Lucene search
K

3467 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2024/01/24 8:23 p.m.3 views

Malicious code in wlwz-2312-2001 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eb822772f120d198707d10cbe559f4ca9b619834a479d71bd933c1fd19e71abc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Circl
Circl
added 2023/12/11 11:56 p.m.5 views

CVE-2001-0680

creationtimestamp| type| source ---|---|--- 2023-12-11 23:56:49+00:00| seen| https://t.me/arpsyndicate/1775...

5CVSS4.8AI score0.06005EPSS
Exploits1References1
Oracle linux
Oracle linux
added 2023/09/14 12:0 a.m.33 views

.NET 7.0 security update

7.0.111-1.0.1 - Update to .NET SDK 7.0.111 and Runtime 7.0.11 - Resolves: RHEL-2001...

6.5CVSS6.7AI score0.04661EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/06/15 12:0 a.m.11 views

Caucho Resin Path Traversal Vulnerability (CVE-2001-0399) - Active Check

Caucho Resin is prone to a path traversal vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:caucho:resin";...

5CVSS6.7AI score0.0284EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2023/06/07 12:0 a.m.47 views

CVE-2023-2001

Removed by vendor...

4.3CVSS5.8AI score0.00585EPSS
Exploits0
CVE
CVE
added 2023/06/07 12:0 a.m.119 views

CVE-2023-2001

CVE-2023-2001 affects GitLab CE/EE across versions: all before 15.10.8, all 15.11 before 15.11.7, and 16.0 before 16.0.2. The issue allows an attacker to spoof protected tags, potentially causing a victim to download malicious code. The description does not specify affected platforms beyond GitLa...

4.3CVSS4AI score0.00585EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/06/07 12:0 a.m.26 views

FreeBSD : Gitlab -- Vulnerability (cdb5338d-04ec-11ee-9c88-001b217b3468)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the cdb5338d-04ec-11ee-9c88-001b217b3468 advisory. - A lack of length validation in GitLab CE/EE affecting all versions from 8.3 before 15.10.8,...

8.7CVSS6AI score0.96058EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2023/06/05 12:0 a.m.20 views

GitLab 0.0 < 15.10.8 / 15.11 < 15.11.7 / 16.0 < 16.0.2 (CVE-2023-2001)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. An attacker was able...

4.3CVSS5.1AI score0.00585EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/03/22 12:0 a.m.56 views

Amazon Linux 2 : bind (ALAS-2023-2001)

The version of bind installed on the remote host is prior to 9.11.4-26.P2. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2001 advisory. A cache poisoning vulnerability was found in BIND when using forwarders. Bogus NS records supplied by the forwarders may...

7.5CVSS6.8AI score0.0325EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.24 views

Debian: Security Advisory (DSA-2001-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.5AI score0.06497EPSS
Exploits3References3
F5 Networks
F5 Networks
added 2023/02/21 7:41 p.m.31 views

K1877: OpenSSH Remote Challenge Vulnerability - CAN-2001-1279

Security Advisory Description Note: Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of F5...

7.5CVSS6.6AI score0.04784EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:25 p.m.176 views

K17448: OpenSSH vulnerability CVE-2001-1473

Security Advisory Description The SSH-1 protocol allows remote servers to conduct man-in-the-middle attacks and replay a client challenge response to a target server by creating a Session ID that matches the Session ID of the target, but which uses a public key pair that is weaker than the target...

7.5CVSS6.6AI score0.06268EPSS
Exploits0Affected Software19
F5 Networks
F5 Networks
added 2023/02/21 7:6 p.m.16 views

K1518: Multiple SSH1 vulnerabilities - CA-2001-35

Security Advisory Description Note: Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F5...

6.9AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:22 a.m.7 views

SUSE CVE-2001-1487

popauth utility in Qualcomm Qpopper 4.0 and earlier allows local users to overwrite arbitrary files and execute commands as the pop user via a symlink attack on the -trace file option...

4.6CVSS7AI score0.00521EPSS
Exploits0References3
CVE
CVE
added 2022/07/18 4:17 p.m.51 views

CVE-2022-2001

The CVE-2022-2001 entry concerns the WordPress plugin DX Share Selection. A CSRF/unauthenticated-elevation issue exists in versions up to 1.4 due to missing nonce protection in the dxss_admin_page() function of dx-share-selection.php. This allows an attacker to induce an administrator to perform ...

8.8CVSS8.4AI score0.0053EPSS
Exploits0References5Affected Software1
Packet Storm
Packet Storm
added 2022/02/09 12:0 a.m.287 views

Backdoor.Win32.Freddy.2001 Authentication Bypass / Command Execution

Discovery / credits: Malvuln - malvuln.com c 2022 Original source: https://malvuln.com/advisory/434923afc32a7bc7355ed9a5224b9273.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Freddy.2001 Vulnerability: Authentication Bypass Command Execution Description: The...

0.7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2021/09/21 10:13 a.m.72 views

Moderate: Red Hat Security Advisory: mysql:8.0 security, bug fix, and enhancement update

An update for the mysql:8.0 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8CVSS7AI score0.41478EPSS
Exploits3References142
Rockylinux
Rockylinux
added 2021/09/21 7:13 a.m.99 views

mysql:8.0 security, bug fix, and enhancement update

An update is available for mecab-ipadic, mecab, mysql. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list MySQL is a multi-user, multi-threaded SQL database server...

8CVSS7.2AI score0.41478EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2021/09/21 12:0 a.m.70 views

CentOS 8 : mysql:8.0 (CESA-2021:3590)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:3590 advisory. - mysql: Server: Stored Procedure unspecified vulnerability CPU Oct 2020 CVE-2020-14672 - mysql: Server: FTS unspecified vulnerability CPU Oct 2020...

8CVSS6.9AI score0.41478EPSS
Exploits3References140
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2013:1103-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.8AI score0.02798EPSS
Exploits0References2
Rows per page
Query Builder