Lucene search
K

114 matches found

Circl
Circl
added 2021/11/24 6:26 p.m.7 views

CVE-2021-3554

creationtimestamp| type| source ---|---|--- 2021-11-24 18:26:59+00:00| seen| https://t.me/cibsecurity/32946...

10CVSS8.7AI score0.02682EPSS
Exploits0References1
NVD
NVD
added 2021/11/24 4:15 p.m.18 views

CVE-2021-3554

Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linux as a relay role allows an attacker to manipulate the remote address used for pulling patches. This issue affects: Bitdefender Endpoint Security Tools for Linux versions...

10CVSS0.02682EPSS
Exploits0References1
CVE
CVE
added 2021/11/24 2:45 p.m.52 views

CVE-2021-3554

CVE-2021-3554 describes an improper access control in the patchesUpdate API of Bitdefender Endpoint Security Tools for Linux, where a relay role can be abused to manipulate the remote address used to pull patches. Affected are Bitdefender Endpoint Security Tools for Linux versions before 6.6.27.3...

10CVSS9.2AI score0.02682EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/11/24 2:45 p.m.21 views

CVE-2021-3554 Improper Access Control vulnerability in the patchesUpdate API

Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linux as a relay role allows an attacker to manipulate the remote address used for pulling patches. This issue affects: Bitdefender Endpoint Security Tools for Linux versions...

9CVSS9.5AI score0.02682EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2012:0114-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.96714EPSS
Exploits20References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2012:0114-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.96714EPSS
Exploits20References4
CVE
CVE
added 2020/10/21 6:41 p.m.103 views

CVE-2020-3554

CVE-2020-3554 affects Cisco ASA and FTD TCP packet processing due to a memory exhaustion condition, allowing unauthenticated remote DoS via high-rate crafted TCP traffic. Real-world impact per sources: potential exhaustion of device resources and DoS for transit traffic. Connected advisories conf...

8.6CVSS7.5AI score0.02633EPSS
Exploits0References1Affected Software3
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.13 views

Huawei EulerOS: Security Advisory for libndp (EulerOS-SA-2019-2497)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.6AI score0.02803EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/18 12:0 a.m.21 views

EulerOS 2.0 SP3 : libndp (EulerOS-SA-2019-2611)

According to the version of the libndp package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Buffer overflow in the ndpmsgoptdnssldomain function in libndp allows remote routers to cause a denial of service crash and possibly execute arbitra...

6.8CVSS6AI score0.02803EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/04 12:0 a.m.21 views

EulerOS 2.0 SP2 : libndp (EulerOS-SA-2019-2497)

According to the version of the libndp package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Buffer overflow in the ndpmsgoptdnssldomain function in libndp allows remote routers to cause a denial of service crash and possibly execute arbitra...

6.8CVSS6AI score0.02803EPSS
Exploits0References2
CVE
CVE
added 2019/01/15 10:0 p.m.46 views

CVE-2019-3554

Wangle's AcceptRoutingHandler incorrectly casts a socket when accepting a TLS 1.3 connection, leading to potential denial-of-service against systems that accept TLS 1.3. Affected: Wangle versions prior to v2019.01.14.00. Root cause: incorrect socket casting in AcceptRoutingHandler during TLS 1.3 ...

5.9CVSS5.6AI score0.01055EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-3554-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.08031EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/02/01 12:0 a.m.25 views

Ubuntu 14.04 LTS / 16.04 LTS : curl vulnerabilities (USN-3554-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3554-1 advisory. It was discovered that curl incorrectly handled certain data. An attacker could possibly use this to cause a denial of service or even to get...

9.8CVSS7AI score0.08031EPSS
Exploits0References3
CVE
CVE
added 2017/04/24 7:0 p.m.58 views

CVE-2017-3554

CVE-2017-3554 affects Oracle WebCenter Sites (Oracle Fusion Middleware) under the Catalog Mover subcomponent. Affected versions: 11.1.1.8.0, 12.2.1.0.0, 12.2.1.1.0 and 12.2.1.2.0. The vulnerability enables a low-privileged attacker who can access the service over HTTP from the network to compromi...

8.1CVSS7.8AI score0.01764EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2016/07/21 10:0 a.m.10 views

CVE-2016-3554

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to PC / BOM, MCAD, and Design...

5.7AI score0.04114EPSS
Exploits0References4
CVE
CVE
added 2016/07/21 10:0 a.m.47 views

CVE-2016-3554

Affected product: Oracle Supply Chain Product Suite (SCP) 9.3.4 and 9.3.5 with Oracle Agile PLM component. The vulnerability is described as unspecified, allowing remote authenticated users to affect confidentiality, integrity, and availability via vectors related to PC / BOM, MCAD, and Design. C...

9CVSS7.5AI score0.04114EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2016/05/09 12:0 a.m.51 views

Oracle: Security Advisory (ELSA-2016-3554)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.2CVSS7.5AI score0.00391EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/05/09 12:0 a.m.59 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3554)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-3554 advisory. kernel-uek 4.1.12-37.2.2 - sctp: Prevent soft lockup when sctpaccept is called during a timeout event Karl Heiss Orabug: 23222731 CVE-2015-8767 Tenable has...

6.2CVSS7.1AI score0.00391EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/04/22 12:0 a.m.41 views

Debian DSA-3554-1 : xen - security update

Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2016-3158, CVE-2016-3159 XSA-172 Jan Beulich from SUSE discovered that Xen does not properly handle writes to the hardware FSW.ES bit whe...

8.8CVSS6.7AI score0.00455EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2016/04/21 12:0 a.m.57 views

Debian Security Advisory DSA 3554-1 (xen - security update)

Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2016-3158, CVE-2016-3159 XSA-172 Jan Beulich from SUSE discovered that Xen does not properly handle writes to the hardware FSW.ES bit when...

7.2CVSS0.1AI score0.00455EPSS
Exploits0References1
Rows per page
Query Builder