Lucene search
K

11 matches found

Debian
Debian
added 2024/12/26 10:44 p.m.18 views

[SECURITY] [DLA 4003-1] node-postcss security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4003-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès December 26, 2024 https://wiki.debian.org/LTS -...

5.5CVSS5.9AI score0.00822EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/12/26 12:0 a.m.16 views

Debian dla-4003 : node-postcss - security update

The remote Debian 11 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-4003 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4003-1 [email protected]...

5.5CVSS6.6AI score0.00822EPSS
Exploits1References8
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/19 10:30 p.m.30 views

Security Bulletin: IBM Storage Ceph is vulnerable to the Improper Removal of Sensitive Information Before Storage or Transfer in Grafana (CVE-2021-23566)

Summary Grafana is used by IBM Storage Ceph as a metrics dashboard. This bulletin identifies the steps to take to address the vulnerability in Grafana. CVE-2021-23566. Vulnerability Details CVEID:CVE-2021-23566 DESCRIPTION: Nanoid could allow a local attacker to obtain sensitive information, caus...

5.5CVSS5.2AI score0.0044EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/12 5:31 p.m.35 views

Security Bulletin: Watson Machine Learning Accelerator on Cloud Pak for Data Version is affected by multiple vulnerabilties

Summary Mutiple open source vulnerabilties affects Watson Machine Learning Accelerator on Cloud Pak for Data Version 2.3.3 and have been addressed in version 2.3.4. Vulnerability Details CVEID:CVE-2021-23566 DESCRIPTION: Nanoid could allow a local attacker to obtain sensitive information, caused ...

9.1CVSS9.6AI score0.42326EPSS
Exploits14Affected Software1
RedHat Linux
RedHat Linux
added 2022/08/24 1:45 p.m.85 views

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.11.0 security, enhancement, & bugfix update

Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.11.0 on Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System...

9.8CVSS7AI score0.05994EPSS
Exploits7References137
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/16 6:23 p.m.39 views

Security Bulletin: Nanoid as used by IBM QRadar Use Case Manager App is vulnerable to information disclosure (CVE-2021-23566)

Summary Nanoid as used by IBM QRadar Use Case Manager App is vulnerable to information disclosure. IBM has addressed the relevant CVEs. Vulnerability Details CVEID: CVE-2021-23566 DESCRIPTION: Nanoid could allow a local attacker to obtain sensitive information, caused by a flaw in the valueOf...

5.5CVSS0.5AI score0.0044EPSS
Exploits1Affected Software1
RedhatCVE
RedhatCVE
added 2022/02/04 7:54 p.m.74 views

CVE-2021-23566

A flaw was found in the nanoid library where the valueOf function allows the reproduction of the last id generated. This flaw allows an attacker to expose sensitive information...

5.5CVSS2.9AI score0.0044EPSS
Exploits1References4
Circl
Circl
added 2022/01/14 10:19 p.m.5 views

CVE-2021-23566

creationtimestamp| type| source ---|---|--- 2022-01-14 22:19:43+00:00| seen| https://t.me/cibsecurity/35586...

5.5CVSS6.7AI score0.0044EPSS
Exploits1References1
NVD
NVD
added 2022/01/14 8:15 p.m.17 views

CVE-2021-23566

The package nanoid from 3.0.0 and before 3.1.31 are vulnerable to Information Exposure via the valueOf function which allows to reproduce the last id generated...

5.5CVSS0.0044EPSS
Exploits1References7
CVE
CVE
added 2022/01/14 8:5 p.m.252 views

CVE-2021-23566

CVE-2021-23566 affects nanoid versions 3.0.0 through before 3.1.31, where Information Exposure is possible via valueOf(), allowing reproduction of the last generated ID. Root cause is an information disclosure in valueOf(). Remediation: upgrade to nanoid 3.1.31 or later (the fixed version). Note:...

5.5CVSS5AI score0.0044EPSS
Exploits1References7Affected Software1
Debian CVE
Debian CVE
added 2022/01/14 8:5 p.m.15 views

CVE-2021-23566

The package nanoid from 3.0.0 and before 3.1.31 are vulnerable to Information Exposure via the valueOf function which allows to reproduce the last id generated...

5.5CVSS6.9AI score0.0044EPSS
Exploits1
Rows per page
Query Builder