Lucene search
+L

143 matches found

Tenable Nessus
Tenable Nessus
added 2018/07/12 12:0 a.m.32 views

RHEL 6 : flash-plugin (RHSA-2018:2175)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2018:2175 advisory. - flash-plugin: Arbitrary Code Execution vulnerability APSB18-24 CVE-2018-5007 - flash-plugin: Information Disclosure vulnerability APSB18-2...

8.8CVSS8.3AI score0.18002EPSS
Exploits1References8
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 12:16 p.m.24 views

Security Bulletin: Vulnerability in Apache PDFBox affects FileNet Content Manager and IBM Content Foundation (CVE-2016-2175)

Summary Security vulnerabilitiy exists in Apache PDFBox that affects IBM FileNet Content Manager and IBM Content Foundation. Vulnerability Details CVEID: CVE-2016-2175 DESCRIPTION: Apache PDFBox could allow a remote authenticated attacker to obtain sensitive information, caused by a XML external...

7.8CVSS0.8AI score0.04758EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 8:10 p.m.34 views

Security Bulletin: Apache PDFBox affects IBM Emptoris Contract Management (CVE-2016-2175)

Summary Apache PDFBox affects IBM Emptoris Contract Management. Vulnerability Details CVEID: CVE-2016-2175 DESCRIPTION: Apache PDFBox could allow a remote authenticated attacker to obtain sensitive information, caused by a XML external entity XXE error when processing XML data by the XML parser. ...

7.8CVSS7.9AI score0.04758EPSS
Exploits0Affected Software1
Packet Storm
Packet Storm
added 2017/12/31 12:0 a.m.41 views

D3DGear 5.00 Build 2175 Buffer Overflow

!/usr/bin/python Exploit Author: bzyo Twitter: @bzyo Exploit Title: D3DGear 5.00 Build 2175 - Buffer Overflow Date: 07-11-2017 Vulnerable Software: D3DGear 5.00 Build 2175 Vendor Homepage: http://www.d3dgear.com/ Version: 5.00 Build 2175 Software Link: http://www.d3dgear.com/products.htm Tested O...

0.8AI score
Exploits0
exploitpack
exploitpack
added 2017/12/31 12:0 a.m.14 views

D3DGear 5.00 Build 2175 - Buffer Overflow (PoC)

D3DGear 5.00 Build 2175 - Buffer Overflow PoC !/usr/bin/python Exploit Author: bzyo Twitter: @bzyo Exploit Title: D3DGear 5.00 Build 2175 - Buffer Overflow Date: 07-11-2017 Vulnerable Software: D3DGear 5.00 Build 2175 Vendor Homepage: http://www.d3dgear.com/ Version: 5.00 Build 2175 Software Link...

0.7AI score
Exploits0
Prion
Prion
added 2017/09/30 1:29 a.m.27 views

Xxe

Apache Tika before 1.13 does not properly initialize the XML parser or choose handlers, which might allow remote attackers to conduct XML External Entity XXE attacks via vectors involving 1 spreadsheets in OOXML files and 2 XMP metadata in PDF and other file formats, a related issue to...

6.8CVSS8AI score0.04758EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2017/05/22 4:0 p.m.48 views

CVE-2017-2175

CVE-2017-2175 affects Empirical Project Monitor - eXtended. A DLL search-path vulnerability allows loading a Trojan horse DLL from an attacker-controlled directory, enabling privilege escalation/arbitrary code execution with the invoking user’s privileges during installation. No exploitation deta...

7.8CVSS7.7AI score0.01419EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2017/02/14 4:41 p.m.37 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Data Virtualization security and bug fix update

An update is now available for Red Hat JBoss Data Virtualization. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS7.9AI score0.17239EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2017/02/02 8:33 p.m.37 views

Moderate: Red Hat Security Advisory: Red Hat JBoss BRMS security update

An update is now available for Red Hat JBoss BRMS. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

7.8CVSS6.7AI score0.04758EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2016/08/02 12:0 a.m.24 views

Fedora Update for pdfbox FEDORA-2016-3f30a5faeb

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.04758EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/07/15 12:0 a.m.26 views

Fedora 23 : pdfbox (2016-3f30a5faeb)

Security fix for CVE-2016-2175 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

7.8CVSS7.3AI score0.04758EPSS
Exploits0References2
Mageia
Mageia
added 2016/07/14 8:33 p.m.38 views

Updated pdfbox packages fix security vulnerability

Apache PDFBox before 1.8.12 does not properly initialize the XML parsers, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted PDF CVE-2016-2175...

7.8CVSS5.9AI score0.04758EPSS
Exploits0References3
NVD
NVD
added 2016/06/01 8:59 p.m.23 views

CVE-2016-2175

Apache PDFBox before 1.8.12 and 2.x before 2.0.1 does not properly initialize the XML parsers, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted PDF...

7.8CVSS6AI score0.04758EPSS
Exploits0References12
OSV
OSV
added 2016/06/01 8:59 p.m.8 views

CVE-2016-2175

Apache PDFBox before 1.8.12 and 2.x before 2.0.1 does not properly initialize the XML parsers, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted PDF...

7.8CVSS7.3AI score
Exploits0References12
UbuntuCve
UbuntuCve
added 2016/06/01 8:59 p.m.28 views

CVE-2016-2175

Apache PDFBox before 1.8.12 and 2.x before 2.0.1 does not properly initialize the XML parsers, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted PDF...

7.8CVSS7.1AI score0.04758EPSS
Exploits0References2
CVE
CVE
added 2016/06/01 8:0 p.m.157 views

CVE-2016-2175

CVE-2016-2175 is an XXE vulnerability in Apache PDFBox. The issue arises because PDFBox’s XML parsers are not properly initialized when processing XML data inside PDFs, allowing context-dependent attackers to craft PDFs that cause XML External Entity (XXE) attacks. Affected products include PDFBo...

7.8CVSS7.3AI score0.04758EPSS
Exploits0References12Affected Software1
Debian CVE
Debian CVE
added 2016/06/01 8:0 p.m.35 views

CVE-2016-2175

Apache PDFBox before 1.8.12 and 2.x before 2.0.1 does not properly initialize the XML parsers, which allows context-dependent attackers to conduct XML External Entity XXE attacks via a crafted PDF...

7.8CVSS7.6AI score0.04758EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2016/05/27 9:48 a.m.28 views

CVE-2016-2175

It was found that the parsing of XMP and other XML formats in PDF by Apache PDFBox would expand entity references. A remote, unauthenticated attacker could use this flaw to read files accessible to the user running the application server, and potentially perform other more advanced XXE attacks...

7.8CVSS5.9AI score0.04758EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.35 views

Oracle: Security Advisory (ELSA-2012-0509)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS7.9AI score0.0859EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.31 views

Oracle: Security Advisory (ELSA-2013-0125)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS7.8AI score0.06597EPSS
Exploits8References2
Rows per page
Query Builder