Lucene search
K

156 matches found

Prion
Prion
added 2020/03/24 6:15 p.m.14 views

Information disclosure

An issue was discovered on Samsung mobile devices with P9.0 software. Gallery leaks cached data. The Samsung IDs are SVE-2019-16010, SVE-2019-16011, SVE-2019-16012 January 2020...

5CVSS5.4AI score0.0034EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/03/05 1:15 a.m.19 views

CVE-2020-10096

An issue was discovered in Zammad 3.0 through 3.2. It does not prevent caching of confidential data within browser memory. An attacker who either remotely compromises or obtains physical access to a user's workstation can browse the browser cache contents and obtain sensitive information. The...

7.5CVSS7.2AI score0.01139EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/01/08 12:0 a.m.11 views

Drupal 8.8.x < 8.8.1 Multiple Vulnerabilities

According to its self-reported version number, the detected Drupal application is affected by multiple vulnerabilities : - The Drupal project uses the third-party library ArchiveTar, which has released a security update that impacts some Drupal configurations. Multiple vulnerabilities are possibl...

7.3AI score
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/12/23 12:0 a.m.13 views

FreeBSD : drupal -- Drupal Core - Multiple Vulnerabilities (3da0352f-2397-11ea-966e-000ffec0b3e1)

Drupal Security Team reports : A visit to install.php can cause cached data to become corrupted. This could cause a site to be impaired until caches are rebuilt. Drupal 8 core's filesaveupload function does not strip the leading and trailing dot '.' from filenames, like Drupal 7 did. Users with t...

5.3AI score
Exploits0References5
Drupal
Drupal
added 2019/12/18 12:0 a.m.26 views

Drupal core - Moderately critical - Denial of Service - SA-CORE-2019-009

A visit to install.php can cause cached data to become corrupted. This could cause a site to be impaired until caches are rebuilt...

6.7AI score
Exploits0References14
CNVD
CNVD
added 2019/12/18 12:0 a.m.3 views

TIBCO Spotfire Analytics Platform for AWS Marketplace and TIBCO Spotfire Server Information Disclosure Vulnerability (CNVD-2020-12703)

TIBCO Spotfire Analytics Platform for AWS Marketplace is a data visualization and analytics platform for the AWS Marketplace, an online software store.TIBCO Spotfire Server is an intelligent, secure, flexible, and scalable tool that provides data visualization , discovery, organizing and predicti...

6.5CVSS6.6AI score0.00796EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2019/12/18 12:0 a.m.16 views

drupal -- Drupal Core - Multiple Vulnerabilities

Drupal Security Team reports: A visit to install.php can cause cached data to become corrupted. This could cause a site to be impaired until caches are rebuilt. Drupal 8 core's filesaveupload function does not strip the leading and trailing dot '.' from filenames, like Drupal 7 did. Users with th...

1.3AI score
Exploits0References4
OSV
OSV
added 2019/12/17 9:15 p.m.9 views

CVE-2019-17335

The Data access layer component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace and TIBCO Spotfire Server contains multiple vulnerabilities that theoretically allow an attacker access to data cached from a data source, or a portion of a data source, that the attacke...

6.5CVSS5.8AI score0.00796EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2019/10/11 9:46 a.m.46 views

CVE-2018-5131

Under certain circumstances the "fetch" API can return transient local copies of resources that were sent with a "no-store" or "no-cache" cache header instead of downloading a copy from the network as it should. This can result in previously stored, locally cached data of a website being accessib...

6.1CVSS2.6AI score0.02323EPSS
Exploits0References2
CNVD
CNVD
added 2018/12/05 12:0 a.m.2 views

Command Execution Vulnerability in Thunderwind Movie LFCMS v3.8.6

LFCMS is a film and television content management system developed in PHP and based on THINKPHP framework suitable for all kinds of video, film and television websites. LFCMS v3.8.6 has a command execution vulnerability, the vulnerability stems from the failure to filter cached data, an attacker...

7.3AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2018/10/18 7:35 p.m.16 views

Security Bulletin: A Security vulnerability has been identified in IBM WebSphere Application Server bundled with IBM WebSphere Application Server Patterns and IBM WebSphere Application Server for Cloud (CVE-2017-1381)

Summary There is an information disclosure in the WebSphere Application Server Proxy Server or On-Demand-Router ODR. This only occurs when the system clock is changed. If the system clock is changed it could cause stale data to be cached and served. Vulnerability Details Consult the security...

2.9AI score0.00377EPSS
Exploits0Affected Software1
ALT Linux
ALT Linux
added 2018/09/24 12:0 a.m.75 views

Security fix for the ALT Linux 10 package firefox-esr version 60.2.1-alt1

Sept. 24, 2018 Andrey Cherepanov 60.2.1-alt1 - New ESR version 60.2.1. - Fixed: + CVE-2018-12385 Crash in TransportSecurityInfo due to cached data + CVE-2018-12383 Setting a master password post-Firefox 58 does not delete unencrypted previously stored passwords...

4.4CVSS6.9AI score0.0046EPSS
Exploits1
Hacker One
Hacker One
added 2018/09/20 3:40 a.m.84 views

Chaturbate: Form Replay in customer information form

The hacker found that the server replays some form field data back in the response when there were form validation errors, which could be cached or viewed by someone with physical access to the same device used to complete the form. The fix was to delete the form data from showing in the response...

2.1AI score
Exploits0
OSV
OSV
added 2018/06/11 9:29 p.m.9 views

CVE-2018-5131

Under certain circumstances the "fetch" API can return transient local copies of resources that were sent with a "no-store" or "no-cache" cache header instead of downloading a copy from the network as it should. This can result in previously stored, locally cached data of a website being accessib...

5.9CVSS8.6AI score
Exploits0References11
NVD
NVD
added 2018/06/11 9:29 p.m.19 views

CVE-2018-5131

Under certain circumstances the "fetch" API can return transient local copies of resources that were sent with a "no-store" or "no-cache" cache header instead of downloading a copy from the network as it should. This can result in previously stored, locally cached data of a website being accessib...

5.9CVSS6.6AI score0.02323EPSS
Exploits0References11
OSV
OSV
added 2018/06/11 9:29 p.m.1 views

DEBIAN-CVE-2018-5131

Under certain circumstances the "fetch" API can return transient local copies of resources that were sent with a "no-store" or "no-cache" cache header instead of downloading a copy from the network as it should. This can result in previously stored, locally cached data of a website being accessib...

5.9CVSS8.2AI score0.02323EPSS
Exploits0References1
OSV
OSV
added 2018/06/11 9:29 p.m.2 views

DEBIAN-CVE-2017-7753

An out-of-bounds read occurs when applying style rules to pseudo-elements, such as ::first-line, using cached style data. This vulnerability affects Thunderbird 52.3, Firefox ESR 52.3, and Firefox 55...

9.1CVSS8.6AI score0.03186EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/06/11 9:0 p.m.26 views

CVE-2018-5131

Under certain circumstances the "fetch" API can return transient local copies of resources that were sent with a "no-store" or "no-cache" cache header instead of downloading a copy from the network as it should. This can result in previously stored, locally cached data of a website being accessib...

6.5AI score0.02323EPSS
Exploits0References11
CVE
CVE
added 2018/06/11 9:0 p.m.172 views

CVE-2018-5131

CVE-2018-5131 affects Mozilla Firefox (ESR &lt; 52.7 and Firefox

5.9CVSS6.3AI score0.02323EPSS
Exploits0References11Affected Software1
OSV
OSV
added 2018/04/03 6:29 a.m.3 views

CVE-2018-4168

An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves the "Files Widget" component. It allows physically proximate attackers to obtain sensitive information by leveraging the display of cached data on a locked device...

4.6CVSS7.3AI score0.00384EPSS
Exploits0References3
Rows per page
Query Builder