Lucene search
K

80 matches found

NVD
NVD
added 2021/10/27 9:15 p.m.29 views

CVE-2021-3901

firefly-iii is vulnerable to Cross-Site Request Forgery CSRF...

8.8CVSS0.00536EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/10/27 8:50 p.m.26 views

CVE-2021-3901 Cross-Site Request Forgery (CSRF) in firefly-iii/firefly-iii

firefly-iii is vulnerable to Cross-Site Request Forgery CSRF...

3.5CVSS9AI score0.00536EPSS
Exploits1References2
CVE
CVE
added 2021/10/27 8:50 p.m.77 views

CVE-2021-3901

CVE-2021-3901 affects firefly-iii: Cross-Site Request Forgery (CSRF) in the web application. The vulnerability arises from insufficient request validation, enabling an attacker to cause unintended actions on behalf of authenticated users. CVSS data in the initial document lists CVSS v3.1 base sco...

8.8CVSS6.1AI score0.00536EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/10/08 12:0 a.m.75 views

Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2021-9473)

The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9473 advisory. - ocfs2: subsystem.sumutex is required while accessing the item-ciparent alex chen Orabug: 29184589 CVE-2017-18216 - bcache: fix potential deadlock...

9.8CVSS7.5AI score0.07604EPSS
Exploits6References9
Tenable Nessus
Tenable Nessus
added 2020/12/22 12:0 a.m.39 views

SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2020:3901-1)

This update for MozillaFirefox fixes the following issues : Firefox Extended Support Release 78.6.0 ESR - Fixed: Various stability, functionality, and security fixes MFSA 2020-55 bsc1180039 - CVE-2020-16042 bmo1679003 Operations on a BigInt could have caused uninitialized memory to be exposed -...

8.8CVSS7.9AI score0.01876EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2020/12/11 12:0 a.m.36 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : kernel-rt Multiple Vulnerabilities (NS-SA-2020-0117)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has kernel-rt packages installed that are affected by multiple vulnerabilities: - The fix for CVE-2019-11599, affecting the Linux kernel before 5.0.10 was not complete. A local user could use this flaw to obtain sensitive...

7CVSS6.9AI score0.00989EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2020/10/07 12:0 a.m.24 views

Oracle Linux 7 : libpng (ELSA-2020-3901)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-3901 advisory. - Fix CVE-2017-12652 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...

9.8CVSS6.6AI score0.04113EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/07/02 12:0 a.m.255 views

Apple iCloud 10.x < 10.9.3 Multiple Vulnerabilities

According to its version, the iCloud application installed on the remote Windows host is 10.x prior to 10.9.3. It is, therefore, affected by multiple vulnerabilities: - A logic issue was addressed with improved restrictions. A file URL may be incorrectly processed. CVE-2020-3885 - A logic issue w...

9.8CVSS7.9AI score0.04369EPSS
Exploits2References14
Tenable Nessus
Tenable Nessus
added 2020/07/02 12:0 a.m.102 views

Apple iCloud 7.x < 7.18 Multiple Vulnerabilities

According to its version, the iCloud application installed on the remote Windows host is 7.x prior to 7.18. It is, therefore, affected by multiple vulnerabilities: - A logic issue was addressed with improved restrictions. A file URL may be incorrectly processed. CVE-2020-3885 - A logic issue was...

9.8CVSS7.9AI score0.04369EPSS
Exploits2References14
Tenable Nessus
Tenable Nessus
added 2020/06/17 12:0 a.m.53 views

GLSA-202006-08 : WebKitGTK+: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202006-08 WebKitGTK+: Multiple vulnerabilities Multiple vulnerabilities have been discovered in WebKitGTK+. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for...

9.8CVSS6.8AI score0.04987EPSS
Exploits2References11
RedHat Linux
RedHat Linux
added 2020/06/11 9:37 p.m.192 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.3CVSS6.5AI score0.0415EPSS
Exploits2References13
OpenVAS
OpenVAS
added 2020/05/09 12:0 a.m.43 views

Debian: Security Advisory (DSA-4681-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.6AI score0.10986EPSS
Exploits2References6
Debian
Debian
added 2020/05/07 7:59 p.m.103 views

[SECURITY] [DSA 4681-1] webkit2gtk security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4681-1 [email protected] https://www.debian.org/security/ Alberto Garcia May 07, 2020 https://www.debian.org/security/faq -...

9.3CVSS8.2AI score0.04369EPSS
Exploits2
Debian
Debian
added 2020/05/07 7:59 p.m.70 views

[SECURITY] [DSA 4681-1] webkit2gtk security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4681-1 [email protected] https://www.debian.org/security/ Alberto Garcia May 07, 2020 https://www.debian.org/security/faq -...

9.3CVSS1.1AI score0.04369EPSS
Exploits2
Apple
Apple
added 2020/04/05 5:39 a.m.50 views

About the security content of iCloud for Windows 7.18 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.8CVSS1.2AI score0.04369EPSS
Exploits2Affected Software1
Apple
Apple
added 2020/04/05 5:35 a.m.68 views

About the security content of iCloud for Windows 10.9.3 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.8CVSS1.6AI score0.04369EPSS
Exploits2Affected Software1
CVE
CVE
added 2020/04/01 5:50 p.m.229 views

CVE-2020-3901

CVE-2020-3901 is a WebKit type-confusion vulnerability addressed by Apple in iOS 13.4 / iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, and related Apple software. The initial description notes a memory-handling related type confusion that could allow arbitrary code execution when processing ma...

8.8CVSS8.9AI score0.01846EPSS
Exploits0References7Affected Software7
Debian CVE
Debian CVE
added 2020/04/01 5:50 p.m.39 views

CVE-2020-3901

A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to arbitrar...

8.8CVSS7.2AI score0.01846EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/04/01 12:0 a.m.131 views

RHEL 7 : kernel (RHSA-2020:1016)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1016 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: out of bound read in DVB...

9.8CVSS6.7AI score0.12651EPSS
Exploits8References63
RedHat Linux
RedHat Linux
added 2020/03/31 9:3 p.m.200 views

Moderate: Red Hat Security Advisory: kernel-rt security and bug fix update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.8CVSS6.9AI score0.12651EPSS
Exploits5References27
Rows per page
Query Builder