Lucene search
K

545 matches found

Tenable Nessus
Tenable Nessus
added 2019/12/12 12:0 a.m.31 views

openSUSE Security Update : dnsmasq (openSUSE-2019-2669)

This update for dnsmasq fixes the following issues : Security issues fixed: - CVE-2019-14834: Fixed a memory leak which could have allowed to remote attackers to cause denial of service via DHCP response creation bsc1154849 - CVE-2017-15107: Fixed a vulnerability in DNSSEC implementation...

7.5CVSS5.5AI score0.02697EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2019/12/06 12:0 a.m.28 views

SUSE SLED15 / SLES15 Security Update : dnsmasq (SUSE-SU-2019:3188-1)

This update for dnsmasq fixes the following issues : Security issues fixed : CVE-2019-14834: Fixed a memory leak which could have allowed to remote attackers to cause denial of service via DHCP response creation bsc1154849 CVE-2017-15107: Fixed a vulnerability in DNSSEC implementation. Processing...

7.5CVSS5.5AI score0.02697EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2019/12/06 12:0 a.m.32 views

SUSE SLED15 / SLES15 Security Update : dnsmasq (SUSE-SU-2019:3189-1)

This update for dnsmasq fixes the following issues : Security issues fixed : CVE-2019-14834: Fixed a memory leak which could have allowed to remote attackers to cause denial of service via DHCP response creation bsc1154849 CVE-2017-15107: Fixed a vulnerability in DNSSEC implementation. Processing...

7.5CVSS5.5AI score0.02697EPSS
Exploits0References10
OSV
OSV
added 2019/12/05 10:45 a.m.7 views

SUSE-SU-2019:3188-1 Security update for dnsmasq

This update for dnsmasq fixes the following issues: Security issues fixed: - CVE-2019-14834: Fixed a memory leak which could have allowed to remote attackers to cause denial of service via DHCP response creation bsc1154849 - CVE-2017-15107: Fixed a vulnerability in DNSSEC implementation. Processi...

7.5CVSS5.8AI score0.02697EPSS
Exploits0References8
Prion
Prion
added 2019/11/21 3:15 p.m.14 views

Design/Logic Flaw

Jenkins Anchore Container Image Scanner Plugin 1.0.19 and earlier stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

4CVSS6.4AI score0.00852EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/11/21 2:11 p.m.19 views

CVE-2019-16544

Jenkins QMetry for JIRA - Test Management Plugin 1.12 and earlier stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

8.8AI score0.00833EPSS
Exploits0References2
Fortinet
Fortinet
added 2019/11/14 12:0 a.m.27 views

Protect

Improper permission or value checking in the CLI console may allow a non-privileged user to obtain plaint text private keys of system's builtin local certificates via unsetting the keys encryption password or for user uploaded local certificates via setting an empty password. Note that backed up...

2.1CVSS5.3AI score0.00189EPSS
Exploits0Affected Software2
OSV
OSV
added 2019/10/28 1:15 p.m.2 views

CVE-2019-14927

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. An unauthenticated remote configuration download vulnerability allows an attacker to download the smartRTU's configuration file which contains data such as usernames,...

7.5CVSS7.2AI score0.41847EPSS
Exploits3References2
NVD
NVD
added 2019/10/16 2:15 p.m.28 views

CVE-2019-10443

Jenkins iceScrum Plugin 1.1.4 and earlier stored credentials unencrypted in job config.xml files on the Jenkins master where they could be viewed by users with Extended Read permission, or access to the master file system...

8.8CVSS8.6AI score0.01634EPSS
Exploits0References3
Prion
Prion
added 2019/10/16 2:15 p.m.14 views

Design/Logic Flaw

Jenkins View26 Test-Reporting Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

4CVSS4.5AI score0.00469EPSS
Exploits0References1Affected Software1
Metasploit
Metasploit
added 2019/10/16 4:45 a.m.29 views

Gather GRUB Password

This module gathers GRUB passwords from GRUB bootloader config files. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Gather GRUB Password', 'Description' = %q This module gathers GRUB password...

Exploits0
Positive Technologies
Positive Technologies
added 2019/10/16 12:0 a.m.5 views

PT-2019-11834 · Jenkins · Jenkins Neoload Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins NeoLoad Plugin versions 2.2.5 and earlier Description: The issue concerns the storage of credentials in an unencrypted manner within the global configuration file and job config.xml files on the Jenkins master. This allows users with...

8.8CVSS8.5AI score0.01486EPSS
Exploits0References8
NVD
NVD
added 2019/10/01 2:15 p.m.29 views

CVE-2019-10433

Jenkins Dingding钉钉 Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

3.3CVSS3.8AI score0.00409EPSS
Exploits0References3
Prion
Prion
added 2019/09/25 4:15 p.m.13 views

Design/Logic Flaw

Jenkins Google Calendar Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

4CVSS6.4AI score0.01001EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2019/09/25 4:15 p.m.12 views

Design/Logic Flaw

Jenkins Call Remote Job Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system...

4CVSS6.5AI score0.01001EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2019/09/25 4:15 p.m.17 views

Design/Logic Flaw

Jenkins Git Changelog Plugin 2.17 and earlier stored credentials unencrypted in job config.xml files on the Jenkins master where they could be viewed by users with Extended Read permission, or access to the master file system...

3.5CVSS6.3AI score0.01038EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2019/09/25 12:0 a.m.4 views

PT-2019-11810 · Jenkins · Jenkins Violation Comments To Gitlab Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Violation Comments to GitLab Plugin version 2.28 and earlier Description: The issue concerns the storage of credentials in an unencrypted manner. Specifically, the Violation Comments to GitLab Plugin stored API tokens unencrypted in j...

6.5CVSS6.2AI score0.01068EPSS
Exploits0References6
Prion
Prion
added 2019/09/23 3:15 p.m.25 views

Directory traversal

Within Sahi Pro 8.0.0, an attacker can send a specially crafted URL to include any victim files on the system via the script parameter on the Scriptview page. This will result in file disclosure i.e., being able to pull any file from the remote victim application. This can be used to steal and...

5CVSS7.3AI score0.2723EPSS
Exploits6References2Affected Software1
Kitploit
Kitploit
added 2019/09/07 1:0 p.m.250 views

BlackArch Linux v2019.09.01 - Penetration Testing Distribution

BlackArch Linux is an Arch Linux-based distribution for penetration testers and security researchers. The repository contains 2336 tools. You can install tools individually or in groups. BlackArch Linux is compatible with existing Arch installs. ChangeLog: added more than 150 new tools added...

7.4AI score
Exploits0
Fedora
Fedora
added 2019/08/14 1:6 a.m.30 views

[SECURITY] Fedora 30 Update: kde-settings-30.3-1.fc30

Config files for kde...

7.8CVSS1.6AI score0.04069EPSS
Exploits1
Rows per page
Query Builder