104 matches found
CVE-2020-4701
creationtimestamp| type| source ---|---|--- 2020-11-19 18:41:37+00:00| seen| https://t.me/cibsecurity/16591...
CVE-2020-4701
CVE-2020-4701 affects IBM DB2 for Linux/UNIX/Windows (including DB2 Connect Server) and is due to a buffer overflow from improper bounds checking in versions 10.5, 11.1, and 11.5. Local attackers with root privileges could execute arbitrary code. Public details in connected docs confirm affected ...
CVE-2019-4701
IBM Security Guardium Data Encryption GDE 3.0.0.2 is deployed with active debugging code that can create unintended entry points. IBM X-Force ID: 171936...
CVE-2019-4701
CVE-2019-4701 concerns IBM Guardium Data Encryption (GDE) 3.0.0.2, where active debugging code can create unintended entry points. Connected sources (CNVD-2020-50543) describe a cross-site scripting vulnerability in GDE 3.0.0.2 related to this issue, attributed to an unintended debugger entry. Th...
CVE-2017-4701
CVE-2017-4701 entry is rejected; this CVE ID is not active and does not represent a vulnerability entry.
CVE-2017-4701
...
CVE-2006-4701
CVE-2006-4701 is rejected; this CVE ID is not used and does not represent an active vulnerability entry.
CVE-2006-4701
...
CVE-2016-4701
CVE-2016-4701 concerns the macOS OS X Application Firewall prior to 10.12. The vulnerability allows a local user to cause a denial of service via a crafted SO_EXECPATH environment variable, affecting the Application Firewall component. The Apple security content (macOS Sierra 10.12) lists the iss...
openSUSE Security Update : typo3-cms-4_7 (openSUSE-2016-1002)
This update for typo3-cms-47 fixes the following issues : - CVE-2014-3941: Multiple vulnerabilities TYPO3-CORE-SA-2014-001 - CVE-2013-4701: Multiple vulnerabilities TYPO3-CORE-SA-2014-002 - CVE-2013-7073: Multiple vulnerabilities TYPO3-CORE-SA-2013-004 - other security fixes, e.g. preventing XSS...
openSUSE Security Update : typo3 (openSUSE-2016-959)
Important security fixes for vulnerabilities in typo3 which can be used for Cross-Site Scripting or Denial of Service attacks or for authentication bypassing. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...
Fedora Update for nagios-plugins FEDORA-2015-12972
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 21 : nagios-plugins-2.0.3-1.fc21 (2015-12972)
Update to 2.0.3 release to fix various CVE issues. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora 23 : nagios-plugins-2.0.3-1.fc23 (2015-12853)
Update to 2.0.3 release to fix various CVE issues. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
CVE-2014-4701
The checkdhcp plugin in Nagios Plugins before 2.0.2 allows local users to obtain sensitive information from INI configuration files via the extra-opts flag, a different vulnerability than CVE-2014-4702...
Design/Logic Flaw
The checkicmp plugin in Nagios Plugins before 2.0.2 allows local users to obtain sensitive information from INI configuration files via the extra-opts flag, a different vulnerability than CVE-2014-4701...
CVE-2014-4701
The CVE-2014-4701 entry concerns the Nagios Plugins check_dhcp plugin (pre-2.0.2) exposing sensitive INI-file data via the extra-opts flag. Connected SUSE advisories confirm the module as the affected component and note an associated vulnerability progression (CVE-2014-4703) describing a symlink-...
SuSE 11.3 Security Update : nagios-plugins (SAT Patch Number 9830)
This security update fixes the following issues : - Removed the requirement for root access from plugins-root/checkicmp.c and plugins-root/checkicmp.c. The necessary capabilities7 were added to the README file. - Fixed array out of bounds issue in plugins-root/checkdhcp.c. %NASLMINLEVEL 70300 C...
Tridium NiagaraAX Directory Traversal Vulnerability
Overview This advisory provides mitigation details for a vulnerability in the Tridium NiagaraAX software. Independent researchers Billy Rios and Terry McCorkle discovered a directory traversal vulnerability in the Tridium NiagaraAX software product. They demonstrated that with a valid user accoun...
MGASA-2013-0272 Updated php-pear-Auth_OpenID package fixes security vulnerability
Auth/Yadis/XML.php in PHP OpenID Library 2.2.2 and earlier allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service CPU and memory consumption via XRDS data containing an external entity declaration in conjunction with an entity...