Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-16854

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Open Ticket Request System OTRS through 3.3.20, 4 through 4.0.26, 5 through 5.0.24, and 6 through 6.0.1, an attacker who is logged in as a customer can use t...

6.5CVSS7AI score0.0149EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/09/11 5:8 p.m.27 views

CVE-2020-16854 Windows Kernel Information Disclosure Vulnerability

...

5.5CVSS6.8AI score0.0122EPSS
Exploits0References1
CVE
CVE
added 2020/09/11 5:8 p.m.86 views

CVE-2020-16854

Technical specifics for CVE-2020-16854 (affected product, vulnerable component, exploit access, or remediation) are not provided in the connected documents. The initial description offers high-level impact, but no concrete technical details are present for public disclosure. Monitor for updates.

5.5CVSS6.8AI score0.0122EPSS
Exploits0References1Affected Software6
CNVD
CNVD
added 2020/03/12 12:0 a.m.2 views

WAGO PFC200 Stack Buffer Overflow Vulnerability (CNVD-2020-16854)

The WAGO PFC200 is a programmable logic controller PLC from WAGO Germany. A stack buffer overflow vulnerability exists in the iocheckd service 'I/O-Check' function of the WAGO PFC200 03.02.0214. An attacker could exploit this vulnerability via a specially crafted XML cache file to achieve code...

7.8CVSS7.8AI score0.00818EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.24 views

Fedora 29 : moodle (2018-6a4a3b78fd)

CVE-2018-16854 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Netwo...

8.8CVSS7.2AI score0.02326EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.16 views

Fedora 28 : moodle (2018-f4910a3260)

CVE-2018-16854 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Netwo...

8.8CVSS7.2AI score0.02326EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/11/30 12:0 a.m.30 views

Fedora 27 : moodle (2018-4ec3eecd7f)

CVE-2018-16854 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable Netwo...

8.8CVSS7.2AI score0.02326EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2018/11/26 5:29 p.m.17 views

CVE-2018-16854

A flaw was found in moodle versions 3.5 to 3.5.2, 3.4 to 3.4.5, 3.3 to 3.3.8, 3.1 to 3.1.14 and earlier. The login form is not protected by a token to prevent login cross-site request forgery. Fixed versions include 3.6, 3.5.3, 3.4.6, 3.3.9 and 3.1.15...

8.8CVSS6.8AI score0.02326EPSS
Exploits0References3
CVE
CVE
added 2018/11/26 5:0 p.m.71 views

CVE-2018-16854

CVE-2018-16854 – Moodle Login CSRF relates to Moodle versions 3.5–3.5.2, 3.4–3.4.5, 3.3–3.3.8, and 3.1–3.1.14. The vulnerability is a login CSRF issue due to the login form not being protected by a token to prevent cross-site request forgery. Fixed versions include Moodle 3.6, 3.5.3, 3.4.6, 3.3.9...

8.8CVSS8.2AI score0.02326EPSS
Exploits0References5Affected Software1
Debian
Debian
added 2017/12/17 2:11 p.m.30 views

[SECURITY] [DSA 4066-1] otrs2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4066-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 17, 2017 https://www.debian.org/security/faq -...

9CVSS8.7AI score0.19901EPSS
Exploits8
OpenVAS
OpenVAS
added 2017/12/11 12:0 a.m.26 views

OTRS 3.3.x < 4.0.27, 5.x < 5.0.24, 6.x < 6.0.2 Information Disclosure Vulnerability (Dec 2017)

OTRS is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:otrs:otrs"; if...

6.5CVSS7.2AI score0.0149EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2017/12/08 5:0 p.m.20 views

CVE-2017-16854

In Open Ticket Request System OTRS through 3.3.20, 4 through 4.0.26, 5 through 5.0.24, and 6 through 6.0.1, an attacker who is logged in as a customer can use the ticket search form to disclose internal article information of their customer tickets...

6.5CVSS7.3AI score0.0149EPSS
Exploits0
CVE
CVE
added 2017/12/08 5:0 p.m.74 views

CVE-2017-16854

The CVE-2017-16854 issue affects Open Ticket Request System (OTRS) up to versions 3.3.20, 4.x up to 4.0.26, 5.x up to 5.0.24, and 6.x up to 6.0.1, where an authenticated customer can use the ticket search form to disclose internal article information in customer tickets. Connected advisories conf...

6.5CVSS7AI score0.0149EPSS
Exploits0References3Affected Software1
CVE
CVE
added 1976/01/01 12:0 a.m.31 views

CVE-2019-16854

CVE-2019-16854 entry is rejected/not used; this CVE ID does not represent an active vulnerability.

7.3AI score
Exploits0
Rows per page
Query Builder