Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2022/06/17 12:0 a.m.65 views

SUSE SLES15 Security Update : rubygem-actionpack-5_1, rubygem-activesupport-5_1 (SUSE-SU-2022:2108-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2108-1 advisory. - The actionpack ruby gem before 6.1.3.2, 6.0.3.7, 5.2.4.6, 5.2.6 suffers from a possible denial of service vulnerability in the...

7.5CVSS7.3AI score0.04808EPSS
Exploits1References7
Prion
Prion
added 2022/02/11 9:15 p.m.26 views

Design/Logic Flaw

Action Pack is a framework for handling and responding to web requests. Under certain circumstances response bodies will not be closed. In the event a response is not notified of a close, ActionDispatch::Executor will not know to reset thread local state for the next request. This can lead to dat...

4.3CVSS5.6AI score0.02207EPSS
Exploits0References6Affected Software2
UbuntuCve
UbuntuCve
added 2022/02/11 9:15 p.m.38 views

CVE-2022-23633

Action Pack is a framework for handling and responding to web requests. Under certain circumstances response bodies will not be closed. In the event a response is not notified of a close, ActionDispatch::Executor will not know to reset thread local state for the next request. This can lead to dat...

7.4CVSS6.2AI score0.02207EPSS
Exploits0References4
OSV
OSV
added 2022/02/11 12:0 a.m.27 views

CVE-2022-23633 Exposure of sensitive information in Action Pack

Action Pack is a framework for handling and responding to web requests. Under certain circumstances response bodies will not be closed. In the event a response is not notified of a close, ActionDispatch::Executor will not know to reset thread local state for the next request. This can lead to dat...

7.4CVSS5.4AI score0.02207EPSS
Exploits0References8
IBM Security Bulletins
IBM Security Bulletins
added 2018/07/17 9:52 a.m.24 views

Security Bulletin: IBM Cúram is susceptible to a Open Source CKEditor vulnerability (CVE-2014-5191).

Summary IBM Cúram Social Program Management is vulnerable to Reflected Cross-Site ScriptingXSS. This is caused by improper sanitization of user-supplied data in the Preview Plugin for CKEditor. Vulnerability Details CVE ID: CVE-2014-5191 The Preview Plugin for CKEditor is vulnerable to cross-site...

4.3CVSS0.6AI score0.01834EPSS
Exploits0Affected Software1
Rows per page
Query Builder