Lucene search
K

30 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2018-14042

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip. CVE-2018-14042 Note that Nessus relies on the presence of the package as...

6.1CVSS6.7AI score0.04009EPSS
Exploits1References3
Circl
Circl
added 2024/08/28 8:5 p.m.7 views

CVE-2018-14042

creationtimestamp| type| source ---|---|--- 2024-08-28 20:05:46+00:00| seen| Telegram/PUYvFWleGvhvTPv3ZlC0zRSIrEJDRVSL7e-LmiKULxekvI 2024-09-12 10:16:41+00:00| seen| Telegram/KQJ2fokDRUpEEMEdtilLJpNYW94QEwCQWFCqP7BH6XiY 2024-11-22 19:21:06+00:00| seen|...

6.1CVSS6.7AI score0.04009EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/05 8:0 p.m.44 views

Security Bulletin: IBM Storage Ceph is vulnerable to Cross-site Scripting in Ceph (CVE-2018-20677, CVE-2018-20676, CVE-2019-8331, CVE-2018-14042, CVE-2018-14040, CVE-2016-10735)

Summary Bootstrap is used by IBM Storage Ceph as part of Ceph Storage. This bulletin identifies the steps to take to address the vulnerability in IBM Storage Ceph. CVE-2018-20677, CVE-2018-20676, CVE-2019-8331, CVE-2018-14042, CVE-2018-14040, CVE-2016-10735. Vulnerability Details...

6.1CVSS6.3AI score0.1686EPSS
Exploits5Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.33 views

RHEL 7 : bootstrap (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bootstrap: Cross-site Scripting XSS in the data-container property of tooltip CVE-2018-14042 - In Bootstr...

6.2AI score0.04135EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.46 views

RHEL 8 : bootstrap (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bootstrap: XSS in the tooltip or popover data-template attribute CVE-2019-8331 - In Bootstrap 3.x before...

6.9AI score0.1686EPSS
Exploits6References6
RedHat Linux
RedHat Linux
added 2023/03/01 9:45 p.m.39 views

Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.2 security update on RHEL 8

New Red Hat Single Sign-On 7.6.2 packages are now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.8AI score0.99615EPSS
Exploits41References32
Tenable Nessus
Tenable Nessus
added 2021/08/11 12:0 a.m.43 views

openSUSE 15 Security Update : php7 (openSUSE-SU-2021:1130-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1130-1 advisory. - Tenable.sc leverages third-party software to help provide underlying functionality. Multiple third-party components were found to contain...

9.8CVSS7.2AI score0.9947EPSS
Exploits94References7
Tenable Nessus
Tenable Nessus
added 2021/07/31 12:0 a.m.85 views

openSUSE 15 Security Update : php7 (openSUSE-SU-2021:2575-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:2575-1 advisory. - Tenable.sc leverages third-party software to help provide underlying functionality. Multiple third-party components were found to contain...

9.8CVSS7.1AI score0.9947EPSS
Exploits94References4
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.130 views

CentOS 8 : pki-core:10.6 and pki-deps:10.6 (CESA-2020:4847)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4847 advisory. - jquery: Cross-site scripting via cross-domain ajax requests CVE-2015-9251 - bootstrap: XSS in the data-target attribute CVE-2016-10735 - bootstrap:...

9.8CVSS7.5AI score0.9927EPSS
Exploits65References14
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.61 views

CentOS 8 : idm:DL1 and idm:client (CESA-2020:4670)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4670 advisory. - jquery: Cross-site scripting via cross-domain ajax requests CVE-2015-9251 - bootstrap: XSS in the data-target attribute CVE-2016-10735 - bootstrap:...

6.9CVSS7AI score0.99019EPSS
Exploits16References11
Tenable Nessus
Tenable Nessus
added 2020/12/18 12:0 a.m.56 views

RHEL 7 : python-XStatic-Bootstrap-SCSS (RHSA-2020:5571)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5571 advisory. python-XStatic-Bootstrap-SCSS is the Bootstrap-SCSS JavaScript library packaged for setuptools / pip. Security Fixes: XSS in the data-target...

6.1CVSS6.6AI score0.1686EPSS
Exploits4References13
RedHat Linux
RedHat Linux
added 2020/12/16 1:53 p.m.69 views

Moderate: Red Hat Security Advisory: python-XStatic-Bootstrap-SCSS security update

An update for python-XStatic-Bootstrap-SCSS is now available for Red Hat OpenStack Platform 13 Queens. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

6.1CVSS6.5AI score0.1686EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2020/11/04 1:31 a.m.267 views

Moderate: Red Hat Security Advisory: idm:DL1 and idm:client security, bug fix, and enhancement update

An update for the idm:DL1 and idm:client modules is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

6.9CVSS7.1AI score0.99019EPSS
Exploits16References62
Tenable Nessus
Tenable Nessus
added 2020/11/04 12:0 a.m.74 views

RHEL 8 : idm:DL1 and idm:client (RHSA-2020:4670)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4670 advisory. Red Hat Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and...

6.9CVSS6.8AI score0.99019EPSS
Exploits16References74
OSV
OSV
added 2020/11/03 12:25 p.m.48 views

ALSA-2020:4670 Moderate: idm:DL1 and idm:client security, bug fix, and enhancement update

AlmaLinux Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. The following packages have been upgraded to a later upstream version: ipa 4.8.7, softhsm 2.6.0, opendnssec 2.1.6...

6.9CVSS8.2AI score0.99019EPSS
Exploits16References11
Tenable Nessus
Tenable Nessus
added 2020/10/28 12:0 a.m.47 views

Amazon Linux 2 : ipa (ALAS-2020-1519)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1519 advisory. jQuery before 3.0.0 is vulnerable to Cross-site Scripting XSS attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed...

6.9CVSS6.5AI score0.99019EPSS
Exploits17References21
Tenable Nessus
Tenable Nessus
added 2020/10/21 12:0 a.m.49 views

Scientific Linux Security Update : ipa on SL7.x x86_64 (20201001)

Security Fixes : - js-jquery: Cross-site scripting via cross-domain ajax requests CVE-2015-9251 - bootstrap: XSS in the data-target attribute CVE-2016-10735 - bootstrap: Cross-site Scripting XSS in the collapse data-parent attribute CVE-2018-14040 - bootstrap: Cross-site Scripting XSS in the...

6.9CVSS7.3AI score0.99019EPSS
Exploits16References11
Cent OS
Cent OS
added 2020/10/20 6:15 p.m.201 views

ipa, python2 security update

CentOS Errata and Security Advisory CESA-2020:3936 An update for ipa is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

6.9CVSS7.4AI score0.99019EPSS
Exploits16References7
Tenable Nessus
Tenable Nessus
added 2020/10/20 12:0 a.m.114 views

CentOS 7 : ipa (RHSA-2020:3936)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3936 advisory. - jQuery before 3.0.0 is vulnerable to Cross-site Scripting XSS attacks when a cross-domain Ajax request is performed without the dataType option,...

6.9CVSS6.7AI score0.99019EPSS
Exploits17References11
IBM Security Bulletins
IBM Security Bulletins
added 2019/04/23 6:0 p.m.37 views

Security Bulletin: API Connect V5 is impacted by vulnerabilities in Bootstrap (CVE-2018-14040 CVE-2018-14041 CVE-2018-14042)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2018-14042 DESCRIPTION: Bootstrap is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the the data-container property of tooltip. A remote attacker could...

6.1CVSS0.6AI score0.04293EPSS
Exploits3Affected Software1
Rows per page
Query Builder