Lucene search
+L

68 matches found

Cvelist
Cvelist
added 2020/10/27 7:34 p.m.24 views

CVE-2019-8580

Source-routed IPv4 packets were disabled by default. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. Source-routed IPv4 packets may be unexpectedly accepted...

7.3AI score0.01038EPSS
Exploits0References2
CVE
CVE
added 2020/10/27 7:34 p.m.58 views

CVE-2019-8580

CVE-2019-8580 affects Apple AirPort Base Station Firmware (AirPort Extreme/Time Capsule).}}

7.5CVSS7.4AI score0.01038EPSS
Exploits0References2Affected Software1
Apple
Apple
added 2019/05/30 12:0 a.m.37 views

About the security content of AirPort Base Station Firmware Update 7.9.1

About the security content of AirPort Base Station Firmware Update 7.9.1 This document describes the security content of AirPort Base Station Firmware Update 7.9.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an...

9.8CVSS7.8AI score0.04377EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/05/13 1:29 p.m.19 views

CVE-2018-15530

Cross-site scripting XSS in the web interface of the Xerox ColorQube 8580 allows remote persistent injection of custom HTML / JavaScript code...

6.1CVSS6.3AI score0.00692EPSS
Exploits1References1
Prion
Prion
added 2019/05/13 1:29 p.m.17 views

Cross site scripting

Cross-site scripting XSS in the web interface of the Xerox ColorQube 8580 allows remote persistent injection of custom HTML / JavaScript code...

4.3CVSS6.2AI score0.00692EPSS
Exploits1References1
CVE
CVE
added 2019/05/13 12:46 p.m.42 views

CVE-2018-15530

Technical details about CVE-2018-15530 are not publicly provided in the supplied documents. Please monitor for updates from vendors and security advisories.

6.1CVSS6.3AI score0.00692EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2019/05/13 12:46 p.m.23 views

CVE-2018-15530

Cross-site scripting XSS in the web interface of the Xerox ColorQube 8580 allows remote persistent injection of custom HTML / JavaScript code...

6.3AI score0.00692EPSS
Exploits1References1
Circl
Circl
added 2019/02/01 12:53 p.m.12 views

CVE-2018-8580

creationtimestamp| type| source ---|---|--- 2019-02-01 12:53:41+00:00| seen| MISP/5c543c87-503c-4622-a292-0aa6ac12042b 2020-10-09 15:53:03+00:00| seen| MISP/0b0f374b-39b1-4229-891b-2defd31fe736 2025-01-28 21:01:59+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lgte2h2saz27...

4.3CVSS6.8AI score0.04155EPSS
Exploits0References1
CVE
CVE
added 2018/12/12 12:0 a.m.99 views

CVE-2018-8580

CVE-2018-8580 is an information-disclosure vulnerability in Microsoft SharePoint Server where certain search modes are vulnerable to a CSRF-like cross-site search attack. An attacker can induce queries as a logged-in user to infer whether documents are present in search results, without exposing ...

4.3CVSS4AI score0.04155EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2017/07/12 12:0 a.m.111 views

Microsoft Windows Server 2012 Multiple Vulnerabilities (KB4025343)

This host is missing a critical security update according to Microsoft KB4025343 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.5AI score0.26161EPSS
Exploits5References23
NVD
NVD
added 2017/07/11 9:29 p.m.18 views

CVE-2017-8580

Win32k in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability when it fails to properly handle objects in memory, ak...

7CVSS6.9AI score0.00999EPSS
Exploits0References3
Prion
Prion
added 2017/07/11 9:29 p.m.22 views

Privilege escalation

Win32k in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability when it fails to properly handle objects in memory, ak...

6.9CVSS6.8AI score0.06473EPSS
Exploits0References3Affected Software2
CVE
CVE
added 2017/07/11 9:0 p.m.83 views

CVE-2017-8580

Technical details for CVE-2017-8580 are not publicly available in the provided connected documents. Monitor for updates from authoritative sources to confirm affected products, root cause, impact, and any available mitigations or patches.

7CVSS6.9AI score0.00999EPSS
Exploits0References3Affected Software7
Symantec
Symantec
added 2017/07/11 12:0 a.m.42 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2017-8580 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Failed exploit attempts may result in a denial of service condition; this can result in the attacker gaining complete contro...

6.2CVSS3AI score0.00999EPSS
Exploits0Affected Software3
exploitpack
exploitpack
added 2016/11/02 12:0 a.m.66 views

Alienvault OSSIMUSM 5.3.1 - PHP Object Injection

Alienvault OSSIMUSM 5.3.1 - PHP Object Injection Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP object...

7.5CVSS0.5AI score0.06861EPSS
Exploits4
0day.today
0day.today
added 2016/11/02 12:0 a.m.56 views

Alienvault OSSIM/USM 5.3.1 - PHP Object Injection Vulnerability

Exploit for php platform in category web applications Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP objec...

7.5CVSS9.2AI score0.06861EPSS
Exploits4
Packet Storm
Packet Storm
added 2016/11/02 12:0 a.m.38 views

Alienvault OSSIM/USM 5.3.1 PHP Object Injection

Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP object injection vulnerability exists in multiple widget...

7.5CVSS0.2AI score0.06861EPSS
Exploits4
Exploit DB
Exploit DB
added 2016/11/02 12:0 a.m.37 views

Alienvault OSSIM/USM 5.3.1 - PHP Object Injection

Details ======= Product: Alienvault OSSIM/USM Vulnerability: PHP Object Injection Author: Peter Lapp, lappsec gmail com CVE: CVE-2016-8580 Vulnerable Versions: =5.3.1 Fixed Version: 5.3.2 Vulnerability Details ===================== A PHP object injection vulnerability exists in multiple widget...

9.8CVSS9.8AI score0.06861EPSS
Exploits4
Circl
Circl
added 2016/11/02 12:0 a.m.16 views

CVE-2016-8580

creationtimestamp| type| source ---|---|--- 2016-11-02 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40682 2016-11-02 00:52:03+00:00| published-proof-of-concept| https://t.me/FullDisclosure/224...

9.8CVSS8.7AI score0.06861EPSS
Exploits4References2
CVE
CVE
added 2016/10/28 3:0 p.m.56 views

CVE-2016-8580

Summary (concrete details): AlienVault OSSIM/USM before 5.3.2 is affected by a PHP object injection vulnerability caused by unsafe unserialize() usage in multiple widgets (flow_chart.php, gauge.php, honeypot.php, image.php, inventory.php, otx.php, rss.php, security.php, siem.php, taxonomy.php, ti...

9.8CVSS10AI score0.06861EPSS
Exploits4References3Affected Software2
Rows per page
Query Builder