m.24 views

GitLab 15.7 < 15.8.5 / 15.9 < 15.9.4 / 15.10 < 15.10.1 (CVE-2023-0155)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions before 15.8.5, 15.9.4, 15.10.1. Open redirects was possible due to framing arbitrary content on any page allowing user controlled...

5.4CVSS5.8AI score0.00773EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/23 3:22 a.m.3 views

SUSE CVE-2022-0155

follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor...

6.5CVSS8.8AI score0.02426EPSS
Exploits2References12
F5 Networks
F5 Networks
added 2023/02/21 6:7 p.m.67 views

K53252134: Intel BIOS vulnerability CVE-2021-0155

Security Advisory Description Unchecked return value in the BIOS firmware for some IntelR Processors may allow a privileged user to potentially enable information disclosure via local access. CVE-2021-0155 Impact A local attacker logged-in as a privileged user can exploit the vulnerability to gai...

5.5CVSS5.1AI score0.00257EPSS
Exploits0Affected Software13
SUSE CVE
SUSE CVE
added 2023/02/15 5:42 a.m.4 views

SUSE CVE-2013-0155

Ruby on Rails 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly consider differences in parameter handling between the Active Record component and the JSON implementation, which allows remote attackers to bypass intended database-query restrictions and perform NU...

6.4CVSS7AI score0.05673EPSS
Exploits1References13
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/07 9:34 p.m.32 views

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to Node.js follow-redirects module information disclosure vulnerabilities (CVE-2022-0536, CVE-2022-0155)

Summary Potential information disclosure vulnerabilities in Node.js follow-redirects module CVE-2022-0536, CVE-2022-0155 has been identified that may affect IBM Watson Assistant for IBM Cloud Pak for Data. Refer to details for additional information. Vulnerability Details CVEID:CVE-2022-0536...

8CVSS5.7AI score0.02426EPSS
Exploits2Affected Software1
RedHat Linux
RedHat Linux
added 2022/11/16 12:19 p.m.47 views

Moderate: Red Hat Security Advisory: RHV Manager (ovirt-engine) [ovirt-4.5.3] bug fix and security update

Updated ovirt-engine packages that fix several bugs and add various enhancements are now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

8CVSS6.8AI score0.02426EPSS
Exploits2References14
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/09 6:53 p.m.37 views

Security Bulletin: IBM QRadar Assistant app for IBM QRadar SIEM includes components with multiple known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. IBM has released a new version which addresses the vulnerabilities. Vulnerability Details CVEID:CVE-2021-42581 DESCRIPTION: Ramda could allow a remote attacker t...

9.1CVSS8.8AI score0.2241EPSS
Exploits13Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/10/19 9:11 p.m.50 views

Security Bulletin: IBM Security QRadar Analyst Workflow app for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. IBM has addressed the vulnerabilities. Vulnerability Details CVEID:CVE-2021-44906 DESCRIPTION: Node.js Minimist module could allow a remote attacker to execute...

9.8CVSS9.2AI score0.04581EPSS
Exploits7Affected Software1
Rows per page
Query Builder