Lucene search
K

37 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/06 12:0 a.m.4 views

Atlassian Confluence < 8.5.18 / 8.6.x < 9.2.1 / 9.3.x < 9.3.1 / 9.4.x < 9.5.4 / 10.0.x < 10.0.2 / 10.1.0 (CONFSERVER-101486)

The version of Atlassian Confluence Server running on the remote host is affected by a vulnerability as referenced in the CONFSERVER-101486 advisory. - decode-uri-component 0.2.0 is vulnerable to Improper Input Validation resulting in DoS. CVE-2022-38900 Note that Nessus has not tested for this...

7.5CVSS6.8AI score0.24928EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 3: nodejs (TSSA-2023:0055)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0055 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.5CVSS6.7AI score0.24928EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2022-38900

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - decode-uri-component 0.2.0 is vulnerable to Improper Input Validation resulting in DoS. CVE-2022-38900 Note that Nessus relies on the presence of the package as...

7.5CVSS6.7AI score0.24928EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/01/13 12:0 a.m.16 views

Atlassian Confluence 7.19.x < 7.19.29 / 7.20.x < 8.5.17 / 8.6.x < 8.9.8 / 9.0.x < 9.1.1 (CONFSERVER-98022)

The version of Atlassian Confluence Server running on the remote host is affected by a vulnerability as referenced in the CONFSERVER-98022 advisory. - decode-uri-component 0.2.0 is vulnerable to Improper Input Validation resulting in DoS. CVE-2022-38900 Note that Nessus has not tested for this...

7.5CVSS6.8AI score0.24928EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/08 2:38 p.m.19 views

Security Bulletin: IBM Cloud Pak for Data is vulnerable to possible denial of service due to decode-uri-component (CVE-2022-38900 )

Summary decode-uri-component is used by IBM Cloud Pak for Data. CVE-2022-38900. Vulnerability Details CVEID:CVE-2022-38900 DESCRIPTION: decode-uri-component is vulnerable to a denial of service, caused by improper input validation by the decodeComponents function. By sending a specially-crafted...

7.5CVSS6.7AI score0.24928EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/01 12:45 p.m.38 views

Security Bulletin: Vulnerability in nodejs decode-uri-component affect Cloud Pak System[CVE-2022-38900]

Summary Vulnerability in nodejs decode-uri-component affect Cloud Pak SystemCVE-2022-38900. Cloud Pak System has addressed this vulnerability. Vulnerability Details CVEID:CVE-2022-38900 DESCRIPTION: decode-uri-component is vulnerable to a denial of service, caused by improper input validation by...

7.5CVSS6.7AI score0.24928EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/02/01 7:13 p.m.29 views

Security Bulletin: IBM QRadar Assistant App for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. IBM QRadar Assistant App for IBM QRadar SIEM has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2022-38900 DESCRIPTION: decode-uri-component is...

7.5CVSS7AI score0.24928EPSS
Exploits5Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/11/16 12:0 a.m.51 views

Oracle Linux 9 : pcs / (LOW) (ELSA-2023-6316)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6316 advisory. 0.11.6-3 - Refreshing any page in pcs-web-ui no longer causes it to display a blank page - Resolves: rhbz2222788 0.11.6-2 - Added BuildRequires: debugedit - for...

7.5CVSS6.9AI score0.24928EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.32 views

Fedora 39 : pcs (2023-e4cb7a5bda)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-e4cb7a5bda advisory. Automatic update for pcs-0.11.6-1.fc39. Changelog Wed Jun 21 2023 Michal Pospisil - 0.11.6-1 - Rebased to the latest upstream sources see CHANGELOG.md -...

7.5CVSS6.9AI score0.24928EPSS
Exploits1References2
AlmaLinux
AlmaLinux
added 2023/11/07 12:0 a.m.44 views

Low: pcs security, bug fix, and enhancement update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: decode-uri-component: improper input validation resulting in DoS CVE-2022-38900 For more details about the security issues, including the impact, a CVSS score, acknowledgments, a...

7.5CVSS7.1AI score0.24928EPSS
Exploits1References4
OSV
OSV
added 2023/11/07 12:0 a.m.30 views

ALSA-2023:6316 Low: pcs security, bug fix, and enhancement update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: decode-uri-component: improper input validation resulting in DoS CVE-2022-38900 For more details about the security issues, including the impact, a CVSS score, acknowledgments, a...

7.5CVSS7.6AI score0.24928EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2023/07/02 12:0 a.m.21 views

Fedora: Security Advisory for pcs (FEDORA-2023-ae96dd6105)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.24928EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/07/01 12:0 a.m.34 views

Fedora 37 : pcs (2023-ae96dd6105)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-ae96dd6105 advisory. - Rebased to the latest upstream sources see CHANGELOG.md - Updated pcs-web-ui - Removed dependency fedora-logos - favicon is now correctly provided by...

7.5CVSS6.9AI score0.24928EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/07/01 12:0 a.m.41 views

Fedora 38 : pcs (2023-b86fd9ad80)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-b86fd9ad80 advisory. - Rebased to the latest upstream sources see CHANGELOG.md - Updated pcs-web-ui - Removed dependency fedora-logos - favicon is now correctly provided by...

7.5CVSS6.9AI score0.24928EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/06/21 3:22 p.m.67 views

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.13.0 security and bug fix update

Updated images that include numerous enhancements, security, and bug fixes are now available in Red Hat Container Registry for Red Hat OpenShift Data Foundation 4.13.0 on Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

9.1CVSS6.8AI score0.24928EPSS
Exploits10References200
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/28 11:44 a.m.43 views

Security Bulletin: IBM App Connect Enterprise Certified Container operands may be vulnerable to denial of service due to [CVE-2022-38900]

Summary Node.js module decode-uri-component is part of the Node.js runtime used by IBM App Connect Enterprise Certified Container. IBM App Connect Enterprise Certified Container operands may be vulnerable to denial of service. This bulletin provides patch information to address the reported...

7.5CVSS6.8AI score0.24928EPSS
Exploits1Affected Software1
OSV
OSV
added 2023/04/26 3:28 p.m.44 views

RLSA-2023:1743 Important: nodejs:14 security, bug fix, and enhancement update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 14.21.3. Security Fixes: decode-uri-component: improper input validation resulting i...

8.6CVSS8.1AI score0.24928EPSS
Exploits4References9
Tenable Nessus
Tenable Nessus
added 2023/04/26 12:0 a.m.33 views

Rocky Linux 8 : nodejs:14 (RLSA-2023:1743)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:1743 advisory. - The glob-parent package before 6.0.1 for Node.js allows ReDoS regular expression denial of service attacks against the enclosure regular expression...

8.6CVSS7AI score0.24928EPSS
Exploits4References16
Tenable Nessus
Tenable Nessus
added 2023/04/13 12:0 a.m.43 views

CentOS 8 : nodejs:14 (CESA-2023:1743)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2023:1743 advisory. - The glob-parent package before 6.0.1 for Node.js allows ReDoS regular expression denial of service attacks against the enclosure regular expression...

8.6CVSS7AI score0.24928EPSS
Exploits4References8
RedHat Linux
RedHat Linux
added 2023/04/12 3:10 p.m.65 views

Important: Red Hat Security Advisory: rh-nodejs14-nodejs security, bug fix, and enhancement update

An update for rh-nodejs14-nodejs is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.6CVSS6.9AI score0.24928EPSS
Exploits3References7
Rows per page
Query Builder