Lucene search
+L

80 matches found

Packet Storm
Packet Storm
added 2019/11/12 12:0 a.m.97 views

Nortek Linear eMerge E3 Access Control Cross Site Request Forgery

Nortek Linear eMerge E3 Access Control Cross-Site Request Forgery CVE: CVE-2019-7262 Advisory: https://applied-risk.com/resources/ar-2019-005 Discovered by Gjoko 'LiquidWorm' Krstic input type="hidden" name="DefaultFloorNo" valu...

6.8CVSS0.4AI score0.16278EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/11/12 12:0 a.m.200 views

eMerge E3 1.00-06 - Cross-Site Request Forgery

Exploit Title: eMerge E3 1.00-06 - Cross-Site Request Forgery Google Dork: NA Date: 2018-11-11 Exploit Author: LiquidWorm Vendor Homepage: http://linear-solutions.com/nscfamily/e3-series/ Software Link: http://linear-solutions.com/nscfamily/e3-series/ Version: 1.00-06 Tested on: NA CVE :...

8.8CVSS9AI score0.16278EPSS
Exploits5
NVD
NVD
added 2019/07/02 6:15 p.m.27 views

CVE-2019-7262

Linear eMerge E3-Series devices allow Cross-Site Request Forgery CSRF...

8.8CVSS9.2AI score0.16278EPSS
Exploits5References3
Cvelist
Cvelist
added 2019/07/02 5:1 p.m.31 views

CVE-2019-7262

Linear eMerge E3-Series devices allow Cross-Site Request Forgery CSRF...

8.8AI score0.16278EPSS
Exploits5References3
CVE
CVE
added 2019/07/02 5:1 p.m.146 views

CVE-2019-7262

CVE-2019-7262 affects Nice Linear eMerge E3-Series devices (firmware 1.00-06 and prior). The vulnerability is Cross-Site Request Forgery (CSRF) in the device’s web interface, caused by insufficient validation of requests from trusted users, enabling an attacker to perform actions with administrat...

8.8CVSS8.7AI score0.16278EPSS
Exploits5References3Affected Software1
The Hacker News
The Hacker News
added 2019/06/27 11:3 a.m.135 views

Exclusive: German Police Raid OmniRAT Developer and Seize Digital Assets

The German police yesterday raided the house of the developer of OmniRAT and seized his laptop, computer and mobile phones probably as part of an investigation into a recent cyber attack, a source told The Hacker News. OmniRAT made headlines in November 2015 when its developer launched it as a...

7.8CVSS7.9AI score0.58204EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/02/07 12:0 a.m.57 views

Photon OS 2.0: Ceph PHSA-2018-2.0-0041

An update of the ceph package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-2.0-0041. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid121941;...

7.5CVSS7.6AI score0.0297EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/08/23 12:0 a.m.33 views

openSUSE: Security Advisory for ceph (openSUSE-SU-2018:2479-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.1AI score0.0297EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/08/22 3:40 p.m.85 views

Security update for ceph (important)

This update for ceph fixes the following issues: Security issues fixed: - CVE-2018-7262: rgw: malformed http headers can crash rgw bsc1081379. - CVE-2017-16818: User reachable asserts allow for DoS bsc1063014. Bug fixes: - bsc1061461: OSDs keep generating coredumps after adding new OSD node to...

5CVSS7.3AI score0.0297EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2018/07/24 12:0 a.m.161 views

Photon OS 2.0 : ceph / linux-esx / rsync / linux / linux-secure / linux-aws (PhotonOS-PHSA-2018-2.0-0041) (deprecated)

An update of 'ceph', 'linux-esx', 'rsync', 'linux', 'linux-secure', 'linux-aws' packages of Photon OS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory...

7.5CVSS7AI score0.06337EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2018/05/31 12:0 a.m.31 views

openSUSE: Security Advisory for ceph (openSUSE-SU-2018:1470-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.1AI score0.0297EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/05/31 12:0 a.m.29 views

openSUSE Security Update : ceph (openSUSE-2018-541)

This update for ceph fixes the following issues : Security issues fixed : - CVE-2018-7262: rgw: malformed http headers can crash rgw bsc1081379. - CVE-2017-16818: User reachable asserts allow for DoS bsc1063014. Bug fixes : - bsc1061461: OSDs keep generating coredumps after adding new OSD node to...

7.5CVSS6.9AI score0.0297EPSS
Exploits0References25
OPENSUSE Linux
OPENSUSE Linux
added 2018/05/30 3:7 p.m.50 views

Security update for ceph (important)

This update for ceph fixes the following issues: Security issues fixed: - CVE-2018-7262: rgw: malformed http headers can crash rgw bsc1081379. - CVE-2017-16818: User reachable asserts allow for DoS bsc1063014. Bug fixes: - bsc1061461: OSDs keep generating coredumps after adding new OSD node to...

5CVSS7.3AI score0.0297EPSS
Exploits0References23
Tenable Nessus
Tenable Nessus
added 2018/05/25 12:0 a.m.43 views

SUSE SLED12 / SLES12 Security Update : ceph (SUSE-SU-2018:1417-1)

This update for ceph fixes the following issues: Security issues fixed : - CVE-2018-7262: rgw: malformed http headers can crash rgw bsc1081379. - CVE-2017-16818: User reachable asserts allow for DoS bsc1063014. Bug fixes : - bsc1061461: OSDs keep generating coredumps after adding new OSD node to...

7.5CVSS6.9AI score0.0297EPSS
Exploits0References28
Circl
Circl
added 2018/04/27 3:11 p.m.25 views

CVE-2016-7262

creationtimestamp| type| source ---|---|--- 2018-04-27 15:11:37+00:00| seen| MISP/5ae333a9-8618-4378-a17f-28c7ac12042b 2018-04-30 20:37:57+00:00| seen| MISP/5ae77951-42b4-472a-9398-69249f590eb0 2020-10-09 15:48:40+00:00| seen| MISP/b6444284-033f-48c9-a954-87af88255022 2023-06-14 21:10:03+00:00|...

7.8CVSS7.4AI score0.58204EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2018/03/23 5:19 a.m.30 views

CVE-2018-7262

A NULL pointer dereference flaw was found in RADOS Gateway HTTP request handling when using the Civetweb native webserver. An unauthenticated attacker could crash RADOS Gateway server by sending malicious HTTP requests...

7.5CVSS0.8AI score0.0297EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2018/03/20 12:0 a.m.134 views

RHEL 7 : ceph (RHSA-2018:0546)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0546 advisory. Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system with a...

7.5CVSS7.5AI score0.0297EPSS
Exploits0References4
CVE
CVE
added 2018/03/19 9:0 p.m.88 views

CVE-2018-7262

CVE-2018-7262 affects Ceph RGW (rgw_civetweb.cc RGWCivetWeb::init_env) where malformed HTTP headers can crash radosgw, enabling denial of service. Affected ranges in the initial entry are Ceph releases before 12.2.3 and 13.x up to 13.0.1. Public disclosures in connected docs corroborate that the ...

7.5CVSS7.3AI score0.0297EPSS
Exploits0References6Affected Software1
RedHat Linux
RedHat Linux
added 2018/03/15 6:30 p.m.97 views

Important: Red Hat Security Advisory: ceph security update

An update for ceph is now available for Red Hat Ceph Storage 3.0 for Ubuntu 16.04. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS7.1AI score0.0297EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/03/15 12:0 a.m.34 views

Fedora 27 : 1:ceph (2018-ed907ef9a0)

New release 1:12.2.4-1, includes Security fix for CVE-2018-7262 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

7.5CVSS7.4AI score0.0297EPSS
Exploits0References2
Rows per page
Query Builder