Lucene search
K

604 matches found

Fedora
Fedora
added 2021/05/12 5:35 a.m.54 views

[SECURITY] Fedora 32 Update: community-mysql-8.0.24-1.fc32

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files...

6.5CVSS7AI score0.04643EPSS
Exploits0
OSV
OSV
added 2021/03/31 6:15 p.m.1 views

CVE-2021-23002

When using BIG-IP APM 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, or all 12.1.x and 11.6.x versions or Edge Client versions 7.2.1.x before 7.2.1.1, 7.1.9.x before 7.1.9.8, or 7.1.8.x before 7.1.8.5, the session ID is visible in the arguments of th...

4.5CVSS5.8AI score
Exploits0References1
Fedora
Fedora
added 2021/03/23 12:18 a.m.63 views

[SECURITY] Fedora 34 Update: openssh-8.5p1-2.fc34

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

7.1CVSS2AI score0.03422EPSS
Exploits1
Fedora
Fedora
added 2021/03/19 8:22 p.m.34 views

[SECURITY] Fedora 34 Update: python-aiohttp-3.7.4-1.fc34

Python HTTP client/server for asyncio which supports both the client and the server side of the HTTP protocol, client and server websocket, and webserve rs with middlewares and pluggable routing...

6.1CVSS1.5AI score0.01905EPSS
Exploits0
Prion
Prion
added 2021/03/15 3:15 p.m.13 views

Design/Logic Flaw

SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation in nonstandard conditions. ConnectSecure on Windows is affected...

4.4CVSS6.9AI score0.00381EPSS
Exploits0References1Affected Software2
CNVD
CNVD
added 2021/02/24 12:0 a.m.5 views

Owncloud Cross-Site Request Forgery Vulnerability

Owncloud ownCloud is a set of personal cloud storage solutions from the American company ownCloud Owncloud. A cross-site request forgery vulnerability exists in OwnCloud Core, which stems from a WEB application that does not adequately validate whether a request is coming from a trusted user, and...

4.3CVSS6.5AI score0.00461EPSS
Exploits0References1
OSV
OSV
added 2021/02/12 8:15 p.m.5 views

CVE-2021-22977

On BIG-IP version 16.0.0-16.0.1 and 14.1.2.4-14.1.3, cooperation between malicious HTTP client code and a malicious server may cause TMM to restart and generate a core file. Note: Software versions which have reached End of Software Development EoSD are not evaluated...

7.5CVSS7.2AI score0.0102EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/02/10 12:0 a.m.6 views

Puppet Security Vulnerabilities

Puppet is a set of configuration management tools based on a client/server C/S architecture from Puppet Labs in the United States, which can be used to manage profiles, users, cron tasks, packages, system services, etc.Puppet Agent is a Puppet agent end-program. Puppet Agent has a security...

6.6CVSS5.8AI score0.00527EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/01/06 12:56 p.m.16 views

CVE-2020-26759

clickhouse-driver before 0.1.5 allows a malicious clickhouse server to trigger a crash or execute arbitrary code on a database client via a crafted server response, due to a buffer overflow...

9.7AI score0.02556EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/10/27 12:52 a.m.4 views

OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

5.8CVSS7.3AI score0.02203EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/10/26 8:2 p.m.6 views

OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

5.8CVSS7.3AI score0.02203EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/10/22 7:41 p.m.1 views

OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JNDI. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS7.1AI score0.02296EPSS
Exploits0References4
OSV
OSV
added 2020/10/21 3:15 p.m.3 views

DEBIAN-CVE-2020-14782

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

3.7CVSS5.7AI score0.02245EPSS
Exploits0References1
OSV
OSV
added 2020/10/21 3:15 p.m.2 views

UBUNTU-CVE-2020-14781

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JNDI. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

3.7CVSS6.7AI score0.02296EPSS
Exploits0References5
CNVD
CNVD
added 2020/10/19 12:0 a.m.1 views

Information leakage vulnerability in Zijinqiao monitoring configuration software

Zijinqiao monitoring and configuration software is a professional Zijinqiao monitoring and configuration software, which adopts C/S architecture and has database processing technology and graphic system. There is an information disclosure vulnerability in Zijinqiao Monitoring and Configuration...

6.2AI score
Exploits0
Citrix
Citrix
added 2020/10/07 12:0 a.m.6 views

How DNS(Domain Name System) works with GSLB feature on NetScaler

The Domain Name SystemDNS system is considered as a distributed database which uses the Client/Server architecture. Name Servers are the servers in the architecture, and the resolvers are the clients that are typically library routines installed on an operating system that create and send queries...

6.4AI score
Exploits0
OSV
OSV
added 2020/10/06 12:0 p.m.2 views

UBUNTU-CVE-2020-14355

Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1. Both the SPICE client spice-gtk and server are affected by these flaws. These flaws allow a malicious client or server to send specially crafted messag...

6.6CVSS7.3AI score0.02545EPSS
Exploits0References4
Fedora
Fedora
added 2020/10/01 12:17 a.m.35 views

[SECURITY] Fedora 33 Update: community-mysql-8.0.21-11.fc33

MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different client programs and libraries. The base package contains the standard MySQL client programs and generic MySQL files...

6.5CVSS2.7AI score0.02692EPSS
Exploits0
OSV
OSV
added 2020/09/30 6:15 p.m.23 views

CVE-2020-26149

NATS nats.js before 2.0.0-209, nats.ws before 1.0.0-111, and nats.deno before 1.0.0-9 allow credential disclosure from a client to a server...

7.5CVSS6.6AI score
Exploits0References3
RedHat Linux
RedHat Linux
added 2020/09/29 8:15 p.m.4 views

freerdp: out-of-bounds read in cliprdr_read_format_list function

In FreeRDP before 2.1.0, there is an out-of-bounds read in cliprdrreadformatlist. Clipboard format data read by client or server might read data out-of-bounds. This has been fixed in 2.1.0...

5CVSS5.7AI score0.01707EPSS
Exploits0References4
Rows per page
Query Builder