Lucene search
+L

60 matches found

Nuclei
Nuclei
added yesterday7 views

Payara Server - Cross-Site Scripting

Payara Server versions 4.1.2.191.54, 5.83.0, 6.34.0, and 7.2026.1 contain a stored XSS vulnerability caused by improper input sanitization in the REST Management Interface. This allows attackers to mislead administrators into changing the admin password via a URL payload; however, the exploit...

9.3CVSS5.2AI score0.01002EPSS
Exploits1References3
Circl
Circl
added 2026/07/02 12:52 p.m.11 views

CVE-2026-14340

creationtimestamp| type| source ---|---|--- 2026-07-02 12:52:01+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpo354zv2w2w...

5.3CVSS5.8AI score0.00215EPSS
Exploits0References1
CVE
CVE
added 2026/07/01 9:3 p.m.19 views

CVE-2026-14340

GitHub Enterprise Server (GitHub ES) suffers an incorrect authorization vulnerability (CVE-2026-14340) where a user-to-server token scoped to a GitHub App installation could perform write operations on public repositories outside the token’s scope. The root cause is an authorization check that on...

5.3CVSS5.8AI score0.00215EPSS
Exploits0References6Affected Software1
Circl
Circl
added 2026/04/10 9:3 p.m.5 views

CVE-2025-14340

creationtimestamp| type| source ---|---|--- 2026-04-10 21:03:08+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mj67us45ju2p...

9.3CVSS5.7AI score0.01002EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2020-14340

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was discovered in XNIO where file descriptor leak caused by growing amounts of NIO Selector file handles between garbage collection cycles. It m...

5.9CVSS6.8AI score0.0222EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2018-14340

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuffzlib....

7.5CVSS6.8AI score0.0345EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-3470-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.13378EPSS
Exploits11References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.28 views

Mageia: Security Advisory (MGASA-2017-0347)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.16181EPSS
Exploits12References9
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2017-0346)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.16181EPSS
Exploits12References9
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2017-0343)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.16181EPSS
Exploits12References10
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2017-0344)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.16181EPSS
Exploits12References10
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.27 views

Mageia: Security Advisory (MGASA-2017-0342)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.16181EPSS
Exploits12References10
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2018-0320)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.03773EPSS
Exploits2References14
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2018:2412-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.2AI score0.03773EPSS
Exploits3References14
vulnersOsv
vulnersOsv
added 2021/06/08 10:29 p.m.5 views

br.unb.erlangms:ems_java (=1.0.8.8), com.alejandrohdezma:sbt-mdoc-toc_2.12 (=0.1) +462 more potentially affected by CVE-2020-14340 via org.jboss.xnio:xnio-nio (>=3.6.0.Final <=3.7.7.Final)

org.jboss.xnio:xnio-nio MAVEN version =3.6.0.Final, =4.0.1, =4.0.1, =4.0.1, =4.0.1, =0.4.0, =0.4.0, =0.4.0, =0.4.0, =1.0.2, =1.0.5 - com.comcast:ip4s-core2.12 =1.4.0 - com.comcast:ip4s-core2.13 =1.4.0 and more Source cves: CVE-2020-14340 Source advisory: OSV:GHSA-C738-77X8-WMQ5...

5.9CVSS6.8AI score0.0222EPSS
Exploits0
Debian CVE
Debian CVE
added 2021/06/02 12:4 p.m.39 views

CVE-2020-14340

A vulnerability was discovered in XNIO where file descriptor leak caused by growing amounts of NIO Selector file handles between garbage collection cycles. It may allow the attacker to cause a denial of service. It affects XNIO versions 3.6.0.Beta1 through 3.8.1.Final...

5.9CVSS6.2AI score0.0222EPSS
Exploits0
CVE
CVE
added 2021/06/02 12:4 p.m.166 views

CVE-2020-14340

CVE-2020-14340 affects XNIO prior to the fix in RHSA-2020:4246. A file descriptor leak occurs due to growing NIO Selector handles across garbage collection cycles, enabling a denial-of-service condition. Affected: XNIO 3.6.0.Beta1 through 3.8.1.Final. Root cause: leak in file descriptor managemen...

5.9CVSS5.5AI score0.0222EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2021/05/03 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for wireshark (EulerOS-SA-2021-1859)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.05803EPSS
Exploits8References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2018:2891-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.03773EPSS
Exploits3References16
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.26 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : wireshark Multiple Vulnerabilities (NS-SA-2020-0064)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has wireshark packages installed that are affected by multiple vulnerabilities: - In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by...

7.8CVSS6.8AI score0.03773EPSS
Exploits3References8
Rows per page
Query Builder