CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2019/12/13 6:25 p.m.•1 views

MGASA-2019-0383 Updated openafs packages fix security vulnerabilities

Update to security-release 1.8.5, adresses: OPENAFS-SA-2019-001: Skip server OUT args on error OPENAFS-SA-2019-002: Zero all server RPC args OPENAFS-SA-2019-003: ubik: Avoid unlocked ubikcurrentTrans deref Update to official version 1.8.4: support Linux-kernel 5.3 Avoid non-dir ENOENT errors in...

7.2AI score

Exploits0References8

OSV•added 2019/12/01 9:13 a.m.•5 views

OPENSUSE-SU-2019:2599-1 Security update for phpMyAdmin

This update for phpMyAdmin fixes the following issues: phpMyAdmin was updated to 4.9.2: CVE-2019-18622: SQL injection in Designer feature boo1157614 Fixes for 'Failed to set session cookie' error Advisor with MySQL 8.0.3 and newer Fix PHP deprecation errors Fix a situation where exporting users...

9.8CVSS9.8AI score0.02579EPSS

Exploits0References3

Citrix•added 2019/11/26 12:0 a.m.•8 views

Citrix Provisioning Service Target Device compatibility with Hyper V Generation 2 Virtual Machines.

The following table shows which 64-bit and 32-bit versions of Windows you can use as a guest operating system for generation 1 and generation 2 virtual machines. 64-bit versions of Windows| Generation 1| Generation 2 ---|---|--- Windows Server 2019| ✔| ✔ Windows Server 2016| ✔| ✔ Windows Server...

7AI score

Tenable Nessus•added 2019/11/25 12:0 a.m.•27 views

Fedora 31 : mingw-libidn2 (2019-1ebb5c928e)

Libidn 2.3.0 released 2019-11-14 ================================== - Mitre has assigned CVE-2019-12290 which was fixed by the roundtrip feature introduced in 2.2.0 commit 241e8f48 - Update the data tables from Unicode 6.3.0 to Unicode 11.0 - Turn idn2punycodeencode, idn2punycodedecode into compa...

7.5CVSS6.9AI score0.0279EPSS

Tenable Nessus•added 2019/11/25 12:0 a.m.•58 views

Fedora 30 : mingw-libidn2 (2019-20e9736c97)

7.5CVSS6.9AI score0.0279EPSS

Tenable Nessus•added 2019/11/20 12:0 a.m.•35 views

Fedora 31 : libidn2 (2019-f454c7a118)

7.5CVSS6.9AI score0.0279EPSS

Microsoft KB•added 2019/11/18 12:0 a.m.•4 views

November 19, 2019—KB4525252 (Preview of Monthly Rollup)

November 19, 2019—KB4525252 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4525243released November 12, 2019 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Addresses ...

Microsoft KB•added 2019/11/18 12:0 a.m.•5 views

November 19, 2019—KB4525251 (Preview of Monthly Rollup)

November 19, 2019—KB4525251 Preview of Monthly Rollup IMPORTANT Verify that you have installed the required updates listed in the How to get this update section before installing this update. IMPORTANT Customers who have purchased the Extended Security Update ESU for on-premises versions of some...

OSV•added 2019/11/15 9:46 a.m.•4 views

SUSE-SU-2019:2982-1 Security update for enigmail

This update for enigmail fixes the following issues: - SeaMonkey is no longer supported. Update description and no longer put in SeaMonkey addons path bsc1151317 enigmail was updated 2.1.2: compatibility with Mozilla Thunderbird 68 New simplified setup wizard Full support for keys.openpgp.org...

7.1AI score

Exploits0References3

Fedora•added 2019/11/10 1:7 a.m.•36 views

[SECURITY] Fedora 29 Update: python2-2.7.17-1.fc29

Python 2 is an old version of the language that is incompatible with the 3.x line of releases. The language is mostly the same, but many details, especi ally how built-in objects like dictionaries and strings work, have changed considerably, and a lot of deprecated features have finally been...

7.5CVSS3.6AI score0.10911EPSS

Exploits2

Fedora•added 2019/11/09 10:39 p.m.•42 views

[SECURITY] Fedora 30 Update: python2-2.7.17-1.fc30

7.5CVSS3.6AI score0.05366EPSS

Exploits2

Microsoft KB•added 2019/11/05 12:0 a.m.•6 views

October 15, 2019—KB4519972 (Preview of Monthly Rollup)

October 15, 2019—KB4519972 Preview of Monthly Rollup IMPORTANT Verify that you have installed the required updates listed in the How to get this update section before installing this update. IMPORTANT Customers who have purchased the Extended Security Update ESU for on-premises versions of some...

Kitploit•added 2019/11/03 9:24 p.m.•123 views

Uptux - Linux Privilege Escalation Checks (Systemd, Dbus, Socket Fun, Etc)

Specialized privilege escalation checks for Linux systems. Implemented so far: Writable systemd paths, services, timers, and socket units Disassembles systemd unit files looking for: References to executables that are writable References to broken symlinks pointing to writeable directories Relati...

7.5AI score

Exploits0References1

Debian CVE•added 2019/11/01 10:15 p.m.•33 views

CVE-2019-6470

There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There was also a bug in dhcpd relating to the use of this function per its documentation, but the bug in the library function prevented this from causing any harm. All...

7.5CVSS6.8AI score0.08813EPSS

Exploits1

CISA•added 2019/10/30 12:0 a.m.•20 views

MS-ISAC Releases EOS Software Report List

The Multi-State Information Sharing and Analysis Center MS-ISAC has released an end-of-support EOS software report list. Software that has reached its EOS date no longer receives security updates and patches from the vendor and is, therefore, susceptible to exploitation from security...

Hacker One•added 2019/10/29 11:27 a.m.•16 views

Central Security Project: OS Command Injection in Nexus Repository Manager 2.x -- Bypass for Nexus Repository Manage 2.14.15-01 Command Injection fix

https://support.sonatype.com/hc/en-us/articles/360033490774 An OS command injection vulnerability has been discovered in Nexus Repository Manager requiring immediate action. The vulnerability allows for an attacker with administrative access to nxrm to execute arbitrary commands on the system. We...

0.8AI score