114 matches found
CVE-2021-3554
creationtimestamp| type| source ---|---|--- 2021-11-24 18:26:59+00:00| seen| https://t.me/cibsecurity/32946...
CVE-2021-3554
Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linux as a relay role allows an attacker to manipulate the remote address used for pulling patches. This issue affects: Bitdefender Endpoint Security Tools for Linux versions...
CVE-2021-3554
CVE-2021-3554 describes an improper access control in the patchesUpdate API of Bitdefender Endpoint Security Tools for Linux, where a relay role can be abused to manipulate the remote address used to pull patches. Affected are Bitdefender Endpoint Security Tools for Linux versions before 6.6.27.3...
CVE-2021-3554 Improper Access Control vulnerability in the patchesUpdate API
Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linux as a relay role allows an attacker to manipulate the remote address used for pulling patches. This issue affects: Bitdefender Endpoint Security Tools for Linux versions...
SUSE: Security Advisory (SUSE-SU-2012:0114-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2012:0114-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-3554
CVE-2020-3554 affects Cisco ASA and FTD TCP packet processing due to a memory exhaustion condition, allowing unauthenticated remote DoS via high-rate crafted TCP traffic. Real-world impact per sources: potential exhaustion of device resources and DoS for transit traffic. Connected advisories conf...
Huawei EulerOS: Security Advisory for libndp (EulerOS-SA-2019-2497)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP3 : libndp (EulerOS-SA-2019-2611)
According to the version of the libndp package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Buffer overflow in the ndpmsgoptdnssldomain function in libndp allows remote routers to cause a denial of service crash and possibly execute arbitra...
EulerOS 2.0 SP2 : libndp (EulerOS-SA-2019-2497)
According to the version of the libndp package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Buffer overflow in the ndpmsgoptdnssldomain function in libndp allows remote routers to cause a denial of service crash and possibly execute arbitra...
CVE-2019-3554
Wangle's AcceptRoutingHandler incorrectly casts a socket when accepting a TLS 1.3 connection, leading to potential denial-of-service against systems that accept TLS 1.3. Affected: Wangle versions prior to v2019.01.14.00. Root cause: incorrect socket casting in AcceptRoutingHandler during TLS 1.3 ...
Ubuntu: Security Advisory (USN-3554-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS / 16.04 LTS : curl vulnerabilities (USN-3554-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3554-1 advisory. It was discovered that curl incorrectly handled certain data. An attacker could possibly use this to cause a denial of service or even to get...
CVE-2017-3554
CVE-2017-3554 affects Oracle WebCenter Sites (Oracle Fusion Middleware) under the Catalog Mover subcomponent. Affected versions: 11.1.1.8.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. The vulnerability enables a low-privileged attacker who can access the service over HTTP from the network to compromi...
CVE-2016-3554
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to PC / BOM, MCAD, and Design...
CVE-2016-3554
Affected product: Oracle Supply Chain Product Suite (SCP) 9.3.4 and 9.3.5 with Oracle Agile PLM component. The vulnerability is described as unspecified, allowing remote authenticated users to affect confidentiality, integrity, and availability via vectors related to PC / BOM, MCAD, and Design. C...
Oracle: Security Advisory (ELSA-2016-3554)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3554)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-3554 advisory. kernel-uek 4.1.12-37.2.2 - sctp: Prevent soft lockup when sctpaccept is called during a timeout event Karl Heiss Orabug: 23222731 CVE-2015-8767 Tenable has...
Debian DSA-3554-1 : xen - security update
Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2016-3158, CVE-2016-3159 XSA-172 Jan Beulich from SUSE discovered that Xen does not properly handle writes to the hardware FSW.ES bit whe...
Debian Security Advisory DSA 3554-1 (xen - security update)
Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2016-3158, CVE-2016-3159 XSA-172 Jan Beulich from SUSE discovered that Xen does not properly handle writes to the hardware FSW.ES bit when...