Lucene search
K

1106 matches found

Fedora
Fedora
added 2025/10/31 12:55 a.m.9 views

[SECURITY] Fedora 43 Update: openbao-2.4.3-1.fc43

Openbao secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Openbao handles leasing, key revocation, key rolling, and auditing. Through a unified API, us ers can access an encrypted Key/Value store and network...

7.5CVSS7AI score0.00286EPSS
Exploits0
Talos Blog
Talos Blog
added 2025/10/30 9:59 a.m.26 views

Dynamic binary instrumentation (DBI) with DynamoRio

This blog introduces dynamic binary instrumentation DBI and guides you through building your own DBI tool with the open-source DynamoRIO framework on Windows 11. DBI enables powerful runtime analysis and modification of binaries critical for malware analysis, security auditing, reverse engineerin...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2025/10/28 12:0 a.m.5 views

Fedora: Security Advisory (FEDORA-2025-b6f15a721e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.3CVSS6.8AI score0.00303EPSS
Exploits0References3
Fedora
Fedora
added 2025/10/26 1:8 a.m.9 views

[SECURITY] Fedora 41 Update: sssd-2.11.1-2.fc41

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable back end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy...

8.8CVSS7.7AI score0.00756EPSS
Exploits0
Fedora
Fedora
added 2025/10/25 9:22 p.m.7 views

[SECURITY] Fedora 43 Update: sssd-2.11.1-4.fc43

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable back end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy...

8.8CVSS7.7AI score0.00756EPSS
Exploits0
OSV
OSV
added 2025/10/24 2:33 p.m.7 views

OESA-2025-2515 sssd security update

Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable back end system to connect to multiple different account sources. It is also the basis to provide client auditing and policy...

8.8CVSS7.1AI score0.00756EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/10/23 12:0 a.m.7 views

Lynis Auditing Tool 3.1.6

Lynis is an auditing tool for Unix specialists. It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated...

6.7AI score
Exploits0
OSV
OSV
added 2025/10/14 8:39 a.m.9 views

BIT-ELASTICSEARCH-2025-37727 Elasticsearch Insertion of sensitive information in log file

Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the reindex API https://www.elastic.co/docs/api/doc/elasticsearch/operation/operation-reindex...

5.7CVSS6.6AI score0.0023EPSS
Exploits0References2
OSV
OSV
added 2025/10/10 12:30 p.m.2 views

GHSA-56R7-H6MW-RCFV Elasticsearch: Insertion of Sensitive Information into Log File via reindex API

Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the reindex API https://www.elastic.co/docs/api/doc/elasticsearch/operation/operation-reindex...

5.7CVSS7.2AI score0.0023EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/10 12:30 p.m.5 views

EUVD-2025-33703

Elasticsearch: Insertion of Sensitive Information into Log File via reindex API...

5.7CVSS6.3AI score0.0023EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/10/10 12:30 p.m.14 views

Elasticsearch: Insertion of Sensitive Information into Log File via reindex API

Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the reindex API https://www.elastic.co/docs/api/doc/elasticsearch/operation/operation-reindex...

5.7CVSS6.6AI score0.0023EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2025/10/10 10:15 a.m.5 views

CVE-2025-37727

Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the reindex API https://www.elastic.co/docs/api/doc/elasticsearch/operation/operation-reindex...

5.7CVSS0.0023EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/10 9:56 a.m.16 views

CVE-2025-37727 Elasticsearch Insertion of sensitive information in log file

Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the reindex API https://www.elastic.co/docs/api/doc/elasticsearch/operation/operation-reindex...

5.7CVSS0.0023EPSS
Exploits0References1
OSV
OSV
added 2025/10/10 9:56 a.m.4 views

CVE-2025-37727 Elasticsearch Insertion of sensitive information in log file

Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the reindex API https://www.elastic.co/docs/api/doc/elasticsearch/operation/operation-reindex...

5.7CVSS5.9AI score0.0023EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/10/10 9:56 a.m.5 views

CVE-2025-37727 Elasticsearch Insertion of sensitive information in log file

Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality under specific preconditions when auditing requests to the reindex API https://www.elastic.co/docs/api/doc/elasticsearch/operation/operation-reindex...

5.7CVSS6.2AI score0.0023EPSS
Exploits0References1
CVE
CVE
added 2025/10/10 9:56 a.m.581 views

CVE-2025-37727

CVE-2025-37727 affects Elasticsearch. The vulnerability involves insertion of sensitive information into log files when auditing requests to the reindex API, potentially leading to confidentiality loss under specific preconditions. The CVSS 3.1 score is 5.7 (Medium) with attack vector Adjacent, c...

5.7CVSS6.2AI score0.0023EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/10/10 12:0 a.m.29 views

Elasticsearch 7.0.x <= 7.17.29 / 8.0.x < 8.18.8 / 8.19.x < 8.19.5 / 9.0.x < 9.0.8 / 9.1.x < 9.1.5 (ESA-2025-18)

The version of Elasticsearch installed on the remote host is prior to 8.18.8, 8.19.5, 9.0.8, or 9.1.5. It is, therefore, affected by a vulnerability as referenced in the ESA-2025-18 advisory. - Insertion of sensitive information in log file in Elasticsearch can lead to loss of confidentiality und...

5.7CVSS8.1AI score0.0023EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/10 12:0 a.m.5 views

Elastic Elasticsearch 安全漏洞

Elastic Elasticsearch is a search engine based on the Lucene library from the Dutch company Elastic. A security vulnerability exists in Elastic Elasticsearch that stems from the insertion of sensitive information into log files when auditing requests under certain conditions, which could lead to...

5.7CVSS8.7AI score0.0023EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/08 12:0 a.m.6 views

PT-2025-41309

Name of the Vulnerable Software and Affected Versions Elasticsearch versions 8.18.8, 8.19.5, 9.0.8, and 9.1.5 Description A flaw exists in Elasticsearch where the insertion of sensitive information into log files can result in a loss of confidentiality under certain conditions. This occurs...

5.7CVSS8.9AI score0.0023EPSS
Exploits0References20
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-7987

Malware in sbrugna...

6.5CVSS6.7AI score0.01129EPSS
Exploits0References3
Rows per page
Query Builder