Lucene search
+L

103 matches found

Tenable Nessus
Tenable Nessus
added 2023/01/24 12:0 a.m.20 views

Oracle Linux 7 : sssd (ELSA-2023-0403)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-0403 advisory. 1.16.5-10.0.3 - Revert Redhat's change of disallowing duplicated incomplete gid when 'idprovider=ldap' is used, which caused regression in AD environment. Orabu...

8.8CVSS6.7AI score0.0095EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/01/24 12:0 a.m.67 views

RHEL 7 : sssd (RHSA-2023:0403)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0403 advisory. The System Security Services Daemon SSSD service provides a set of daemons to manage access to remote directories and authentication mechanisms. It...

8.8CVSS6.8AI score0.0095EPSS
Exploits1References4
CVE
CVE
added 2023/01/19 2:7 p.m.55 views

CVE-2023-0403

Vulnerability summary (CVE-2023-0403) : The WordPress Social Warfare plugin (versions up to and including 4.4.0) suffers a Cross-Site Request Forgery due to missing/incorrect nonce validation on several AJAX actions. This allows unauthenticated attackers to perform unauthorized actions, notably d...

5.4CVSS6AI score0.00374EPSS
Exploits2References3Affected Software1
Patchstack
Patchstack
added 2023/01/06 12:0 a.m.21 views

WordPress Social Warfare Plugin <= 4.3.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software Social Warfare Type Plugin Vulnerable versions = 4.3.1 Fixed in 4.4.0 OWASP Top 10 A8: Cross Site Request Forgery CSRF Classification Cross Site Request Forgery CSRF CVE CVE-2023-0403 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 2ad0dd31224b Credits Marco...

5.4CVSS7.1AI score0.00374EPSS
Exploits2References3Affected Software1
OpenVAS
OpenVAS
added 2022/11/02 12:0 a.m.12 views

Mageia: Security Advisory (MGASA-2022-0403)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.0347EPSS
Exploits3References8
OSV
OSV
added 2022/04/04 4:15 p.m.4 views

CVE-2022-0403

The Library File Manager WordPress plugin before 5.2.3 is using an outdated version of the elFinder library, which is know to be affected by security issues CVE-2021-32682, and does not have any authorisation as well as CSRF checks in its connector AJAX action, allowing any authenticated users,...

8.1CVSS5.8AI score0.01231EPSS
Exploits2References1
CVE
CVE
added 2022/04/04 3:35 p.m.184 views

CVE-2022-0403

CVE-2022-0403 relates to the WordPress plugin Library File Manager (up to version 5.2.3) using an outdated elFinder library that is vulnerable (CVE-2021-32682). The root cause is lack of authorization and CSRF protection in the connector AJAX action, allowing any authenticated user, even at Subsc...

8.1CVSS8.9AI score0.01231EPSS
Exploits2References1Affected Software1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.13 views

Mageia: Security Advisory (MGASA-2020-0403)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.01695EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2016-0403)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.3AI score0.34703EPSS
Exploits1References9
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2014-0403)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.8AI score0.10773EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2019-0403)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.01135EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2014:0266-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.08383EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2014:0266-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.08383EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2014:0266-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.08383EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2014:0246-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.08383EPSS
Exploits3References3
Circl
Circl
added 2021/02/27 12:39 a.m.8 views

CVE-2021-0403

creationtimestamp| type| source ---|---|--- 2021-02-27 00:39:37+00:00| seen| https://t.me/cibsecurity/24257...

4.4CVSS4.7AI score0.00125EPSS
Exploits0References1
CVE
CVE
added 2021/02/26 8:19 p.m.54 views

CVE-2021-0403

CVE-2021-0403 affects MediaTek netdiag on Android-11 . The root cause is a missing permission check in netdiag that can cause local information disclosure with System execution privileges needed. Exploitation requires no user interaction (local attack). Publicly documented patch: ALPS05475124 . E...

4.4CVSS4.3AI score0.00125EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/09/17 6:28 p.m.42 views

CVE-2020-0403

CVE-2020-0403 affects the FPC TrustZone fingerprint app and can enable local elevation of privilege in the TEE via an exposed test feature, requiring System-level privileges with no user interaction (per the NVD/Red Hat/PRION entries). The issue is categorized as Elevation of Privilege (EoP) affe...

7.2CVSS7.2AI score0.00154EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/12/11 9:35 p.m.92 views

CVE-2019-0403

The CVE-2019-0403 case concerns SAP Enable Now (before version 1911). The available connected sources confirm a vulnerability in CSV handling where an attacker can input commands into CSV files, and those commands are executed when the file is opened, resulting in CSV Command Injection. The root ...

9.8CVSS9.5AI score0.02089EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/12/11 9:35 p.m.26 views

CVE-2019-0403

SAP Enable Now, before version 1911, allows an attacker to input commands into the CSV files, which will be executed when opened, leading to CSV Command Injection...

9.6AI score0.02089EPSS
Exploits0References2
Rows per page
Query Builder