Lucene search
+L

93 matches found

OpenVAS
OpenVAS
added 2020/06/14 12:0 a.m.25 views

Debian: Security Advisory (DLA-2248-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.8AI score0.00587EPSS
Exploits0References3
OSV
OSV
added 2019/11/27 6:15 p.m.13 views

CVE-2012-2248

An issue was discovered in dhclient 4.3.1-6 due to an embedded path variable...

8.1CVSS6.7AI score0.0238EPSS
Exploits0References25
Debian CVE
Debian CVE
added 2019/11/27 5:40 p.m.33 views

CVE-2012-2248

An issue was discovered in dhclient 4.3.1-6 due to an embedded path variable...

9.3CVSS8AI score0.0238EPSS
Exploits0
CVE
CVE
added 2019/11/27 5:40 p.m.54 views

CVE-2012-2248

CVE-2012-2248 affects dhclient 4.3.1-6 due to an embedded path variable, described across multiple sources as a path traversal issue. The available connected documents consistently identify the problem as a vulnerability in the dhclient component, but do not provide concrete exploitation steps, a...

9.3CVSS7.9AI score0.0238EPSS
Exploits0References13Affected Software1
Circl
Circl
added 2019/05/24 5:53 p.m.7 views

CVE-2019-2248

creationtimestamp| type| source ---|---|--- 2019-05-24 17:53:17+00:00| seen| https://t.me/cvemitreorg/305...

7.8CVSS7.1AI score0.00197EPSS
Exploits0References1
NVD
NVD
added 2019/05/24 5:29 p.m.33 views

CVE-2019-2248

Buffer overflow can occur if invalid header tries to overwrite the existing buffer which fix size allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

7.8CVSS8.5AI score0.00197EPSS
Exploits0References1
CVE
CVE
added 2019/05/24 4:44 p.m.69 views

CVE-2019-2248

CVE-2019-2248 describes a buffer overflow that can occur when an invalid header overwrites an existing buffer with a fixed-size allocation, affecting a wide range of Qualcomm Snapdragon products (e.g., Snapdragon Auto/Compute/Connectivity, Snapdragon IoT/Wearables, Snapdragon 615/16, 625, 820/820...

7.8CVSS7.9AI score0.00197EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/05/24 4:44 p.m.35 views

CVE-2019-2248

Buffer overflow can occur if invalid header tries to overwrite the existing buffer which fix size allocation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

8.5AI score0.00197EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/01/22 8:0 p.m.9 views

CVE-2018-2248

...

Exploits0
CVE
CVE
added 2019/01/22 8:0 p.m.31 views

CVE-2018-2248

CVE-2018-2248 entry is rejected/not used and does not represent an active vulnerability.

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/09/10 12:0 a.m.145 views

Apache Struts 2.x < 2.3.15.1 Multiple Vulnerabilities (S2-016) (S2-017)

The version of Apache Struts running on the remote host is 2.x prior to 2.3.15.1. It, therefore, is affected by multiple vulnerabilities including a remote command execution vulnerability and an open redirect vulnerability. Note that Nessus has not tested for these issues but has instead relied...

9.8CVSS7.8AI score0.99998EPSS
Exploits20References4
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 7:37 p.m.49 views

Security Bulletin:Sterling Web Channel is affected by Apache Struts 2 security vulnerabilities (CVE-2013-4310, CVE-2013-4316, CVE-2013-2251, CVE-2013-2248, CVE-2013-2135, CVE-2013-2134, CVE-2013-2115, CVE-2013-1966, CVE-2013-1965)

Summary IBM Sterling Web Channel use Apache Struts 2 and is affected by some of the vulnerabilities that exist in Apache Struts 2. Vulnerability Details CVEID: CVE-2013-4310 Description: Apache Struts could allow a remote attacker to bypass security restrictions, caused by an error in the action:...

10CVSS1.1AI score0.99998EPSS
Exploits35Affected Software1
NVD
NVD
added 2017/07/17 1:18 p.m.12 views

CVE-2017-2248

Untrusted search path vulnerability in Installer of Lhaz+ version 3.4.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

9.3CVSS7.8AI score0.01059EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/07/14 4:0 p.m.14 views

CVE-2017-2248

Untrusted search path vulnerability in Installer of Lhaz+ version 3.4.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...

7.8AI score0.01059EPSS
Exploits0References2
CVE
CVE
added 2017/07/14 4:0 p.m.43 views

CVE-2017-2248

CVE-2017-2248 affects Lhaz+ installers (version 3.4.0 and earlier). The root cause is an untrusted search path leading to insecure loading of a Trojan horse DLL (CWE-427), enabling arbitrary code execution with the user’s privileges during installation. Public sources in CNVD/JVN indicate the vul...

9.3CVSS7.7AI score0.01059EPSS
Exploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2017/07/07 12:0 a.m.89 views

JVN#21369452: Installers of Lhaz and Lhaz+, and Self-Extracting Archives created by Lhaz or Lhaz+ may insecurely load Dynamic Link Libraries

Lhaz and Lhaz+ provided by Chitora soft contain the following vulnerabilities. Installers of Lhaz and Lhaz+ insecurely load Dynamic Link Libraries CWE-427 - CVE-2017-2246, CVE-2017-2248 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H| Base Score: 7.8 CVSS...

9.3CVSS7.7AI score0.01059EPSS
Exploits0
Cent OS
Cent OS
added 2015/11/30 7:45 p.m.62 views

netcf security update

CentOS Errata and Security Advisory CESA-2015:2248 Updated netcf packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common...

7.5CVSS7.1AI score0.02672EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2015/11/24 12:0 a.m.21 views

Oracle Linux 7 : netcf (ELSA-2015-2248)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2015-2248 advisory. 0.2.8-1 - Rebase to netcf-0.2.8 - resolve rhbz1165965 - CVE-2014-8119 - resolve rhbz1159000 - support multiple IPv4 addresses in interface config redhat driver ...

7.5CVSS7.5AI score0.02672EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2015/05/07 12:0 a.m.34 views

Dell SonicWALL Secure Remote Access (SRA) Appliance - Cross-Site Request Forgery

Exploit Title: Dell SonicWALL Secure Remote Access SRA Appliance Cross-Site Request Forgery Date: 04/28/2015 Exploit Author: Veit Hailperin Vendor Homepage: www.dell.com Version: Dell SonicWALL SRA 7.5 prior to 7.5.1.0-38sv and 8.0 prior to 8.0.0.1-16sv CVE : 2015-2248 Exploitation Procedure...

7AI score
Exploits0
NVD
NVD
added 2015/05/01 3:59 p.m.13 views

CVE-2015-2248

Cross-site request forgery CSRF vulnerability in the user portal in Dell SonicWALL Secure Remote Access SRA products with firmware before 7.5.1.0-38sv and 8.x before 8.0.0.1-16sv allows remote attackers to hijack the authentication of users for requests that create bookmarks via a crafted request...

6.8CVSS7.2AI score0.03958EPSS
Exploits2References6
Rows per page
Query Builder