Lucene search
+L

168 matches found

OpenVAS
OpenVAS
added 2022/11/24 12:0 a.m.38 views

Debian: Security Advisory (DLA-3203-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.02037EPSS
Exploits2References4
OSV
OSV
added 2022/11/23 2:34 p.m.17 views

SUSE-SU-2022:4201-1 Security update for nginx

This update for nginx fixes the following issues: - CVE-2021-3618: Fixed the ALPACA attack limiting the number of errors after which the connection is closed bsc1187685...

7.4CVSS7.4AI score0.02037EPSS
Exploits0References3
OSV
OSV
added 2022/11/23 10:5 a.m.19 views

SUSE-SU-2022:4192-1 Security update for nginx

This update for nginx fixes the following issues: - CVE-2021-3618: Fixed the ALPACA attack limiting the number of errors after which the connection is closed bsc1187685...

7.4CVSS7.4AI score0.02037EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/11/08 12:0 a.m.40 views

SUSE SLES12 Security Update : vsftpd (SUSE-SU-2022:3888-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3888-1 advisory. - CVE-2021-3618: Enforced security checks against ALPACA attack PM-3322, bsc1187686, bsc1187678. Bugfixes: - Fixed a seccomp failure in FIPS...

7.4CVSS7.1AI score0.02037EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2022/11/08 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2022:3888-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS7.8AI score0.02037EPSS
Exploits0References8
OSV
OSV
added 2022/11/07 1:24 p.m.20 views

SUSE-SU-2022:3888-1 Security update for vsftpd

This update for vsftpd fixes the following issues: - CVE-2021-3618: Enforced security checks against ALPACA attack PM-3322, bsc1187686, bsc1187678. Bugfixes: - Fixed a seccomp failure in FIPS mode when SSL was enabled bsc1052900. - Allowed wait4 to be called so that the broker can wait for its...

7.4CVSS7.2AI score0.02037EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/11/05 12:0 a.m.41 views

Amazon Linux 2022 : vsftpd (ALAS2022-2022-172)

It is, therefore, affected by a vulnerability as referenced in the ALAS2022-2022-172 advisory. ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates...

7.4CVSS7.4AI score0.02037EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/11/04 12:0 a.m.31 views

Amazon Linux 2022 : sendmail, sendmail-cf, sendmail-milter (ALAS2022-2022-171)

It is, therefore, affected by a vulnerability as referenced in the ALAS2022-2022-171 advisory. ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates...

7.4CVSS7.4AI score0.02037EPSS
Exploits0References3
Patchstack
Patchstack
added 2022/10/28 12:0 a.m.21 views

WordPress WP Best Quiz plugin <= 1.0 - Auth. Stored Cross-Site Scripting (XSS) vulnerability

Auth. Stored Cross-Site Scripting XSS vulnerability discovered by Alpaca in WordPress WP Best Quiz plugin versions = 1.0. Solution No patched version available...

2.1AI score0.00677EPSS
Exploits2References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/09/29 12:0 a.m.44 views

SUSE SLES15 Security Update : vsftpd (SUSE-SU-2022:3458-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3458-1 advisory. - CVE-2021-3618: Enforced security checks against ALPACA attack PM-3322, jscSLE-23895, bsc1187686, bsc1187678. - Added hardening to systemd...

7.4CVSS7.1AI score0.02037EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2022/09/29 12:0 a.m.37 views

SUSE SLES15 / openSUSE 15 Security Update : vsftpd (SUSE-SU-2022:3457-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3457-1 advisory. - CVE-2021-3618: Enforced security checks against ALPACA attack PM-3322, jscSLE-23896, bsc1187686, bsc1187678. - Added hardeni...

7.4CVSS7.1AI score0.02037EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2022/09/29 12:0 a.m.26 views

openSUSE: Security Advisory for vsftpd (SUSE-SU-2022:3457-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.4CVSS7.9AI score0.02037EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/09/29 12:0 a.m.37 views

SUSE: Security Advisory (SUSE-SU-2022:3458-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS7.9AI score0.02037EPSS
Exploits0References10
OSV
OSV
added 2022/09/28 3:13 p.m.15 views

SUSE-SU-2022:3458-1 Security update for vsftpd

This update for vsftpd fixes the following issues: - CVE-2021-3618: Enforced security checks against ALPACA attack PM-3322, jscSLE-23895, bsc1187686, bsc1187678. - Added hardening to systemd services bsc1181400. Bugfixes: - Fixed a seccomp failure in FIPS mode when SSL was enabled bsc1052900. -...

7.4CVSS7.2AI score0.02037EPSS
Exploits0References9
OSV
OSV
added 2022/09/28 3:11 p.m.25 views

SUSE-SU-2022:3457-1 Security update for vsftpd

This update for vsftpd fixes the following issues: - CVE-2021-3618: Enforced security checks against ALPACA attack PM-3322, jscSLE-23896, bsc1187686, bsc1187678. - Added hardening to systemd services bsc1181400. Bugfixes: - Fixed a seccomp failure in FIPS mode when SSL was enabled bsc1052900. -...

7.4CVSS7.2AI score0.02037EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2022/09/27 12:0 a.m.38 views

SUSE SLES12 Security Update : vsftpd (SUSE-SU-2022:3383-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3383-1 advisory. - CVE-2021-3618: Enforced security checks against ALPACA attack PM-3322, bsc1187686, bsc1187678. Bugfixes: - Fixed a seccomp failure in FIPS...

7.4CVSS7.1AI score0.02037EPSS
Exploits0References8
OSV
OSV
added 2022/09/26 10:34 a.m.18 views

SUSE-SU-2022:3383-1 Security update for vsftpd

This update for vsftpd fixes the following issues: - CVE-2021-3618: Enforced security checks against ALPACA attack PM-3322, bsc1187686, bsc1187678. Bugfixes: - Fixed a seccomp failure in FIPS mode when SSL was enabled bsc1052900. - Allowed wait4 to be called so that the broker can wait for its...

7.4CVSS7.2AI score0.02037EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2022/09/21 12:0 a.m.51 views

SUSE SLES15 / openSUSE 15 Security Update : vsftpd (SUSE-SU-2022:3320-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3320-1 advisory. - CVE-2021-3618: Enforced security checks against ALPACA attack bsc1187678, bsc1187686, PM-3322. Bugfixes: - Fixed a seccomp...

7.4CVSS7.1AI score0.02037EPSS
Exploits0References8
OSV
OSV
added 2022/09/20 12:47 p.m.18 views

SUSE-SU-2022:3320-1 Security update for vsftpd

This update for vsftpd fixes the following issues: - CVE-2021-3618: Enforced security checks against ALPACA attack bsc1187678, bsc1187686, PM-3322. Bugfixes: - Fixed a seccomp failure in FIPS mode when SSL was enabled bsc1052900. - Allowed wait4 to be called so that the broker can wait for its...

7.4CVSS7.2AI score0.02037EPSS
Exploits0References7
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 7:27 a.m.2 views

Malicious code in alpaca-oas (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a68a07a8506d5dcce370260e4c897a0d0fcfccfc0e10eeb83a02284cd0ff55fc Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Rows per page
Query Builder