Lucene search
+L

183 matches found

Tenable Nessus
Tenable Nessus
added 2020/09/29 12:0 a.m.33 views

RHEL 7 : mod_auth_openidc (RHSA-2020:3970)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3970 advisory. The modauthopenidc is an OpenID Connect authentication module for Apache HTTP Server. It enables an Apache HTTP Server to operate as an Open...

6.1CVSS6.7AI score0.01893EPSS
Exploits0References8
CVE
CVE
added 2020/06/25 2:37 p.m.82 views

CVE-2020-3970

VMware CVE-2020-3970 affects ESXi (7.0 before 7.0.0-1.20.16321839; 6.7 before 202004101-SG; 6.5 before 202005401-SG), Workstation 15.x before 15.5.5, and Fusion 11.x before 11.5.5. It is an out-of-bounds read in the Shader functionality that can be triggered by a local user with non-administrativ...

3.8CVSS4.8AI score0.00382EPSS
Exploits0References2Affected Software4
VMware
VMware
added 2020/06/22 12:0 a.m.46 views

VMSA-2020-0015:VMware Cloud Foundation, ESXi, Workstation, and Fusion updates address multiple security vulnerabilities

Advisory ID: VMSA-2020-0015.2 CVSSv3 Range: 4.0 - 9.3 Issue Date:2020-06-23 Updated On: 2020-07-02 CVEs: CVE-2020-3962, CVE-2020-3963, CVE-2020-3964, CVE-2020-3965, CVE-2020-3966, CVE-2020-3967, CVE-2020-3968, CVE-2020-3969, CVE-2020-3970, CVE-2020-3971 Synopsis: VMware Cloud Foundation, ESXi,...

8.2CVSS7.3AI score0.00587EPSS
Exploits4References74Affected Software4
NVD
NVD
added 2019/07/17 9:15 p.m.19 views

CVE-2019-3970

Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to Arbitrary File Write due to Cavwp.exe handling of Comodo's Antivirus database. Cavwp.exe loads Comodo antivirus definition database in unsecured global section objects, allowing a local low privileged process to modify this data direct...

5.5CVSS5.3AI score0.00402EPSS
Exploits1References1
CVE
CVE
added 2019/07/17 8:34 p.m.52 views

CVE-2019-3970

CVE-2019-3970 affects Comodo Antivirus up to 12.0.0.6810. The vulnerability arises from Cavwp.exe loading the antivirus definition database into unsecured global section objects, enabling a local, low-privileged process to modify the in-memory data and alter virus signatures. Impact described in ...

5.5CVSS6.1AI score0.00402EPSS
Exploits1References1Affected Software1
OpenVAS
OpenVAS
added 2019/05/09 12:0 a.m.42 views

Ubuntu: Security Advisory (USN-3970-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.01756EPSS
Exploits0References2
Veracode
Veracode
added 2019/05/02 4:43 a.m.34 views

Denial Of Service (DoS)

libxslt is a library for transforming XML files into other textual formats including HTML, plain text, and other XML representations of the underlying data using the standard XSLT stylesheet transformation mechanism. A heap-based buffer overflow flaw was found in the way libxslt applied templates...

6.8CVSS10AI score0.02455EPSS
Exploits1References21Affected Software1
CVE
CVE
added 2018/10/25 6:0 p.m.74 views

CVE-2018-3970

Sophos HitmanPro.Alert 3.7.6.744 contains an exploitable memory-disclosure vulnerability in the hmpalert IOCTL handler (0x222000). A crafted IRP/IOCTL request can leak kernel memory to user mode, as confirmed by TALOS-2018-0635 and related OpenVAS/PT-2018-16350 analyses. The issue affects the IOC...

5.5CVSS5.4AI score0.00487EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/09/13 12:0 a.m.27 views

Debian DSA-3970-1 : emacs24 - security update

Charles A. Roelli discovered that Emacs is vulnerable to arbitrary code execution when rendering text/enriched MIME data e.g. when using Emacs-based mail clients. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

8.8CVSS7.9AI score0.04009EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2017/09/11 12:0 a.m.22 views

Debian: Security Advisory (DSA-3970-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9AI score0.04009EPSS
Exploits1References3
CVE
CVE
added 2015/10/28 10:0 a.m.56 views

CVE-2015-3970

The CVE-2015-3970 entry concerns Janitza UMG power quality devices (UMG 508, 509, 511, 604, 605). It describes multiple cross-site scripting (XSS) vulnerabilities in the device web interface that allow remote attackers to inject arbitrary script/HTML via unspecified vectors. The issue is accessib...

4.3CVSS5.9AI score0.01142EPSS
Exploits0References1Affected Software5
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.38 views

Oracle: Security Advisory (ELSA-2012-1211)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.7AI score0.07762EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2014/08/13 12:0 a.m.25 views

SuSE 11.3 Security Update : pulseaudio (SAT Patch Number 9568)

The following security issue is fixed in this update : - Fixed a remote denial of service attack in module-rtp-recv. CVE-2014-3970 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text...

2.9CVSS5.6AI score0.01457EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2014/07/31 12:0 a.m.31 views

openSUSE Security Update : openSUSE-2014- (openSUSE-2014--1)

This update fixes the following security issue: bnc881524 CVE-2014-3970 - Denial of service in module-rtp-recv %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2014/08/08. C Tenable Network Security, Inc. The...

2.9CVSS5.5AI score0.01457EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2014/07/28 12:0 a.m.26 views

Fedora Update for empathy FEDORA-2014-8183

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.9CVSS5.6AI score0.01457EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/07/28 12:0 a.m.17 views

Fedora Update for cinnamon FEDORA-2014-8183

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.9CVSS5.6AI score0.01457EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/07/28 12:0 a.m.21 views

Fedora Update for paprefs FEDORA-2014-8183

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.9CVSS5.6AI score0.01457EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/07/28 12:0 a.m.15 views

Fedora Update for gnome-settings-daemon FEDORA-2014-8183

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.9CVSS5.6AI score0.01457EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/07/28 12:0 a.m.13 views

Fedora Update for fldigi FEDORA-2014-8183

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.9CVSS5.6AI score0.01457EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/07/28 12:0 a.m.19 views

Fedora Update for cinnamon-control-center FEDORA-2014-8183

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.9CVSS5.6AI score0.01457EPSS
Exploits1References2
Rows per page
Query Builder