107 matches found
K14734: Apache HTTP server vulnerability CVE-2013-2249
Security Advisory Description modsessiondbd.c in the modsessiondbd module in the Apache HTTP Server before 2.4.5 proceeds with save operations for a session without considering the dirty flag and the requirement for a new session ID, which has unspecified impact and remote attack vectors...
SUSE CVE-2020-2249
Jenkins Team Foundation Server Plugin 5.157.1 and earlier stores a webhook secret unencrypted in its global configuration file on the Jenkins controller where it can be viewed by attackers with access to the Jenkins controller file system...
RHEL 7 : .NET Core on Red Hat Enterprise Linux (RHSA-2020:2249)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2249 advisory. .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...
CVE-2022-2249
creationtimestamp| type| source ---|---|--- 2022-10-12 22:26:57+00:00| seen| https://t.me/cibsecurity/51279...
CVE-2022-2249
Technical details about CVE-2022-2249 are not publicly available in the provided documents. Monitor for updates from vendors and security advisories.
Slackware: Security Advisory (SSA:2013-218-02)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Siemens SIMATIC S7-1500 & S7-1200 Cross-Site Request Forgery (CVE-2014-2249)
Cross-site request forgery CSRF vulnerability on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 and SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. This plugin only works...
Mageia: Security Advisory (MGASA-2013-0231)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-2249
CVE-2021-2249 affects Oracle E-Business Suite, specifically the Oracle Landed Cost Management shipment workbench. A vulnerability in supported releases 12.1.1–12.1.3 and 12.2.3–12.2.10 allows a low-privilege, network-based attacker (HTTP) to compromise data, potentially enabling unauthorized crea...
CVE-2020-2249
Jenkins Team Foundation Server Plugin 5.157.1 and earlier stores a webhook secret unencrypted in its global configuration file on the Jenkins controller where it can be viewed by attackers with access to the Jenkins controller file system...
CVE-2020-2249
CVE-2020-2249 affects Jenkins Team Foundation Server Plugin versions 5.157.1 and earlier, where a webhook secret is stored unencrypted in the plugin’s global configuration file (hudson.plugins.tfs.TeamPluginGlobalConfig.xml) on the Jenkins controller file system. This allows attackers with local ...
CVE-2020-2249
Jenkins Team Foundation Server Plugin 5.157.1 and earlier stores a webhook secret unencrypted in its global configuration file on the Jenkins controller where it can be viewed by attackers with access to the Jenkins controller file system...
CVE-2015-2249
creationtimestamp| type| source ---|---|--- 2020-01-27 23:37:39+00:00| seen| https://t.me/cveNotify/472...
CVE-2015-2249
CVE-2015-2249 affects Zimbra Collaboration Suite prior to 8.6.0 patch5 with a cross-site scripting (XSS) vulnerability. Connected sources confirm an XSS flaw in the web application. No explicit root cause, exploitation status, or remediation details are provided in the connected documents.
Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2019-2249)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2019-2249
Kernel can do a memory read from arbitrary address passed by user during execution of a syscall in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9205, MDM9650, QCA8081,...
CVE-2019-2249
CVE-2019-2249 affects Qualcomm Snapdragon kernel code and enables a memory read from an arbitrary address supplied by user during a syscall. Documented in multiple sources (NVD, Red Hat), it lists extensive Snapdragon family coverage (e.g., IPQ8074, SD 427/435/450/625/636/665/675/712/710/670/730/...
CVE-2018-2249
...
CVE-2018-2249
CVE-2018-2249 entry is rejected and does not represent an active vulnerability.
Apache 2.4.x < 2.4.6 Multiple Vulnerabilities
According to its banner, the version of Apache 2.4.x running on the remote host is prior to 2.4.6. It is, therefore, potentially affected by the following vulnerabilities : - A denial of service vulnerability exists relating to the 'moddav' module as it relates to MERGE requests. CVE-2013-1896 - ...