Lucene search
K

3467 matches found

Cvelist
Cvelist
added 2020/05/13 7:7 p.m.19 views

CVE-2020-2001 PAN-OS: Panorama External control of file vulnerability leads to privilege escalation

An external control of path and data vulnerability in the Palo Alto Networks PAN-OS Panorama XSLT processing logic that allows an unauthenticated user with network access to PAN-OS management interface to write attacker supplied file on the system and elevate privileges. This issue affects: All...

8.1CVSS9.6AI score0.01334EPSS
Exploits0References1
CVE
CVE
added 2020/05/13 7:7 p.m.75 views

CVE-2020-2001

CVE-2020-2001 affects Palo Alto Networks PAN-OS Panorama XSLT processing logic, where an external control of path and data allows an unauthenticated user with network access to PAN-OS management to write attacker-supplied files and escalate privileges. Affected versions include PAN-OS Panorama: a...

9.8CVSS9.1AI score0.01334EPSS
Exploits0References1Affected Software1
Talos
Talos
added 2020/05/12 12:0 a.m.46 views

Microsoft Office Excel s_Schema Code Execution Vulnerability

Talos Vulnerability Report TALOS-2020-1015 Microsoft Office Excel sSchema Code Execution Vulnerability May 12, 2020 CVE Number CVE-2020-0901 Summary An exploitable code execution vulnerability exists in the Excel sSchema functionality of Microsoft Corporation Microsoft Office 2001 build 12430.202...

9.8CVSS9AI score0.11563EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/03/05 12:0 a.m.378 views

FTP Brute Force Logins With Default Credentials Reporting

It was possible to login into the remote FTP server using weak/known credentials. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.1AI score0.53618EPSS
Exploits53
Openbugbounty
Openbugbounty
added 2019/12/19 6:38 p.m.15 views

vp1992-2001.president.ee Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1043825 Security Researcher fakessh Helped patch 1840 vulnerabilities Received 9 Coordinated Disclosure badges Received 60 recommendations , a holder of 9 badges for responsible and coordinated disclosure, found a security vulnerability affecting vp1992-2001.president.ee...

0.2AI score
Exploits0
OpenVAS
OpenVAS
added 2019/11/26 12:0 a.m.28 views

Debian: Security Advisory (DLA-2001-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.02141EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/11/25 12:0 a.m.42 views

Debian DLA-2001-1 : libofx security update

There is a NULL pointer dereference in the function OFXApplication::startElement in the file lib/ofxsgml.cpp, as demonstrated by ofxdump. For Debian 8 'Jessie', this problem has been fixed in version 1:0.9.10-1+deb8u2. We recommend that you upgrade your libofx packages. NOTE: Tenable Network...

8.8CVSS7.5AI score0.02141EPSS
Exploits1References3
Check Point Advisories
Check Point Advisories
added 2019/06/23 12:0 a.m.3 views

CIFS (SMB) File Name Patterns (CA-2001-26)

...

1.5AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2019/05/03 3:5 p.m.20 views

Security Bulletin: IBM Cúram Social Program Management contains a cross-site request forgery vulnerability in the REST API (CVE-2018-2001)

Summary A recent product security scanning exercise identified that a cross-site request forgery vulnerability exists within REST in IBM Cúram Social Program Management. The issue relates to the checking of the HTTP referrer header for GET requests on the server side, which should be checked in a...

8.8CVSS1.4AI score0.00527EPSS
Exploits0Affected Software1
UbuntuCve
UbuntuCve
added 2019/02/28 5:29 p.m.38 views

CVE-2019-2001

The permissions on /proc/iomem were world-readable. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-117422211...

5.5CVSS6.7AI score0.0018EPSS
Exploits0References3
CVE
CVE
added 2019/02/28 5:0 p.m.55 views

CVE-2019-2001

CVE-2019-2001 affects the Android kernel iomem implementation. The issue is that the permissions on /proc/iomem were world-readable, enabling local information disclosure without any execution privileges or user interaction. The vulnerability is a local information disclosure (ID) with impact on ...

5.5CVSS5.1AI score0.0018EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/02/28 5:0 p.m.23 views

CVE-2019-2001

The permissions on /proc/iomem were world-readable. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-117422211...

5.2AI score0.0018EPSS
Exploits0References2
Prion
Prion
added 2018/09/21 5:29 p.m.12 views

Cross site scripting

On the RICOH MP 2001 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi...

4.3CVSS6.4AI score0.01EPSS
Exploits2References1
Cvelist
Cvelist
added 2018/09/21 5:0 p.m.22 views

CVE-2018-17002

On the RICOH MP 2001 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi...

6.5AI score0.01EPSS
Exploits2References1
CVE
CVE
added 2018/09/21 5:0 p.m.38 views

CVE-2018-17002

The CVE-2018-17002 entry concerns the Ricoh MP 2001 printer, where HTML injection and stored XSS are reported in the address-adding flow via the parameter entryNameIn to the CGI path /web/entry/en/address/adrsSetUserWizard.cgi. Affected software is the Ricoh MP 2001 web interface; the issue arise...

6.1CVSS6.3AI score0.01EPSS
Exploits2References1Affected Software1
OpenVAS
OpenVAS
added 2018/07/04 12:0 a.m.22 views

CentOS Update for qemu-img CESA-2018:2001 centos7

Check the version of qemu-img SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882914";...

5.5CVSS7.3AI score0.60631EPSS
Exploits2References2
Check Point Advisories
Check Point Advisories
added 2018/06/28 12:0 a.m.34 views

Microsoft IIS Command Execution (CVE-2001-0500) - Ver2

A command execution vulnerability exists in Microsoft IIS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

10CVSS7.1AI score0.96731EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2018/06/27 12:0 a.m.36 views

RHEL 7 : qemu-kvm (RHSA-2018:2001)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2001 advisory. Kernel-based Virtual Machine KVM is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the...

5.5CVSS7.3AI score0.60631EPSS
Exploits2References5
Circl
Circl
added 2018/05/29 3:50 p.m.13 views

CVE-2001-1013

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/apacheuserdirenum.rb 2025-02-06 03:13:37+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:08:03+00:00| seen|...

5CVSS9AI score0.65563EPSS
Exploits3References1
Circl
Circl
added 2018/05/29 3:50 p.m.93 views

CVE-2001-0537

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/ciscoiosauthbypass.rb 2024-10-24 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2024-10-24 2024-10-25...

9.3CVSS6.1AI score0.6845EPSS
In wildExploits8References4
Rows per page
Query Builder