Lucene search
+L

71 matches found

CVE
CVE
added 2024/02/05 9:49 a.m.119 views

CVE-2023-5643

Summary (CVE-2023-5643) : An out-of-bounds write vulnerability exists in Arm Mali GPU kernel drivers (Bifrost, Valhall) and Arm 5th Gen GPU Architecture Kernel Driver. The issue allows a local, non-privileged user to trigger improper GPU memory processing, potentially writing outside buffer bound...

7.8CVSS7.6AI score0.00178EPSS
Exploits0References1Affected Software3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2013:0327-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS8.8AI score0.23026EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2013:0327-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS8.8AI score0.23026EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2016:1996-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.79969EPSS
Exploits4References2
Circl
Circl
added 2020/11/06 7:50 a.m.7 views

CVE-2020-5643

creationtimestamp| type| source ---|---|--- 2020-11-06 07:50:18+00:00| seen| https://t.me/cibsecurity/15957...

6.5CVSS5.3AI score0.01669EPSS
Exploits0References1
OSV
OSV
added 2020/11/06 3:15 a.m.4 views

CVE-2020-5643

Improper input validation vulnerability in Cybozu Garoon 5.0.0 to 5.0.2 allows a remote authenticated attacker to delete some data of the bulletin board via unspecified vector...

6.5CVSS6.2AI score0.01669EPSS
Exploits0References2
CVE
CVE
added 2020/11/06 2:6 a.m.60 views

CVE-2020-5643

Consolidated details for CVE-2020-5643 show a vulnerability in Cybozu Garoon (Cybozu Garoon 5.0.0–5.0.2) due to improper input validation (CWE-20). An authenticated user can remotely delete bulletin board data via an unspecified vector. The root cause centers on input validation weaknesses that p...

6.5CVSS6.1AI score0.01669EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/11/06 6:30 p.m.79 views

CVE-2019-5643

CVE-2019-5643 affects Computing For Good’s Basic Laboratory Information System (C4G BLIS) up to version 3.5. The issue is CWE-284 (Improper Access Control). An unauthenticated user could enumerate usernames and facility names on a targeted installation. The Connected documents confirm the vulnera...

5.3CVSS5.7AI score0.0132EPSS
Exploits2References1Affected Software1
vulnersOsv
vulnersOsv
added 2018/10/16 11:13 p.m.4 views

ca.islandora.alpaca:islandora-connector-broadcast (>=0.2.0 <=0.3.0), ca.islandora.alpaca:islandora-indexing-triplestore (>=0.2.0 <=0.3.0) +913 more potentially affected by CVE-2017-5643 via org.apache.camel:camel-core (>=2.18.0 <=2.18.1)

org.apache.camel:camel-core MAVEN version =2.18.0, =0.2.0, =0.2.0, =2.7, =2.18.0, =2.18.1 - com.tatsuyafw:camel-fluentd =2.18.0 - cool.pandora:acrepo-exts-image =0.0.3 - cool.pandora:pandora-exts-encoder =0.0.4 and more Source cves: CVE-2017-5643 Source advisory: OSV:GHSA-VQ9J-JH62-5HMP...

7.4CVSS7.1AI score0.0489EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2018/10/16 11:13 p.m.5 views

at.researchstudio.sat:won-core (>=0.2 <=0.9), at.researchstudio.sat:won-cryptography (>=0.3 <=0.6) +1432 more potentially affected by CVE-2017-5643 via org.apache.camel:camel-core (>=1.0.0 <=2.17.5)

org.apache.camel:camel-core MAVEN version =1.0.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.4, =0.9 and more Source cves: CVE-2017-5643 Source advisory: OSV:GHSA-VQ9J-JH62-5HMP...

7.4CVSS7.1AI score0.0489EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2017/03/17 1:52 p.m.35 views

CVE-2017-5643

It was found that Apache Camel's validation component evaluates DTD headers of XML stream sources, although a validation against XML schemas XSD is executed. Remote attackers can use this feature to make Server-Side Request Forgery SSRF attacks by sending XML documents with remote DTDs URLs or XM...

7.4CVSS3.3AI score0.0489EPSS
Exploits0References2
CVE
CVE
added 2017/03/16 3:0 p.m.130 views

CVE-2017-5643

The CVE-2017-5643 issue affects Apache Camel’s Validation Component, which is vulnerable to SSRF via remote DTDs and XML External Entities (XXE) in XML streams. The vulnerability arises when the component processes DTDs/XXEs, allowing remote resources to be fetched. Impact details in connected do...

7.4CVSS7.3AI score0.0489EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2015/10/03 10:0 a.m.53 views

CVE-2015-5643

CVE-2015-5643 affects ICZ MATCHA INVOICE: installer flaw during database configuration allows an unauthenticated attacker to execute arbitrary PHP code on the server. Impact is code injection (CWE-94) via the installer for MATCHA INVOICE 2.5.6 and earlier. Remediation guidance in connected docs i...

6.8CVSS7.9AI score0.01321EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2015/10/03 10:0 a.m.22 views

CVE-2015-5643

The installer in ICZ MATCHA INVOICE before 2.5.7 does not properly configure the database, which allows remote attackers to execute arbitrary PHP code via unspecified vectors...

7.7AI score0.01321EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/04/22 12:0 a.m.28 views

Fedora 22 : jenkins-matrix-project-plugin-1.4.1-1.fc22 / jenkins-script-security-plugin-1.13-2.fc22 / etc (2015-5643)

Fix CVE-2015-1806 SECURITY-125 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

6.5CVSS8.2AI score0.02523EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.30 views

Oracle Solaris Third-Party Patch Update : squid (multiple_vulnerabilities_in_squid)

The remote Solaris system is missing necessary patches to address security updates : - Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2.x and 3.x before 3.1.22, 3.2.x before 3.2.4, and 3.3.x before 3.3.0.2 allow remote attackers to cause a denial of service memory consumption...

5CVSS7.7AI score0.23026EPSS
Exploits1References4
Check Point Advisories
Check Point Advisories
added 2014/11/10 12:0 a.m.15 views

Joomla Component com_books SQL Injection (CVE-2008-5643)

An SQL injection vulnerability has been reported in Joomla Com Books. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS5.3AI score0.00967EPSS
Exploits1
CVE
CVE
added 2014/09/09 1:0 a.m.42 views

CVE-2014-5643

The CVE-2014-5643 entry concerns the Instachat – Instagram Messenger Android app (com.instachat.android), version 1.6.2. Root cause: the app does not verify X.509 certificates from SSL servers. Impact: enables man‑in‑the‑middle attackers to spoof servers and access sensitive information via a cra...

5.4CVSS6AI score0.00271EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.33 views

openSUSE Security Update : squid3 (openSUSE-SU-2013:0162-1)

update to 3.1.23 fix for bnc794954, CVE-2012-5643, SQUID:2012-1 - Additional fixes for CVE-2012-5643 / SQUID:2012-1 - http://www.squid-cache.org/Advisories/SQUID-20121.txt - https://vulners.com/cve/CVE-2012-5643 - removed 3.1.12 config, nobuilddates, swapdir patch - added FSF, config,...

5CVSS7.6AI score0.23005EPSS
Exploits1References5
CVE
CVE
added 2014/06/10 10:0 a.m.30 views

CVE-2013-5643

This CVE-2013-5643 entry is rejected and does not represent an active vulnerability.

6.6AI score
Exploits0
Rows per page
Query Builder