Lucene search
K

14 matches found

SUSE CVE
SUSE CVE
added 2026/05/13 3:54 p.m.16 views

SUSE CVE-2017-1000065

Multiple Cross-site scripting XSS vulnerabilities in rpc.php in OpenMediaVault release 2.1 in Access Rights ManagementUsers functionality allows attackers to inject arbitrary web scripts and execute malicious scripts within an authenticated client's browser...

6.1CVSS6.5AI score0.00741EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-4614

Malware in sbrugna...

7.8CVSS7.8AI score0.00455EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-4610

Malware in sbrugna...

7.8CVSS7.8AI score0.00455EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-1385

Malware in sbrugna...

6.1CVSS6.3AI score0.00741EPSS
Exploits0References2
CNVD
CNVD
added 2019/01/16 12:0 a.m.2 views

Portier encryption vulnerability

Portier is an access rights management application. Portier has an encryption vulnerability. An attacker can exploit the access encryption password to gain privileges...

9.8CVSS7.3AI score0.01081EPSS
Exploits3References1
NVD
NVD
added 2018/07/13 8:29 p.m.19 views

CVE-2017-13096

The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property IP, as well as the management of access rights for such IP, including modification of Rights Block to remove or relax access control. The methods are flawed and, in the most egregious cases,...

7.8CVSS7.5AI score0.00455EPSS
Exploits0References2
NVD
NVD
added 2018/07/13 8:29 p.m.10 views

CVE-2017-13097

The P1735 IEEE standard describes flawed methods for encrypting electronic-design intellectual property IP, as well as the management of access rights for such IP, including modification of Rights Block to remove or relax license requirement. The methods are flawed and, in the most egregious case...

7.8CVSS7.5AI score0.00455EPSS
Exploits0References2
CVE
CVE
added 2018/07/13 8:0 p.m.47 views

CVE-2017-13096

CVE-2017-13096 concerns the IEEE P1735 standard where the Rights Block (RSA-encrypted AES key) can be modified to remove or relax access control. The connected sources document a cryptographic design flaw that enables an attacker with access to EDA tools or to the standard’s workflow to alter rig...

7.8CVSS7.5AI score0.00455EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/07/13 8:0 p.m.46 views

CVE-2017-13094

The CVE-2017-13094 entry concerns flaws in the IEEE P1735 cryptographic workflow for encrypting electronic-design IP. The available documents describe that the standard enables manipulation of the encryption key and insertion of hardware trojans into IP, potentially allowing an attacker to recove...

7.8CVSS7.5AI score0.0027EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2017/07/17 1:18 p.m.19 views

CVE-2017-1000065

Multiple Cross-site scripting XSS vulnerabilities in rpc.php in OpenMediaVault release 2.1 in Access Rights ManagementUsers functionality allows attackers to inject arbitrary web scripts and execute malicious scripts within an authenticated client's browser...

6.1CVSS6.2AI score0.00741EPSS
Exploits0References1
OSV
OSV
added 2017/07/17 1:18 p.m.16 views

CVE-2017-1000065

Multiple Cross-site scripting XSS vulnerabilities in rpc.php in OpenMediaVault release 2.1 in Access Rights ManagementUsers functionality allows attackers to inject arbitrary web scripts and execute malicious scripts within an authenticated client's browser...

6.1CVSS6.2AI score
Exploits0References1
Prion
Prion
added 2017/07/17 1:18 p.m.14 views

Cross site scripting

Multiple Cross-site scripting XSS vulnerabilities in rpc.php in OpenMediaVault release 2.1 in Access Rights ManagementUsers functionality allows attackers to inject arbitrary web scripts and execute malicious scripts within an authenticated client's browser...

4.3CVSS6.1AI score0.00741EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2017/07/13 8:0 p.m.22 views

CVE-2017-1000065

Multiple Cross-site scripting XSS vulnerabilities in rpc.php in OpenMediaVault release 2.1 in Access Rights ManagementUsers functionality allows attackers to inject arbitrary web scripts and execute malicious scripts within an authenticated client's browser...

6.3AI score0.00741EPSS
Exploits0References1
CVE
CVE
added 2017/07/13 8:0 p.m.53 views

CVE-2017-1000065

CVE-2017-1000065 involves multiple cross-site scripting (XSS) vulnerabilities in the OpenMediaVault 2.1 rpc.php component (Access Rights Management/Users). The affected element is not explicitly enumerated beyond rpc.php in OpenMediaVault 2.1; the root cause is described as XSS allowing an attack...

6.1CVSS6.2AI score0.00741EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder