Lucene search
K

27 matches found

Cvelist
Cvelist
added 2024/06/05 8:28 a.m.30 views

CVE-2024-1272 Information Disclosure to Source Code in TNB Mobile Solutions' Cockpit Software

Inclusion of Sensitive Information in Source Code vulnerability in TNB Mobile Solutions Cockpit Software allows Retrieve Embedded Sensitive Data. This issue affects Cockpit Software: before v0.251.1...

7.5CVSS5.4AI score0.00383EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/08/18 12:0 a.m.4 views

PT-2023-29206 · Cockpit · Cockpit

Name of the Vulnerable Software and Affected Versions: cockpit versions prior to 2.6.4 Description: The issue is related to Cross-site Scripting XSS - Reflected in the GitHub repository cockpit-hq/cockpit. This type of attack occurs when an application includes user input in its response without...

8.3CVSS6.5AI score0.00532EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2023/08/14 12:0 a.m.4 views

PT-2023-28732 · Cockpit · Cockpit

Name of the Vulnerable Software and Affected Versions: cockpit versions prior to 2.4.3 Description: The issue is related to Cross-site Scripting XSS - Stored in the GitHub repository cockpit-hq/cockpit. This type of attack occurs when an application stores user input and later displays it without...

8.3CVSS6.4AI score0.00555EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2023/03/03 12:0 a.m.3 views

PT-2023-16790 · Cockpit · Cockpit

Name of the Vulnerable Software and Affected Versions: cockpit versions prior to 2.4.0 Description: The issue concerns the use of platform-dependent third-party components in the GitHub repository cockpit-hq/cockpit. A patch is available and is anticipated to be part of version 2.4.0...

5.5CVSS4.3AI score0.00349EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2022/08/15 11:21 a.m.2 views

CVE-2022-2818

Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository cockpit-hq/cockpit prior to 2.2.2...

9.8CVSS7.2AI score0.01278EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/08/08 12:0 a.m.1 views

PT-2022-18239 · Cockpit · Cockpit

Name of the Vulnerable Software and Affected Versions: Cockpit versions prior to 2.2.0 Description: The issue is related to insufficient session expiration. The application does not validate requests after password changes, allowing a user to change their account details even after an admin chang...

9.8CVSS8.4AI score0.00956EPSS
Exploits1References7
OSV
OSV
added 2020/12/30 2:15 a.m.8 views

CVE-2020-35850

An SSRF issue was discovered in cockpit-project.org Cockpit 234. NOTE: this is unrelated to the Agentejo Cockpit product. NOTE: the vendor states "I don't think it is a big real-life issue...

6.5CVSS6.3AI score
Exploits0References2
Rows per page
Query Builder