Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 9 : pcs-0.11.1-10.el9.1.ML.1 (AXSA:2022-4107:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4107:07 advisory. sinatra: path traversal possible outside of publicdir when serving static files CVE-2022-29970 Tenable has extracted the preceding description block directly...

7.5CVSS5.6AI score0.02059EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/07/24 12:0 a.m.3 views

Ubuntu: Security Advisory (USN-7664-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.7AI score0.02059EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2022-29970

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sinatra before 2.2.0 does not validate that the expanded path matches publicdir when serving static files. CVE-2022-29970 Note that Nessus relies on the presenc...

7.5CVSS6.7AI score0.02059EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/09/05 12:0 a.m.13 views

Debian dla-3877 : ruby-rack-protection - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3877 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3877-1 [email protected]...

8.8CVSS6.9AI score0.02059EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2022/11/16 3:9 p.m.421 views

Important: Red Hat Security Advisory: Satellite 6.12 Release

An update is now available for Red Hat Satellite 6.12. The release contains a new version of Satellite and important security fixes for various components. Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring ...

9.8CVSS7AI score0.73274EPSS
Exploits7References279
OSV
OSV
added 2022/11/16 1:21 p.m.35 views

RLSA-2022:8506 Important: Satellite 6.12 Release

Rocky Enterprise Software Foundation Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Security Fixes: netty-codec: Bzip2Decoder doesn't allow setting...

9.8CVSS8.7AI score0.73274EPSS
Exploits6References279
Debian
Debian
added 2022/10/28 3:53 a.m.36 views

[SECURITY] [DLA 3166-1] ruby-sinatra security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-3166-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta October 28, 2022 https://wiki.debian.org/LTS -...

7.5CVSS7.6AI score0.02059EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/10/28 12:0 a.m.37 views

Debian dla-3166 : ruby-rack-protection - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3166 advisory. - ----------------------------------------------------------------------- Debian LTS Advisory DLA-3166-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS6.7AI score0.02059EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/08/15 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2022-0280)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.02059EPSS
Exploits0References4
Mageia
Mageia
added 2022/08/13 2:32 a.m.46 views

Updated ruby-sinatra packages fix security vulnerability

Sinatra before 2.2.0 does not validate that the expanded path matches publicdir when serving static files. CVE-2022-29970...

7.5CVSS2AI score0.02059EPSS
Exploits0References2
OSV
OSV
added 2022/08/13 2:32 a.m.7 views

MGASA-2022-0280 Updated ruby-sinatra packages fix security vulnerability

Sinatra before 2.2.0 does not validate that the expanded path matches publicdir when serving static files. CVE-2022-29970...

7.5CVSS7.5AI score0.02059EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/07/08 12:0 a.m.45 views

Rocky Linux 8 : pcs (RLSA-2022:4661)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:4661 advisory. - Sinatra before 2.2.0 does not validate that the expanded path matches publicdir when serving static files. CVE-2022-29970 Note that Nessus has not tested for...

7.5CVSS6.8AI score0.02059EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/07/07 12:0 a.m.33 views

Oracle Linux 9 : pcs (ELSA-2022-9513)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-9513 advisory. 0.11.1-10.el90.1 - Updated bundled rubygems: sinatra, rack-protection - Resolves: rhbz2081333 0.11.1-10 - Fixed snmp client - Fixed translating resource roles i...

7.5CVSS6.8AI score0.02059EPSS
Exploits0References2
OSV
OSV
added 2022/06/11 8:5 a.m.6 views

SUSE-SU-2022:2046-1 Security update for rubygem-sinatra

This update for rubygem-sinatra fixes the following issues: - CVE-2022-29970: Fixed possible path traversal outside of publicdir when serving static files bsc1199138...

7.5CVSS7.5AI score0.02059EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/05/24 12:0 a.m.37 views

AlmaLinux 8 : pcs (ALSA-2022:4661)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:4661 advisory. - Sinatra before 2.2.0 does not validate that the expanded path matches publicdir when serving static files. CVE-2022-29970 Note that Nessus has not tested for thi...

7.5CVSS6.8AI score0.02059EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/20 12:0 a.m.24 views

Oracle Linux 8 : pcs (ELSA-2022-9416)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-9416 advisory. 0.10.12-6.0.1.el86.1 - Replace HAM-logo.png with a generic one 0.10.12-6.el86.1 - Updated bundled rubygems: sinatra, rack-protection - Resolves: rhbz2081331...

7.5CVSS6.8AI score0.02059EPSS
Exploits0References2
OSV
OSV
added 2022/05/18 1:52 p.m.31 views

ALSA-2022:4661 Important: pcs security update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: sinatra: path traversal possible outside of publicdir when serving static files CVE-2022-29970 For more details about the security issues, including the impact, a CVSS score,...

7.5CVSS7.6AI score0.02059EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2022/05/18 1:52 p.m.32 views

Important: pcs security update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: sinatra: path traversal possible outside of publicdir when serving static files CVE-2022-29970 For more details about the security issues, including the impact, a CVSS score,...

7.5CVSS7.7AI score0.02059EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/05/18 12:56 a.m.52 views

Important: Red Hat Security Advisory: pcs security update

An update for pcs is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

7.5CVSS6.6AI score0.02059EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2022/05/18 12:0 a.m.37 views

Important: pcs security update

The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: sinatra: path traversal possible outside of publicdir when serving static files CVE-2022-29970 For more details about the security issues, including the impact, a CVSS score,...

7.5CVSS7.7AI score0.02059EPSS
Exploits0References4
Rows per page
Query Builder