Lucene search
K

150 matches found

Cvelist
Cvelist
added 2021/01/25 5:53 p.m.10 views

CVE-2020-5477

...

Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/18 2:26 p.m.34 views

Security Bulletin: IBM i is affected by networking BIND vulnerabilities CVE-2015-5477 and CVE-2015-4620.

Summary BM i is affected by several ISC BIND vulnerabilities. Vulnerability Details CVEID: CVE-2015-5477 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by an error in the handling of TKEY queries. By sending specially-crafted packets, a remote attacker could exploit this...

7.8CVSS2AI score0.91284EPSS
Exploits12Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/18 3:10 a.m.31 views

Security Bulletin: Vulnerability in BIND affects IBM Netezza Host Management (CVE-2015-5477)

Summary BIND vulnerability disclosed by Internet Systems Consortium ISC affects IBM Netezza Host Management. IBM Netezza Host Management has addressed this CVE. Vulnerability Details CVEID: CVE-2015-5477 DESCRIPTION: ISC BIND is vulnerable to a denial of service, caused by an error in the handlin...

7.8CVSS0.9AI score0.91284EPSS
Exploits12Affected Software1
Debian
Debian
added 2019/09/26 1:54 a.m.122 views

[SECURITY] [DLA 1933-1] ruby-nokogiri security update

Package : ruby-nokogiri Version : 1.6.3.1+ds-1+deb8u1 CVE ID : CVE-2019-5477 A command injection vulnerability in Nokogiri allows commands to be executed in a subprocess by Rubys Kernel.open method. For Debian 8 "Jessie", this problem has been fixed in version 1.6.3.1+ds-1+deb8u1. We recommend th...

9.8CVSS9.8AI score0.05899EPSS
Exploits0
Cvelist
Cvelist
added 2019/08/16 12:0 a.m.37 views

CVE-2019-5477

A command injection vulnerability in Nokogiri v1.10.3 and earlier allows commands to be executed in a subprocess via Ruby's Kernel.open method. Processes are vulnerable only if the undocumented method Nokogiri::CSS::Tokenizerloadfile is being called with unsafe user input as the filename. This...

9.6AI score0.05899EPSS
Exploits0References8
CVE
CVE
added 2019/08/16 12:0 a.m.358 views

CVE-2019-5477

CVE-2019-5477 affects Nokogiri up to v1.10.3, where a command injection could occur if Ruby’s Kernel.open is used on an unsafe filename produced by Nokogiri::CSS::Tokenizer#load_file. Rexical v1.0.6 and earlier generate the problematic code; the issue was addressed when Rexical v1.0.7 and Nokogir...

9.8CVSS9.4AI score0.05899EPSS
Exploits0References8Affected Software1
NVD
NVD
added 2018/02/20 7:29 p.m.21 views

CVE-2018-5477

An Information Exposure issue was discovered in ABB netCADOPS Web Application Version 3.4 and prior, netCADOPS Web Application Version 7.1 and prior, netCADOPS Web Application Version 7.2x and prior, netCADOPS Web Application Version 8.0 and prior, and netCADOPS Web Application Version 8.1 and...

5.8CVSS5.7AI score0.01257EPSS
Exploits0References2
CVE
CVE
added 2018/02/20 7:0 p.m.50 views

CVE-2018-5477

The ABB netCADOPS Web Application (versions 3.4 and prior, 7.1 and prior, 7.2x and prior, 8.0 and prior, 8.1 and prior) contains an information exposure vulnerability in the password entry section that can expose critical database information. Source advisories (NVD/CVE-2018-5477; ICSA-18-051-01)...

5.8CVSS5.7AI score0.01257EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/05/11 2:1 p.m.20 views

CVE-2008-5477

This CVE entry is rejected/not used and does not represent an active vulnerability.

6.6AI score
Exploits0
Hacker One
Hacker One
added 2017/03/31 3:48 a.m.32 views

ownCloud: doc.owncloud.com: CVE-2015-5477 BIND9 TKEY Vulnerability + Exploit (Denial of Service)

BIND9 TKEY Vulnerability + Exploit Denial of Service...

7.8CVSS7.5AI score0.91284EPSS
Exploits12
Tenable Nessus
Tenable Nessus
added 2016/10/24 12:0 a.m.51 views

Oracle Linux 5 : bind97 (ELSA-2016-2094)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-2094 advisory. - Fix CVE-2016-2848 - Fix CVE-2016-2776 - Fix CVE-2016-1285 and CVE-2016-1286 - Fix CVE-2015-8704 - Fix CVE-2015-8000 - Fix CVE-2015-5722 - Fix CVE-2015-5477...

8.6CVSS7AI score0.91284EPSS
Exploits19References2
Tenable Nessus
Tenable Nessus
added 2016/10/24 12:0 a.m.50 views

Oracle Linux 5 / 6 : bind (ELSA-2016-2093)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-2093 advisory. - Fix CVE-2016-2848 - Fix CVE-2016-2776 - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite - Fix CVE-2016-1285 and CVE-2016-1286...

8.6CVSS7AI score0.91284EPSS
Exploits19References2
Tenable Nessus
Tenable Nessus
added 2016/09/29 12:0 a.m.64 views

Oracle Linux 5 / 6 / 7 : bind (ELSA-2016-1944)

The remote Oracle Linux 5 / 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-1944 advisory. - Fix CVE-2016-2776 - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite - Fix CVE-2016-1285 and CVE-2016-1286 - Fix...

8.6CVSS7AI score0.91284EPSS
Exploits19References2
Tenable Nessus
Tenable Nessus
added 2016/09/29 12:0 a.m.41 views

Oracle Linux 5 : bind97 (ELSA-2016-1945)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2016-1945 advisory. - Fix CVE-2016-2776 - Fix CVE-2016-1285 and CVE-2016-1286 - Fix CVE-2015-8704 - Fix CVE-2015-8000 - Fix CVE-2015-5722 - Fix CVE-2015-5477 Tenable has extracted...

8.6CVSS7AI score0.91284EPSS
Exploits19References2
Oracle linux
Oracle linux
added 2016/09/28 12:0 a.m.45 views

bind97 security update

32:9.7.0-21.P2.7 - Fix CVE-2016-2776 32:9.7.0-21.P2.6 - Fix CVE-2016-1285 and CVE-2016-1286 32:9.7.0-21.P2.5 - Fix CVE-2015-8704 32:9.7.0-21.P2.4 - Fix CVE-2015-8000 32:9.7.0-21.P2.3 - Fix CVE-2015-5722 32:9.7.0-21.P2.2 - Fix CVE-2015-5477 32:9.7.0-21.P2.1 - Fix CVE-2014-8500 1171972...

8.6CVSS1.2AI score0.91284EPSS
Exploits19
OSV
OSV
added 2016/07/21 10:15 a.m.4 views

CVE-2016-5477

Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1 and 3.0.1 allows remote attackers to affect confidentiality via vectors related to Administration...

5.8CVSS5.8AI score0.02353EPSS
Exploits0References4
CVE
CVE
added 2016/07/21 10:0 a.m.70 views

CVE-2016-5477

CVE-2016-5477 refers to an unspecified vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware versions 2.1.1 and 3.0.1. The issue is described as allowing remote attackers to affect confidentiality via vectors related to Administration. Public sources in the connected ...

5.8CVSS5AI score0.02353EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/06/22 12:0 a.m.32 views

OracleVM 3.2 : bind (OVMSA-2016-0055)

The remote OracleVM system is missing necessary patches to address critical security updates : - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite - Fix CVE-2016-1285, CVE-2016-1286 - Fix CVE-2015-8704 - Fix CVE-2015-8000 - Fix CVE-2015-5722 - Fix CVE-2015-5477 - Remove...

8.6CVSS6.7AI score0.91284EPSS
Exploits15References13
Tenable Nessus
Tenable Nessus
added 2016/01/29 12:0 a.m.77 views

RHEL 6 : bind (RHSA-2016:0079)

"The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:0079 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named C...

7.8CVSS7AI score0.91284EPSS
Exploits12References11
RedHat Linux
RedHat Linux
added 2016/01/28 1:45 p.m.55 views

Important: Red Hat Security Advisory: bind security update

Updated bind packages that fix three security issues are now available for Red Hat Enterprise Linux 6.6 Extended Update Support. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

7.8CVSS6.8AI score0.91284EPSS
Exploits12References7
Rows per page
Query Builder