Lucene search
+L

105 matches found

openvas
openvas
added 2022/01/28 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2013-0371)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.09408EPSS
Exploits17References29
openvas
openvas
added 2022/01/28 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2013-0372)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.09408EPSS
Exploits11References29
openvas
openvas
added 2022/01/28 12:0 a.m.16 views

Mageia: Security Advisory (MGASA-2013-0375)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.09408EPSS
Exploits17References29
openvas
openvas
added 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2013-0373)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.09408EPSS
Exploits17References29
openvas
openvas
added 2022/01/21 12:0 a.m.48 views

SUSE: Security Advisory (SUSE-SU-2022:0135-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.32919EPSS
Exploits21References17
nessus
nessus
added 2021/06/28 12:0 a.m.7 views

SUSE SLES15: freeradius-server / freeradius-server-devel / etc (SUSE-SU-2021:2147-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2021:2147-1 advisory. - Fixed plaintext password entries in logfiles bsc1184016. Tenable has extracted the preceding description block directly from the SUSE security...

5.9AI score
Exploits0References2
nessus
nessus
added 2021/06/01 12:0 a.m.26 views

Oracle Linux 7 : glib2 (ELSA-2021-2147)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-2147 advisory. 2.56.1-9 - Fix CVE-2021-27219 Resolves: 1960596 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

7.5CVSS7.5AI score0.02993EPSS
Exploits1References2
osv
osv
added 2021/04/22 10:15 p.m.3 views

CVE-2021-2147

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Installation. The supported version that is affected is 8.8. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit execut...

1.8CVSS7.3AI score0.00322EPSS
Exploits0References1
cve
cve
added 2021/04/22 9:53 p.m.57 views

CVE-2021-2147

Oracle ZFS Storage Appliance Kit Installation (8.8) has CVE-2021-2147. The vulnerability allows a high-privileged attacker who can log on to the infrastructure running the kit, with required user interaction, to perform unauthorized updates/insertions/deletions of data accessible by the kit. The ...

1.8CVSS2.5AI score0.00322EPSS
Exploits0References1Affected Software1
debian
debian
added 2021/02/15 11:56 a.m.154 views

[SECURITY] [DLA 2559-1] busybox security update

Debian LTS Advisory DLA-2559-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany February 15, 2021 https://wiki.debian.org/LTS Package : busybox Version : 1:1.22.0-19+deb9u1 CVE ID : CVE-2011-5325 CVE-2015-9261 CVE-2016-2147 CVE-2016-2148 CVE-2017-15873 CVE-2017-165...

9.8CVSS7.3AI score0.32919EPSS
Exploits19
cvelist
cvelist
added 2020/03/09 3:1 p.m.26 views

CVE-2020-2147

A cross-site request forgery vulnerability in Jenkins Mac Plugin 1.1.0 and earlier allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials...

4.5AI score0.00811EPSS
Exploits0References2
cve
cve
added 2020/03/09 3:1 p.m.86 views

CVE-2020-2147

CVE-2020-2147 affects the Jenkins Mac Plugin, specifically versions 1.1.0 and earlier. The issue is a cross-site request forgery (CSRF) that allows an attacker to cause the plugin to connect to an attacker-specified SSH server using attacker-specified credentials. The published metrics list a CVS...

4.3CVSS4.5AI score0.00811EPSS
Exploits0References2Affected Software1
cve
cve
added 2019/09/27 6:5 p.m.38 views

CVE-2019-2147

CVE-2019-2147 affects the Android libxaac library. The issue is an out-of-bounds read caused by a missing bounds check in libxaac, leading to potential information disclosure. Exploitation requires user interaction, and the vulnerability does not grant additional execution privileges. Connected R...

6.5CVSS6.4AI score0.00583EPSS
Exploits0References1Affected Software1
veracode
veracode
added 2019/05/02 4:52 a.m.31 views

Privilege Escalation

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: A heap-based buffer overflow flaw was found in the Linux kernel's iSCSI target subsystem. A remote attacker could use a specially-crafted iSCSI request to caus...

7.9CVSS6.3AI score0.07313EPSS
Exploits11References18Affected Software2
veracode
veracode
added 2019/05/02 4:52 a.m.42 views

Information Disclosure

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: A heap-based buffer overflow flaw was found in the Linux kernel's iSCSI target subsystem. A remote attacker could use a specially-crafted iSCSI request to caus...

7.9CVSS6.3AI score0.07313EPSS
Exploits11References26Affected Software2
cvelist
cvelist
added 2019/01/22 8:0 p.m.6 views

CVE-2018-2147

...

Exploits0
cve
cve
added 2019/01/22 8:0 p.m.20 views

CVE-2018-2147

This CVE entry is rejected/not used and does not represent an active vulnerability.

7.3AI score
Exploits0
cve
cve
added 2017/10/06 10:0 p.m.43 views

CVE-2015-2147

Issuetracker phpBugTracker is affected by a SQL injection vulnerability in versions before 1.7.0. The issue allows remote attackers to execute arbitrary SQL commands via unspecified parameters. The connected CNVD entry confirms the existence and affected version range; no mitigation or patch deta...

9.8CVSS10AI score0.01593EPSS
Exploits0References2Affected Software1
osv
osv
added 2017/04/28 4:59 p.m.3 views

CVE-2017-2147

Cross-site scripting vulnerability in WP Statistics version 12.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS5.9AI score0.01278EPSS
Exploits0References3
cve
cve
added 2017/02/09 3:0 p.m.327 views

CVE-2016-2147

CVE-2016-2147 affects BusyBox’s DHCP client (udhcpc) prior to 1.25.0. An integer overflow in handling a malformed RFC1035-encoded domain name can trigger an out-of-bounds heap write, allowing remote attackers to cause a denial of service (crash) via the network. The initial description specifies ...

7.5CVSS8.1AI score0.08055EPSS
Exploits4References14Affected Software1
Rows per page
Query Builder