Lucene search
K

31 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 9 : pcs-0.11.3-4.el9.2.ML.1 (AXSA:2023-5189:06)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5189:06 advisory. sinatra: Reflected File Download attack CVE-2022-45442 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

8.8CVSS5.5AI score0.00642EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 8 : pcs-0.10.14-5.el8.2.ML.1 (AXSA:2023-5163:05)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5163:05 advisory. sinatra: Reflected File Download attack CVE-2022-45442 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory...

8.8CVSS5.5AI score0.00642EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/07/24 12:0 a.m.3 views

Ubuntu: Security Advisory (USN-7664-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.7AI score0.02059EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 3: pcs (TSSA-2023:0189)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0189 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

8.8CVSS7.2AI score0.00642EPSS
Exploits1References2
OSV
OSV
added 2024/11/22 2:23 p.m.2 views

OESA-2024-2476 rubygem-sinatra security update

Sinatra is a DSL intended for quickly creating web-applications in Ruby with minimal effort. Security Fixes: Sinatra is a domain-specific language for creating web applications in Ruby. An issue was discovered in Sinatra 2.0 before 2.2.3 and 3.0 before 3.0.4. An application is vulnerable to a...

8.8CVSS7AI score0.00642EPSS
Exploits1References2
OSV
OSV
added 2024/11/22 2:23 p.m.3 views

OESA-2024-2474 rubygem-sinatra security update

Sinatra is a DSL intended for quickly creating web-applications in Ruby with minimal effort. Security Fixes: Sinatra is a domain-specific language for creating web applications in Ruby. An issue was discovered in Sinatra 2.0 before 2.2.3 and 3.0 before 3.0.4. An application is vulnerable to a...

8.8CVSS7AI score0.00642EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/09/05 12:0 a.m.13 views

Debian dla-3877 : ruby-rack-protection - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3877 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3877-1 [email protected]...

8.8CVSS6.9AI score0.02059EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2024/02/08 12:0 a.m.31 views

CentOS 8 : pcs (CESA-2023:0855)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2023:0855 advisory. - Sinatra is a domain-specific language for creating web applications in Ruby. An issue was discovered in Sinatra 2.0 before 2.2.3 and 3.0 before 3.0.4. An...

8.8CVSS7.1AI score0.00642EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.19 views

Mageia: Security Advisory (MGASA-2023-0029)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.00642EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/03/01 12:0 a.m.15 views

Oracle Linux 9 : pcs (ELSA-2023-12150)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12150 advisory. 0.11.3-4.el91.2 - Updated bundled rubygems: mustermann, rack, rackprotection, sinatra, tilt - Added license for rubygem ruby2keywords - Resolves: rhbz2159426...

8.8CVSS7.2AI score0.00642EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/02/28 8:7 a.m.34 views

Moderate: Red Hat Security Advisory: pcs security update

An update for pcs is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

8.8CVSS6.8AI score0.00642EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/02/28 12:0 a.m.34 views

RHEL 9 : pcs (RHSA-2023:0974)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0974 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: sinatra: Reflected File Downlo...

8.8CVSS7.2AI score0.00642EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/02/21 12:0 a.m.24 views

AlmaLinux 8 : pcs (ALSA-2023:0855)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:0855 advisory. - Sinatra is a domain-specific language for creating web applications in Ruby. An issue was discovered in Sinatra 2.0 before 2.2.3 and 3.0 before 3.0.4. An...

8.8CVSS7.1AI score0.00642EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/02/21 12:0 a.m.26 views

RHEL 8 : pcs (RHSA-2023:0855)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0855 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: sinatra: Reflected File Downlo...

8.8CVSS7.2AI score0.00642EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/02/21 12:0 a.m.22 views

RHEL 8 : pcs (RHSA-2023:0857)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0857 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: sinatra: Reflected File Downlo...

8.8CVSS7.2AI score0.00642EPSS
Exploits1References5
OSV
OSV
added 2023/02/21 12:0 a.m.21 views

ALSA-2023:0855 Moderate: pcs security update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: sinatra: Reflected File Download attack CVE-2022-45442 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

8.8CVSS8.7AI score0.00642EPSS
Exploits1References4
AlmaLinux
AlmaLinux
added 2023/02/21 12:0 a.m.30 views

Moderate: pcs security update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: sinatra: Reflected File Download attack CVE-2022-45442 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

8.8CVSS8.6AI score0.00642EPSS
Exploits1References4
Mageia
Mageia
added 2023/02/07 12:6 a.m.62 views

Updated ruby-sinatra packages fix security vulnerability

Potential reflected file download RFD vulnerability in ruby-sinatra, a Ruby library for writing HTTP applications. A Content-Disposition HTTP header was being incorrectly derived from a potentially user-supplied filename. CVE-2022-45442...

8.8CVSS1AI score0.00642EPSS
Exploits1References2
OSV
OSV
added 2023/02/07 12:6 a.m.7 views

MGASA-2023-0029 Updated ruby-sinatra packages fix security vulnerability

Potential reflected file download RFD vulnerability in ruby-sinatra, a Ruby library for writing HTTP applications. A Content-Disposition HTTP header was being incorrectly derived from a potentially user-supplied filename. CVE-2022-45442...

8.8CVSS8.5AI score0.00642EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/01/31 12:0 a.m.27 views

RHEL 9 : pcs (RHSA-2023:0527)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0527 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: sinatra: Reflected File Downlo...

8.8CVSS7.2AI score0.00642EPSS
Exploits1References5
Rows per page
Query Builder