91 matches found
SUSE: Security Advisory (SUSE-SU-2022:2289-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-2289
creationtimestamp| type| source ---|---|--- 2022-07-03 18:16:37+00:00| seen| https://t.me/cibsecurity/45551...
AZL-10061 CVE-2022-2289 affecting package vim for versions less than 9.0.0050-2
Use After Free in GitHub repository vim/vim prior to 9.0...
CVE-2022-2289
Use After Free in GitHub repository vim/vim prior to 9.0...
CVE-2022-2289
CVE-2022-2289 : Use After Free in vim/vim prior to 9.0. The connected advisories confirm Vim 9.0+ is required to address the issue; affected product is Vim (GitHub vim/vim) before 9.0. No exploitation details are provided in the documents beyond the use-after-free classification. The AstraLinux/A...
CVE-2022-2289 Use After Free in vim/vim
Use After Free in GitHub repository vim/vim prior to 9.0...
CVE-2022-2289 Use After Free in vim/vim
Use After Free in GitHub repository vim/vim prior to 9.0...
CVE-2022-2289
Use After Free in GitHub repository vim/vim prior to 9.0...
CVE-2021-2289
The CVE-2021-2289 entry affects Oracle E-Business Suite, Oracle Product Hub, Template GTIN search. The vulnerable component is the Template GTIN search functionality in Product Hub, affected on versions 12.1.1–12.1.3 and 12.2.3–12.2.10. The root cause is a vulnerability that allows a low-privileg...
CVE-2020-2289
creationtimestamp| type| source ---|---|--- 2020-10-08 16:30:49+00:00| seen| https://t.me/cibsecurity/15146...
CVE-2020-2289
Jenkins Active Choices Plugin 2.4 and earlier does not escape the name and description of build parameters, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Job/Configure permission...
CVE-2020-2289
CVE-2020-2289 affects Jenkins with the Active Choices Plugin (versions 2.4 and earlier). The root cause is that the name and description of build parameters are not escaped, leading to a stored cross-site scripting (XSS) vulnerability. The impact is that an attacker with Job/Configure permission ...
CVE-2019-2289
CVE-2019-2289 involves a lack of integrity check that allows a MODEM to accept arbitrary NAS messages, potentially causing authentication bypass of NAS on Snapdragon-based devices (e.g., Snapdragon Auto, Compute, IoT variants across APQ and MSM families). The description lists an extensive set of...
CVE-2019-2289
Lack of integrity check allows MODEM to accept any NAS messages which can result into authentication bypass of NAS in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in...
CVE-2018-2289
CVE-2018-2289 is rejected/not used; this CVE entry does not represent an active vulnerability.
CVE-2018-2289
...
Important: Red Hat Security Advisory: qemu-kvm-rhev security update
An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...
Solaris 10 (sparc) : 121428-15
SunOS 5.10: Live Upgrade Zones Support Patch. Date this patch was last updated by Sun : Apr/19/11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...
CVE-2017-2289
CVE-2017-2289 affects Qua station connection tool for Windows, installer (version 1.00.03). A DLL search path issue (CWE-427) in the installer allows loading a Trojan DLL from an untrusted directory, enabling arbitrary code execution with the invoking user’s privileges. Documents from JVN/JVNDB i...
CVE-2016-2289
Directory traversal vulnerability in ICONICS WebHMI 9 and earlier allows remote attackers to read configuration files, and consequently discover password hashes, via unspecified vectors...