Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.39 views

SUSE SLES11 Security Update : tomcat6 (SUSE-SU-2020:14375-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14375-1 advisory. - The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escapi...

7CVSS6.9AI score0.56636EPSS
Exploits18References10
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2020:2770-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.00429EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2020:2767-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6AI score0.00429EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2020:2768-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6AI score0.00429EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/03/04 12:0 a.m.26 views

EulerOS Virtualization for ARM 64 3.0.6.0 : spdk (EulerOS-SA-2021-1528)

According to the versions of the spdk package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A complete lack of validation of...

8.8CVSS7.5AI score0.00429EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/02/05 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for dpdk (EulerOS-SA-2021-1241)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.3AI score0.00429EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/01/05 12:0 a.m.31 views

EulerOS Virtualization for ARM 64 3.0.2.0 : spdk (EulerOS-SA-2021-1043)

According to the versions of the spdk package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A flawed bounds checking in the copydata functio...

8.8CVSS7.5AI score0.00429EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.25 views

SUSE SLED15 / SLES15 Security Update : dpdk (SUSE-SU-2020:2770-1)

This update for dpdk fixes the following issues : dpdk was updated to 19.11.4 CVE-2020-14374,CVE-2020-14375,CVE-2020-14376,CVE-2020-14377,CVE-2020-1 4378: Fixed multiple issues where a malicious guest could harm the host using vhost crypto, including executing code in host VM Escape, reading host...

8.8CVSS6.4AI score0.00429EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.27 views

SUSE SLES15 Security Update : dpdk (SUSE-SU-2020:2769-1)

This update for dpdk fixes the following issues : dpdk was updated to 18.11.9. For a list of fixes check : CVE-2020-14374,CVE-2020-14375,CVE-2020-14376,CVE-2020-14377,CVE-2020-1 4378: Fixed multiple issues where a malicious guest could harm the host using vhost crypto, including executing code in...

8.8CVSS6.4AI score0.00429EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2020/11/06 12:0 a.m.10 views

phpLDAPadmin < 1.2.5 Multiple XSS Vulnerabilities - Linux

phpLDAPadmin is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.3AI score
Exploits0References1
OpenVAS
OpenVAS
added 2020/11/06 12:0 a.m.16 views

phpLDAPadmin < 1.2.5 Multiple XSS Vulnerabilities - Windows

phpLDAPadmin is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.3AI score
Exploits0References1
OpenVAS
OpenVAS
added 2020/11/02 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for dpdk (EulerOS-SA-2020-2308)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.00429EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/10/05 12:0 a.m.35 views

openSUSE Security Update : dpdk (openSUSE-2020-1599)

This update for dpdk fixes the following issues : - dpdk was updated to 19.11.4 - CVE-2020-14374,CVE-2020-14375,CVE-2020-14376,CVE-2020-14 377,CVE-2020-14378: Fixed multiple issues where a malicious guest could harm the host using vhost crypto, including executing code in host VM Escape, reading...

8.8CVSS6.3AI score0.00429EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2020/10/04 12:0 a.m.21 views

openSUSE: Security Advisory for dpdk (openSUSE-SU-2020:1593-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS6.4AI score0.00429EPSS
Exploits0References2
OSV
OSV
added 2020/09/30 7:15 p.m.8 views

CVE-2020-14375

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. Virtio ring descriptors, and the data they describe are in a region of memory accessible by from both the virtual machine and the host. An attacker in a VM can change the contents of the memory after vhostcrypto has validate...

7.8CVSS8.4AI score
Exploits0References8
CVE
CVE
added 2020/09/30 6:42 p.m.154 views

CVE-2020-14375

CVE-2020-14374 to CVE-2020-14378 affect dpdk before 18.11.10 and before 19.11.5. The issues enable memory corruption/over-reads in vhost_crypto paths and related bounds checks (copy_data, move_desc, and Virtio ring descriptors). In a VM, an attacker can read/write host memory, impacting confident...

7.8CVSS7.7AI score0.0025EPSS
Exploits0References8Affected Software1
RedhatCVE
RedhatCVE
added 2020/04/08 9:17 p.m.21 views

CVE-2018-14375

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

6.7AI score
Exploits0References2
OSV
OSV
added 2018/07/17 11:29 p.m.5 views

UBUNTU-CVE-2018-14375

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

5.8AI score
Exploits0References2
CVE
CVE
added 2018/07/17 11:0 p.m.36 views

CVE-2018-14375

CVE-2018-14375 is rejected/not used; this entry does not represent an active vulnerability.

6.8AI score
Exploits0
CVE
CVE
added 2017/11/01 1:0 a.m.59 views

CVE-2017-14375

EMC CVE-2017-14375 is an authentication bypass vulnerability affecting multiple EMC appliances: Unisphere for VMAX Virtual Appliance vApp Manager, Solutions Enabler Virtual Appliance, VASA Provider Virtual Appliance, and VMAX eManagement. Affected versions (per sources) are: Unisphere vApp before...

10CVSS9.4AI score0.04767EPSS
Exploits1References3Affected Software4
Rows per page
Query Builder