Lucene search
+L

107 matches found

F5 Networks
F5 Networks
added 2023/02/21 4:17 p.m.40 views

K14734: Apache HTTP server vulnerability CVE-2013-2249

Security Advisory Description modsessiondbd.c in the modsessiondbd module in the Apache HTTP Server before 2.4.5 proceeds with save operations for a session without considering the dirty flag and the requirement for a new session ID, which has unspecified impact and remote attack vectors...

7.5CVSS8.1AI score0.14255EPSS
Exploits3Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 4:4 a.m.7 views

SUSE CVE-2020-2249

Jenkins Team Foundation Server Plugin 5.157.1 and earlier stores a webhook secret unencrypted in its global configuration file on the Jenkins controller where it can be viewed by attackers with access to the Jenkins controller file system...

3.3CVSS4.5AI score0.00257EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.24 views

RHEL 7 : .NET Core on Red Hat Enterprise Linux (RHSA-2020:2249)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:2249 advisory. .NET Core is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...

7.5CVSS7.4AI score0.11684EPSS
Exploits0References6
Circl
Circl
added 2022/10/12 10:26 p.m.4 views

CVE-2022-2249

creationtimestamp| type| source ---|---|--- 2022-10-12 22:26:57+00:00| seen| https://t.me/cibsecurity/51279...

7.7CVSS6.4AI score0.00191EPSS
Exploits0References1
CVE
CVE
added 2022/10/12 12:0 a.m.57 views

CVE-2022-2249

Technical details about CVE-2022-2249 are not publicly available in the provided documents. Monitor for updates from vendors and security advisories.

7.7CVSS7.2AI score0.00191EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.31 views

Slackware: Security Advisory (SSA:2013-218-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.29484EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.16 views

Siemens SIMATIC S7-1500 & S7-1200 Cross-Site Request Forgery (CVE-2014-2249)

Cross-site request forgery CSRF vulnerability on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 and SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors. This plugin only works...

5.8CVSS5.5AI score0.01344EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.30 views

Mageia: Security Advisory (MGASA-2013-0231)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.29484EPSS
Exploits5References8
CVE
CVE
added 2021/04/22 9:53 p.m.79 views

CVE-2021-2249

CVE-2021-2249 affects Oracle E-Business Suite, specifically the Oracle Landed Cost Management shipment workbench. A vulnerability in supported releases 12.1.1–12.1.3 and 12.2.3–12.2.10 allows a low-privilege, network-based attacker (HTTP) to compromise data, potentially enabling unauthorized crea...

8.1CVSS8.1AI score0.00931EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2020/09/01 2:15 p.m.15 views

CVE-2020-2249

Jenkins Team Foundation Server Plugin 5.157.1 and earlier stores a webhook secret unencrypted in its global configuration file on the Jenkins controller where it can be viewed by attackers with access to the Jenkins controller file system...

3.3CVSS6.6AI score
Exploits0References2
CVE
CVE
added 2020/09/01 1:50 p.m.81 views

CVE-2020-2249

CVE-2020-2249 affects Jenkins Team Foundation Server Plugin versions 5.157.1 and earlier, where a webhook secret is stored unencrypted in the plugin’s global configuration file (hudson.plugins.tfs.TeamPluginGlobalConfig.xml) on the Jenkins controller file system. This allows attackers with local ...

3.3CVSS3.9AI score0.00257EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2020/09/01 1:50 p.m.44 views

CVE-2020-2249

Jenkins Team Foundation Server Plugin 5.157.1 and earlier stores a webhook secret unencrypted in its global configuration file on the Jenkins controller where it can be viewed by attackers with access to the Jenkins controller file system...

3.3CVSS3.5AI score0.00257EPSS
Exploits0References2
Circl
Circl
added 2020/01/27 11:37 p.m.8 views

CVE-2015-2249

creationtimestamp| type| source ---|---|--- 2020-01-27 23:37:39+00:00| seen| https://t.me/cveNotify/472...

5.4CVSS5.5AI score0.00688EPSS
Exploits0References1
CVE
CVE
added 2020/01/27 6:28 p.m.46 views

CVE-2015-2249

CVE-2015-2249 affects Zimbra Collaboration Suite prior to 8.6.0 patch5 with a cross-site scripting (XSS) vulnerability. Connected sources confirm an XSS flaw in the web application. No explicit root cause, exploitation status, or remediation details are provided in the connected documents.

5.4CVSS5.5AI score0.00688EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for httpd (EulerOS-SA-2019-2249)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS7AI score0.1786EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/11/06 5:11 p.m.21 views

CVE-2019-2249

Kernel can do a memory read from arbitrary address passed by user during execution of a syscall in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9205, MDM9650, QCA8081,...

9.4AI score0.01427EPSS
Exploits0References1
CVE
CVE
added 2019/11/06 5:11 p.m.55 views

CVE-2019-2249

CVE-2019-2249 affects Qualcomm Snapdragon kernel code and enables a memory read from an arbitrary address supplied by user during a syscall. Documented in multiple sources (NVD, Red Hat), it lists extensive Snapdragon family coverage (e.g., IPQ8074, SD 427/435/450/625/636/665/675/712/710/670/730/...

10CVSS9.2AI score0.01427EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/01/22 8:0 p.m.7 views

CVE-2018-2249

...

Exploits0
CVE
CVE
added 2019/01/22 8:0 p.m.19 views

CVE-2018-2249

CVE-2018-2249 entry is rejected and does not represent an active vulnerability.

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/01/09 12:0 a.m.133 views

Apache 2.4.x < 2.4.6 Multiple Vulnerabilities

According to its banner, the version of Apache 2.4.x running on the remote host is prior to 2.4.6. It is, therefore, potentially affected by the following vulnerabilities : - A denial of service vulnerability exists relating to the 'moddav' module as it relates to MERGE requests. CVE-2013-1896 - ...

7.5CVSS7AI score0.29484EPSS
Exploits5References4
Rows per page
Query Builder