dotCMS < 3.3.1 Multiple SQLi Vulnerabilities - Active Check

dotCMS is prone to multiple SQL injection SQLi vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:dotcms:dotcms"; i...

Docker Engine is vulnerable

Docker Engine is a set of lightweight runtime environments and package management tools from Docker, Inc. A security vulnerability exists in Docker Engine version 1.12.2, which stems from an enabled environment condition configured with the wrong condition policy. An attacker can exploit the...

kernel: out of bounds reads when processing IPT_SO_SET_REPLACE setsockopt

An out-of-bounds heap memory access leading to a Denial of Service, heap disclosure, or further impact was found in setsockopt. The function call is normally restricted to root, however some processes with capsysadmin may also be able to trigger this flaw in privileged container environments...

kernel: out of bounds reads when processing IPT_SO_SET_REPLACE setsockopt

An out-of-bounds heap memory access leading to a Denial of Service, heap disclosure, or further impact was found in setsockopt. The function call is normally restricted to root, however some processes with capsysadmin may also be able to trigger this flaw in privileged container environments...

kernel: out of bounds reads when processing IPT_SO_SET_REPLACE setsockopt

An out-of-bounds heap memory access leading to a Denial of Service, heap disclosure, or further impact was found in setsockopt. The function call is normally restricted to root, however some processes with capsysadmin may also be able to trigger this flaw in privileged container environments...

CVE-2016-6349

The machinectl command in oci-register-machine allows local users to list running containers and possibly obtain sensitive information by running that command...

The vulnerability of the Oracle Fusion Middleware software platform allows a malicious actor to inject arbitrary data into the context of a vulnerable application.

The vulnerability of the Oracle Containers component for the J2EE software platform, Oracle Fusion Middleware, is related to an error that occurs due to insufficient checking of values in HTTP headers. Exploiting this vulnerability allows a malicious actor to generate a forged HTTP response and...

Code injection

LXD before 2.0.2 uses world-readable permissions for /var/lib/lxd/zfs.img when setting up a loop based ZFS pool, which allows local users to copy and read data from arbitrary containers via unspecified vectors...

CVE-2016-1581

LXD before 2.0.2 uses world-readable permissions for /var/lib/lxd/zfs.img when setting up a loop based ZFS pool, which allows local users to copy and read data from arbitrary containers via unspecified vectors...

UBUNTU-CVE-2016-3697

libcontainer/user/user.go in runC before 0.1.0, as used in Docker before 1.11.2, improperly treats a numeric UID as a potential username, which allows local users to gain privileges via a numeric username in the password file in a container...

UBUNTU-CVE-2016-1581

LXD before 2.0.2 uses world-readable permissions for /var/lib/lxd/zfs.img when setting up a loop based ZFS pool, which allows local users to copy and read data from arbitrary containers via unspecified vectors...

Linux Kernel (Ubuntu 16.04) - Reference Count Overflow Using BPF Maps

Exploit for linux platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=809 Most things in the kernel use 32-bit reference counters, relying on the fact that the memory constraints of real computers make it impossible to create enough references to...

Heuristics File System Secret Search: blueflower

blueflower is a command-line tool that looks for secrets such as private keys or passwords in a file structure. Interesting files are detected using heuristics on their names and on their content. Unlike some forensics tools, blueflower does not search in RAM, and does not attempt to identify...

TripleO Heat templates Information Disclosure Vulnerability

TripleO Heat templates tripleo-heat-templates is a set of tools for describing samples of multi-host infrastructure. An information disclosure vulnerability exists in TripleO Heat templates tripleo-heat-templates, which can be exploited by a remote attacker to obtain sensitive information in...

Information disclosure

The TripleO Heat templates tripleo-heat-templates do not properly order the Identity Service keystone before the OpenStack Object Storage Swift staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive...

CVE-2015-5271

The TripleO Heat templates tripleo-heat-templates do not properly order the Identity Service keystone before the OpenStack Object Storage Swift staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive...

PYSEC-2016-34

The TripleO Heat templates tripleo-heat-templates do not properly order the Identity Service keystone before the OpenStack Object Storage Swift staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive...

PYSEC-2016-34

The TripleO Heat templates tripleo-heat-templates do not properly order the Identity Service keystone before the OpenStack Object Storage Swift staticweb middleware in the swiftproxy pipeline when the staticweb middleware is enabled, which might allow remote attackers to obtain sensitive...

PT-2016-3678 · Openstack · Tripleo-Heat-Templates

Name of the Vulnerable Software and Affected Versions: tripleo-heat-templates affected versions not specified Description: The issue is related to the improper ordering of the Identity Service keystone before the OpenStack Object Storage Swift staticweb middleware in the swiftproxy pipeline when...

Linux Kernel 3.103.18 4.4 - Netfilter IPT_SO_SET_REPLACE Memory Corruption

Linux Kernel 3.103.18 4.4 - Netfilter IPTSOSETREPLACE Memory Corruption Source: https://code.google.com/p/google-security-research/issues/detail?id=758 A memory corruption vulnerability exists in the IPTSOSETREPLACE ioctl in the netfilter code for iptables support. This ioctl is can be triggered ...