25 matches found
MINI-78F3-9486-64Q8
Bulletin has no description...
RockyLinux 10 : qt6-qtbase (RLSA-2025:9486)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:9486 advisory. qt5: qt6: QtCore Assertion Failure Denial of Service CVE-2025-5455 Tenable has extracted the preceding description block directly from the RockyLinux security...
CGA-QQ9G-X3J5-9486
Bulletin has no description...
CVE-2018-9486
creationtimestamp| type| source ---|---|--- 2024-11-20 17:51:40+00:00| seen| https://infosec.exchange/users/cve/statuses/113516550531083406 2024-11-20 19:36:17+00:00| seen| https://t.me/cvedetector/11642...
openSUSE Security Advisory (SUSE-SU-2024:3911-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-9486
creationtimestamp| type| source ---|---|--- 2024-10-17 07:20:28+00:00| seen| https://t.me/thehackernews/5745 2024-10-17 10:42:53+00:00| published-proof-of-concept| Telegram/D3vBRO0Ccc3fQ8PvACxfRc69yzgJfBdfd5jwHUjmVwtg6A 2024-10-17 10:44:25+00:00| seen| https://t.me/KomunitiSiber/2731 2024-10-17...
Critical Kubernetes Image Builder Vulnerability Exposes Nodes to Root Access Risk
A critical security flaw has been disclosed in the Kubernetes Image Builder that, if successfully exploited, could be abused to gain root access under certain circumstances. The vulnerability, tracked as CVE-2024-9486 CVSS score: 9.8, has been addressed in version 0.1.38. The project maintainers...
CVE-2024-9486
A security issue was discovered in the Kubernetes Image Builder versions = v0.1.37 where default credentials are enabled during the image build process. Virtual machine images built using the Proxmox provider do not disable these default credentials, and nodes using the resulting images may be...
CVE-2024-9486 VM images built with Image Builder and Proxmox provider use default credentials
A security issue was discovered in the Kubernetes Image Builder versions = v0.1.37 where default credentials are enabled during the image build process. Virtual machine images built using the Proxmox provider do not disable these default credentials, and nodes using the resulting images may be...
CVE-2024-9486
CVE-2024-9486 affects Kubernetes Image Builder
CVE-2024-9486 VM images built with Image Builder and Proxmox provider use default credentials
A security issue was discovered in the Kubernetes Image Builder versions = v0.1.37 where default credentials are enabled during the image build process. Virtual machine images built using the Proxmox provider do not disable these default credentials, and nodes using the resulting images may be...
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2022-9486)
The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9486 advisory. - Add debugfs for controlling MMIO state data Kanth Ghatraju Orabug: 34202259 CVE-2022-21123 CVE-2022-21125 CVE-2022-21127 CVE-2022-21166 - KVM:...
it.agilelab:wasp-spark-nifi-plugin-bridge_2.11 (>=2.27.2 <=2.36.0-cdp719), it.agilelab:wasp-spark-nifi-plugin-bridge_2.12 (>=0.0.0 <=3.1.0-3_5_emr770) +2 more potentially affected by CVE-2020-9486 via org.apache.nifi:nifi-stateless (>=1.10.0 <=1.11.4)
org.apache.nifi:nifi-stateless MAVEN version =1.10.0, =2.27.2, =0.0.0, =1.10.0, =1.11.0, =1.11.4 Source cves: CVE-2020-9486 Source advisory: OSV:GHSA-G644-PR5V-VPPF...
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9486)
The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9486 advisory. - dccp: dont duplicate ccid when cloning dccp sock Lin, Zhenpeng Orabug: 33408808 CVE-2017-6074 CVE-2020-16119 CVE-2020-16119 - KVM: X86: MMU: Use...
CVE-2020-9486
creationtimestamp| type| source ---|---|--- 2020-10-02 00:53:21+00:00| seen| https://t.me/cibsecurity/15005...
CVE-2020-9486
In Apache NiFi 1.10.0 to 1.11.4, the NiFi stateless execution engine produced log output which included sensitive property values. When a flow was triggered, the flow definition configuration JSON was printed, potentially containing sensitive values in plaintext...
CVE-2020-9486
CVE-2020-9486 affects Apache NiFi 1.10.0–1.11.4, where the stateless execution engine logs a flow definition configuration JSON during trigger, potentially revealing sensitive property values in plaintext. The vulnerability, described as information disclosure, is evidenced by multiple sources (N...
CVE-2015-9486
The CVE-2015-9486 entry concerns the ThemeMakers Axioma Premium Responsive WordPress theme (pre-2015-05-15). Affected component: the theme itself; vulnerability stems from the ability to directly request the file wp-content/uploads/tmm_db_migrate/wp_users.dat, which exposes sensitive user data (u...
CVE-2019-9486
STRATO HiDrive Desktop Client 5.0.1.0 for Windows is affected by a SYSTEM privilege-escalation vulnerability via the HiDriveMaintenanceService, which exposes a NetNamedPipe endpoint and allows code injection through insecure interprocess communication. The issue also affects Telekom MagentaCLOUD ...
CVE-2016-9486
CVE-2016-9486 affects ForeScout CounterACT's Windows SecureConnector agent. The agent downloads and runs scripts/executables from the current user’s TEMP directory while executing a SYSTEM-level batch file, creating insecure permissions and enabling privilege escalation for a local unprivileged u...