Lucene search
K

38 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:45 a.m.3 views

SUSE CVE-2017-8819

In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, the replay-cache protection mechanism is ineffective for v2 onion services, aka TROVE-2017-009. An attacker can send many INTRODUCE2 cells to trigger this issue...

7.5CVSS9.5AI score0.01426EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:2 a.m.3 views

SUSE CVE-2020-6442

Inappropriate implementation in cache in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS5.8AI score0.01905EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:38 a.m.3 views

SUSE CVE-2021-38009

Inappropriate implementation in cache in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS6.7AI score0.00831EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2022/05/10 2:26 p.m.6 views

bind: Lame cache can be abused to severely degrade resolver performance

A flaw was found in the way bind processes broken responses from authoritative servers. This caching mechanism could be abused by an attacker to significantly degrade resolver performance...

5.3CVSS7.2AI score0.08001EPSS
Exploits0References5
OSV
OSV
added 2021/12/23 1:15 a.m.1 views

DEBIAN-CVE-2021-38009

Inappropriate implementation in cache in Google Chrome prior to 96.0.4664.45 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

6.5CVSS7.2AI score0.00831EPSS
Exploits0References1
OSV
OSV
added 2021/10/19 10:54 a.m.7 views

USN-5111-1 strongswan vulnerabilities

It was discovered that strongSwan incorrectly handled certain RSASSA-PSS signatures. A remote attacker could use this issue to cause strongSwan to crash, resulting in a denial of service. CVE-2021-41990 It was discovered that strongSwan incorrectly handled replacing certificates in the cache. A...

7.5CVSS7.2AI score0.06438EPSS
Exploits0References3
OSV
OSV
added 2020/11/03 3:15 a.m.1 views

DEBIAN-CVE-2020-15982

Inappropriate implementation in cache in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

6.5CVSS7AI score0.01371EPSS
Exploits0References1
OSV
OSV
added 2020/11/03 3:15 a.m.3 views

UBUNTU-CVE-2020-15982

Inappropriate implementation in cache in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page...

6.5CVSS7.3AI score0.01371EPSS
Exploits0References2
OSV
OSV
added 2020/04/13 6:15 p.m.4 views

UBUNTU-CVE-2020-6442

Inappropriate implementation in cache in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

4.3CVSS6.7AI score0.01905EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2019/05/14 8:45 p.m.101 views

Important: Red Hat Security Advisory: qemu-kvm-rhev security update

An update for qemu-kvm-rhev is now available for Red Hat OpenStack Platform 14.0 Rocky. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.9CVSS7AI score0.01553EPSS
Exploits0References6
CNVD
CNVD
added 2018/05/29 12:0 a.m.5 views

Multiple TIBCO Product Information Disclosure Vulnerabilities (CNVD-2018-10558)

TIBCO JasperReports Server and so on are the products of the United States TIBCO Software Corporation.TIBCO JasperReports Server is a report generation and editing tools for the server version of the TIBCO JasperReports Server Community Edition is the community version of it. A security...

9.8CVSS7AI score0.01983EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2017/08/17 11:6 a.m.3 views

Mercurial: pathaudit: path traversal via symlink

A vulnerability was found in the way Mercurial handles path auditing and caches the results. An attacker could abuse a repository with a series of commits mixing symlinks and regular files/directories to trick Mercurial into writing outside of a given repository...

7.5CVSS5.7AI score0.04815EPSS
Exploits1References5
CNVD
CNVD
added 2017/07/07 12:0 a.m.18 views

Joomla! sensitive information disclosure vulnerability (CNVD-2017-22325)

Joomla! CMS is a U.S. Open Source Matters team developed a set of open source content management system CMS. The system provides RSS feeds , site search and other functions . A security vulnerability exists in Joomla! CMS versions 1.7.3 through 3.7.2, which is caused by the program failing to...

7.5CVSS7.3AI score0.02303EPSS
Exploits0References1
CNVD
CNVD
added 2015/09/20 12:0 a.m.4 views

Apple iOS Webkit Redirect Malicious Domain Vulnerability

Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A vulnerability in Apple iOS's handling of resource caches in illegal certificate sites allows attackers to construct malicious WEB pages and trick users into parsing them, which can redirect users to...

2.6CVSS6.5AI score0.00778EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2014/07/29 3:40 p.m.7 views

OpenJDK: Activation framework default command map caching (JAX-WS, 8025152)

Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-2423...

7.5CVSS6.8AI score0.04976EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/05/13 7:47 p.m.7 views

OpenJDK: Activation framework default command map caching (JAX-WS, 8025152)

Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-2423...

7.5CVSS6.8AI score0.04976EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/04/16 11:34 a.m.4 views

OpenJDK: Activation framework default command map caching (JAX-WS, 8025152)

Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-2423...

7.5CVSS7.1AI score0.04976EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/04/16 11:23 a.m.8 views

OpenJDK: Activation framework default command map caching (JAX-WS, 8025152)

Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-2423...

7.5CVSS7.1AI score0.04976EPSS
Exploits0References5
Rows per page
Query Builder