Lucene search
K

4456 matches found

Prion
Prion
added 2012/10/31 4:55 p.m.15 views

Design/Logic Flaw

The commonsdiscussionviewsdefaultviews function in modules/features/commonsdiscussion/commonsdiscussion.viewsdefault.inc in the Drupal Commons module 6.x-2.x before 6.x-2.8 for Drupal does not properly enforce intended node access restrictions, which might allow remote attackers to obtain sensiti...

5CVSS6.8AI score0.01369EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2012/10/31 4:0 p.m.21 views

CVE-2012-4483

The commonsdiscussionviewsdefaultviews function in modules/features/commonsdiscussion/commonsdiscussion.viewsdefault.inc in the Drupal Commons module 6.x-2.x before 6.x-2.8 for Drupal does not properly enforce intended node access restrictions, which might allow remote attackers to obtain sensiti...

6.2AI score0.01369EPSS
Exploits0References5
CVE
CVE
added 2012/10/31 4:0 p.m.47 views

CVE-2012-4483

CVE-2012-4483 affects the Drupal Commons module (6.x-2.x) before 6.x-2.8. The underling root cause is that the function commons_discussion_views_default_views does not properly enforce node access restrictions, potentially allowing remote attackers to view sensitive information via the recent com...

5CVSS6.4AI score0.01369EPSS
Exploits0References5Affected Software1
OpenVAS
OpenVAS
added 2012/08/30 12:0 a.m.17 views

Fedora Update for apache-commons-compress FEDORA-2012-8428

Check for the Version of apache-commons-compress OpenVAS Vulnerability Test Fedora Update for apache-commons-compress FEDORA-2012-8428 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...

5CVSS6.6AI score0.12608EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2012/08/30 12:0 a.m.29 views

Fedora Update for apache-commons-compress FEDORA-2012-8428

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS6.6AI score0.12608EPSS
Exploits1References2
CVE
CVE
added 2012/08/26 9:0 p.m.44 views

CVE-2012-2297

The CVE-2012-2297 entry refers to the Creative Commons module for Drupal (6.x-1.x) with XSS vulnerabilities in the 6.x-1.0 to 6.x-1.1 range. The root cause is insufficient filtering of license description text, enabling remote authenticated users with the administer creative commons permission to...

2.1CVSS5.5AI score0.01089EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2012/08/26 9:0 p.m.22 views

CVE-2012-2297

Multiple cross-site scripting XSS vulnerabilities in the Creative Commons module 6.x-1.x before 6.x-1.1 for Drupal allow remote authenticated users with the administer creative commons permission to inject arbitrary web script or HTML via the 1 creativecommonsusermessage or 2...

5.5AI score0.01089EPSS
Exploits0References8
Drupal
Drupal
added 2012/07/11 12:0 a.m.12 views

SA-CONTRIB-2012-113 - Drupal Commons - Access Bypass

Drupal Commons is a ready-to-use solution for building either internal or external communities. The Drupal Commons feature a central module in the distribution includes a listing of recent comments on discussions. This listing of comments is powered by a view that doesn't fully enforce node acces...

7AI score
Exploits0References9
OSV
OSV
added 2012/06/29 7:55 p.m.2 views

DEBIAN-CVE-2012-2098

Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream BZip2CompressorOutputStream in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service CPU consumption via a file with many repeating inputs...

5CVSS8.7AI score0.12608EPSS
Exploits1References1
NVD
NVD
added 2012/06/29 7:55 p.m.23 views

CVE-2012-2098

Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream BZip2CompressorOutputStream in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service CPU consumption via a file with many repeating inputs...

5CVSS6AI score0.12608EPSS
Exploits1References18
OSV
OSV
added 2012/06/29 7:55 p.m.6 views

CVE-2012-2098

Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream BZip2CompressorOutputStream in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service CPU consumption via a file with many repeating inputs...

5.5AI score
Exploits0References18
Prion
Prion
added 2012/06/29 7:55 p.m.22 views

Design/Logic Flaw

Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream BZip2CompressorOutputStream in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service CPU consumption via a file with many repeating inputs...

5CVSS6.8AI score0.12608EPSS
Exploits1References18Affected Software1
UbuntuCve
UbuntuCve
added 2012/06/29 7:55 p.m.35 views

CVE-2012-2098

Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream BZip2CompressorOutputStream in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service CPU consumption via a file with many repeating inputs...

5CVSS6.8AI score0.12608EPSS
Exploits1References7
Cvelist
Cvelist
added 2012/06/29 12:0 a.m.27 views

CVE-2012-2098

Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream BZip2CompressorOutputStream in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service CPU consumption via a file with many repeating inputs...

5.8AI score0.12608EPSS
Exploits1References18
CVE
CVE
added 2012/06/29 12:0 a.m.176 views

CVE-2012-2098

CVE-2012-2098 affects Apache Commons Compress (BZip2CompressorOutputStream). The vulnerability is an algorithmic complexity in the sorting routines used by the bzip2 stream, allowing an attacker to cause CPU exhaustion (DoS) by feeding input with many repeating patterns. Affected product: Apache ...

5CVSS5.3AI score0.12608EPSS
Exploits1References18Affected Software1
Positive Technologies
Positive Technologies
added 2012/06/29 12:0 a.m.4 views

PT-2012-1206 · Apache · Apache Commons Compress

Name of the Vulnerable Software and Affected Versions: Apache Commons Compress versions prior to 1.4.1 Description: The issue concerns a problem with the sorting algorithms in the bzip2 compressing stream, specifically in the BZip2CompressorOutputStream function of Apache Commons Compress. This...

5CVSS6.8AI score0.12608EPSS
Exploits1References50
Debian CVE
Debian CVE
added 2012/06/29 12:0 a.m.35 views

CVE-2012-2098

Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream BZip2CompressorOutputStream in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service CPU consumption via a file with many repeating inputs...

5CVSS7.1AI score0.12608EPSS
Exploits1
OpenVAS
OpenVAS
added 2012/06/04 12:0 a.m.27 views

Fedora Update for apache-commons-compress FEDORA-2012-8465

Check for the Version of apache-commons-compress OpenVAS Vulnerability Test Fedora Update for apache-commons-compress FEDORA-2012-8465 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...

5CVSS6.6AI score0.12608EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2012/06/04 12:0 a.m.35 views

Fedora 17 : apache-commons-compress-1.4.1-1.fc17 (2012-8428)

Update to 1.4.1, fixing CVE-2012-2098 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

5CVSS7.2AI score0.12608EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2012/06/04 12:0 a.m.39 views

Fedora 16 : apache-commons-compress-1.4.1-1.fc16 (2012-8465)

Update to 1.4.1, fixing CVE-2012-2098 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...

5CVSS7.2AI score0.12608EPSS
Exploits1References3
Rows per page
Query Builder