Lucene search
+L

136 matches found

OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.38 views

Huawei EulerOS: Security Advisory for libXfont (EulerOS-SA-2019-2357)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.1AI score0.08355EPSS
Exploits0References2
NVD
NVD
added 2019/10/16 6:15 p.m.20 views

CVE-2019-2895

Vulnerability in the Enterprise Manager for Exadata product of Oracle Enterprise Manager component: Exadata Plug-In Deploy and Ins. Supported versions that are affected are 12.1.0.5.0, 13.2.2.0.0, 13.3.1.0.0 and 13.3.2.0.0. Difficult to exploit vulnerability allows low privileged attacker with...

7.5CVSS7AI score0.01215EPSS
Exploits0References1
OSV
OSV
added 2019/10/16 6:15 p.m.6 views

CVE-2019-2895

Vulnerability in the Enterprise Manager for Exadata product of Oracle Enterprise Manager component: Exadata Plug-In Deploy and Ins. Supported versions that are affected are 12.1.0.5.0, 13.2.2.0.0, 13.3.1.0.0 and 13.3.2.0.0. Difficult to exploit vulnerability allows low privileged attacker with...

7.5CVSS7.2AI score0.01215EPSS
Exploits0References1
CVE
CVE
added 2019/10/16 5:40 p.m.61 views

CVE-2019-2895

CVE-2019-2895 affects Oracle Enterprise Manager for Exadata (component: Exadata Plug-In Deploy and Ins). Affects 12.1.0.5.0, 13.2.2.0.0, 13.3.1.0.0, and 13.3.2.0.0. The vulnerability is exploitable remotely over HTTP by a low-privileged attacker and can lead to takeover of Enterprise Manager for ...

7.5CVSS7.5AI score0.01215EPSS
Exploits0References1Affected Software1
Symantec
Symantec
added 2019/10/15 12:0 a.m.28 views

Oracle Enterprise Manager CVE-2019-2895 Remote Security Vulnerability

Description Oracle Enterprise Manager is prone to a remote security vulnerability in Enterprise Manager for Exadata. The vulnerability can be exploited over the 'HTTP' protocol. The 'Exadata Plug-In Deploy and Ins' component is affected. This vulnerability affects the following supported versions...

1AI score0.01215EPSS
Exploits0References1Affected Software1
Virtuozzo
Virtuozzo
added 2018/10/09 12:0 a.m.11 views

Virtuozzo Linux Errata and Bugfix Advisory 2018:2895

Upstream security update. Follow RHBA-2018:2895 for details...

2.4AI score
Exploits0
CVE
CVE
added 2018/07/18 1:0 p.m.47 views

CVE-2018-2895

The CVE-2018-2895 entry concerns Oracle Banking Corporate Lending (Core module) in Oracle Financial Services Applications. Affected versions are 12.3.0, 12.4.0, 12.5.0, 14.0.0, and 14.1.0. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise the affected...

6.1CVSS5.6AI score0.01542EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2018/07/18 1:0 p.m.22 views

CVE-2018-2895

Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications subcomponent: Core module. Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network...

5.8AI score0.01542EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2017/11/07 4:29 p.m.24 views

CVE-2017-2895

An exploitable arbitrary memory read vulnerability exists in the MQTT packet parsing functionality of Cesanta Mongoose 6.8. A specially crafted MQTT SUBSCRIBE packet can cause an arbitrary out-of-bounds memory read potentially resulting in information disclosure and denial of service. An attacker...

8.2CVSS7.2AI score0.01311EPSS
Exploits1References2
NVD
NVD
added 2017/11/07 4:29 p.m.22 views

CVE-2017-2895

An exploitable arbitrary memory read vulnerability exists in the MQTT packet parsing functionality of Cesanta Mongoose 6.8. A specially crafted MQTT SUBSCRIBE packet can cause an arbitrary out-of-bounds memory read potentially resulting in information disclosure and denial of service. An attacker...

8.2CVSS7.9AI score0.01311EPSS
Exploits1References1
CVE
CVE
added 2017/11/07 4:0 p.m.69 views

CVE-2017-2895

The CVE-2017-2895 issue affects Cesanta Mongoose 6.8 in its MQTT SUBSCRIBE packet parsing. The root cause is a missing bounds check when parsing topic length (topic->len read from the packet) before using it to locate the QoS byte, enabling an out-of-bounds read from the message payload. This ...

8.2CVSS7.7AI score0.01311EPSS
Exploits1References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/02/19 12:0 a.m.35 views

Ubuntu 14.04 LTS : Oxide vulnerabilities (USN-2895-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2895-1 advisory. The DOM implementation in Chromium did not properly restrict frame-attach operations from occurring during or after frame-detach operations. If a user we...

8.8CVSS8.8AI score0.01352EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2016/02/19 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-2895-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.5AI score0.01352EPSS
Exploits1References2
Cvelist
Cvelist
added 2015/12/31 2:0 a.m.26 views

CVE-2015-2895

Buffer overflow in the up.time client in Idera Uptime Infrastructure Monitor 7.4 might allow remote attackers to execute arbitrary code via long command input...

7.7AI score0.01902EPSS
Exploits0References1
CVE
CVE
added 2015/12/31 2:0 a.m.56 views

CVE-2015-2895

CVE-2015-2895 concerns the Up.time client in Idera Uptime Infrastructure Monitor. The vulnerability is a buffer overflow in the up.time client (7.4) that could allow a remote attacker to trigger arbitrary code execution by sending input longer than a certain size. The CERT advisory notes remediat...

7.5CVSS7.7AI score0.01902EPSS
Exploits0References1Affected Software1
CERT
CERT
added 2015/12/08 12:0 a.m.31 views

Up.time agent for Windows contains multiple vulnerabilities

Overview The Up.time client for Windows is vulnerable to an format string attack as well as a buffer overflow, and may allow unauthenticated users to perform certain commands. Description CWE-134: Uncontrolled Format String - CVE-2015-2894For version 6.0 and 7.2, an unauthenticated attacker on th...

7.5CVSS6.8AI score0.01902EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.18 views

Oracle: Security Advisory (ELSA-2011-1154)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.3AI score0.08355EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.19 views

Gentoo Security Advisory GLSA 201402-23

Gentoo Linux Local Security Checks GLSA 201402-23 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

9.3CVSS7.5AI score0.10254EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2015/03/27 12:0 a.m.46 views

Fedora 21 : nx-libs-3.5.0.29-1.fc21 (2015-3948)

Update to 3.5.0.29 : - further reduction of code size by Mike Gabriel - /.x2go/config/keystrokes.cfg, /etc/x2go/keystrokes.cfg and /etc/nxagent/keystrokes.cfg are now respected thanks to Horst Schirmeier - security fixes for CVE-2011-2895, CVE-2011-4028, CVE-2013-4396, CVE-2013-6462, CVE-2014-020...

9.3CVSS6.9AI score0.10254EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2014/07/28 12:0 a.m.35 views

Fedora Update for kernel FEDORA-2014-8487

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.6AI score0.37233EPSS
Exploits75References4
Rows per page
Query Builder