105 matches found
Mageia: Security Advisory (MGASA-2013-0371)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2013-0372)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2013-0375)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2013-0373)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2022:0135-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15: freeradius-server / freeradius-server-devel / etc (SUSE-SU-2021:2147-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2021:2147-1 advisory. - Fixed plaintext password entries in logfiles bsc1184016. Tenable has extracted the preceding description block directly from the SUSE security...
Oracle Linux 7 : glib2 (ELSA-2021-2147)
The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-2147 advisory. 2.56.1-9 - Fix CVE-2021-27219 Resolves: 1960596 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...
CVE-2021-2147
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems component: Installation. The supported version that is affected is 8.8. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance Kit execut...
CVE-2021-2147
Oracle ZFS Storage Appliance Kit Installation (8.8) has CVE-2021-2147. The vulnerability allows a high-privileged attacker who can log on to the infrastructure running the kit, with required user interaction, to perform unauthorized updates/insertions/deletions of data accessible by the kit. The ...
[SECURITY] [DLA 2559-1] busybox security update
Debian LTS Advisory DLA-2559-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany February 15, 2021 https://wiki.debian.org/LTS Package : busybox Version : 1:1.22.0-19+deb9u1 CVE ID : CVE-2011-5325 CVE-2015-9261 CVE-2016-2147 CVE-2016-2148 CVE-2017-15873 CVE-2017-165...
CVE-2020-2147
A cross-site request forgery vulnerability in Jenkins Mac Plugin 1.1.0 and earlier allows attackers to connect to an attacker-specified SSH server using attacker-specified credentials...
CVE-2020-2147
CVE-2020-2147 affects the Jenkins Mac Plugin, specifically versions 1.1.0 and earlier. The issue is a cross-site request forgery (CSRF) that allows an attacker to cause the plugin to connect to an attacker-specified SSH server using attacker-specified credentials. The published metrics list a CVS...
CVE-2019-2147
CVE-2019-2147 affects the Android libxaac library. The issue is an out-of-bounds read caused by a missing bounds check in libxaac, leading to potential information disclosure. Exploitation requires user interaction, and the vulnerability does not grant additional execution privileges. Connected R...
Privilege Escalation
The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: A heap-based buffer overflow flaw was found in the Linux kernel's iSCSI target subsystem. A remote attacker could use a specially-crafted iSCSI request to caus...
Information Disclosure
The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: A heap-based buffer overflow flaw was found in the Linux kernel's iSCSI target subsystem. A remote attacker could use a specially-crafted iSCSI request to caus...
CVE-2018-2147
...
CVE-2018-2147
This CVE entry is rejected/not used and does not represent an active vulnerability.
CVE-2015-2147
Issuetracker phpBugTracker is affected by a SQL injection vulnerability in versions before 1.7.0. The issue allows remote attackers to execute arbitrary SQL commands via unspecified parameters. The connected CNVD entry confirms the existence and affected version range; no mitigation or patch deta...
CVE-2017-2147
Cross-site scripting vulnerability in WP Statistics version 12.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2016-2147
CVE-2016-2147 affects BusyBox’s DHCP client (udhcpc) prior to 1.25.0. An integer overflow in handling a malformed RFC1035-encoded domain name can trigger an out-of-bounds heap write, allowing remote attackers to cause a denial of service (crash) via the network. The initial description specifies ...