Lucene search
K

123 matches found

Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.50 views

NewStart CGSL MAIN 6.02 : mariadb-connector-c Multiple Vulnerabilities (NS-SA-2021-0090)

The remote NewStart CGSL host, running version MAIN 6.02, has mariadb-connector-c packages installed that are affected by multiple vulnerabilities: - Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.47 and prior, 5.7.29 and...

8.8CVSS5.9AI score0.03485EPSS
Exploits0References6
Veracode
Veracode
added 2021/02/03 7:38 a.m.31 views

Information Disclosure

webkitgtk4 is vulnerable to information disclosure. A validation issue was addressed with improved logic. Processing maliciously crafted web content may result in the disclosure of process memory...

6.5CVSS1.5AI score0.01304EPSS
Exploits0References9Affected Software1
CNVD
CNVD
added 2020/12/22 12:0 a.m.8 views

HCL iNotes Tag Phishing Vulnerability

HCL iNotes is a browsing client for accessing HCLDomino mail, contacts, calendar, scheduling and collaboration features. A label phishing vulnerability exists in HCL iNotes. The vulnerability stems from improper validation of email content. A remote, unauthenticated attacker could exploit the...

6.5CVSS6.7AI score0.0125EPSS
Exploits0References1
CNNVD
CNNVD
added 2020/12/21 12:0 a.m.8 views

Hcl Technologies Inotes 安全漏洞

HCL iNotes is a browsing client for accessing HCLDomino mail, contacts, calendar, scheduling and collaboration features. A label phishing vulnerability exists in HCL iNotes. The vulnerability stems from improper validation of email content. A remote, unauthenticated attacker could exploit the...

6.5CVSS6.6AI score0.0125EPSS
Exploits0References3
OSV
OSV
added 2020/12/15 4:3 p.m.38 views

ALSA-2020:5500 Important: mariadb:10.3 security, bug fix, and enhancement update

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a later upstream version: mariadb 10.3.27, galera 25.3.31. BZ1899082, BZ1899086 Security Fixes: mariadb: Insufficient SST method name check leading to cod...

9CVSS7.6AI score0.05539EPSS
Exploits0References18
OSV
OSV
added 2020/05/20 7:15 p.m.26 views

CVE-2020-13249

libmariadb/mariadblib.c in MariaDB Connector/C before 3.1.8 does not properly validate the content of an OK packet received from a server. NOTE: although mariadblib.c was originally based on code shipped for MySQL, this issue does not affect any MySQL components supported by Oracle...

8.8CVSS2.9AI score
Exploits0References6
AlpineLinux
AlpineLinux
added 2020/05/20 6:48 p.m.67 views

CVE-2020-13249

libmariadb/mariadblib.c in MariaDB Connector/C before 3.1.8 does not properly validate the content of an OK packet received from a server. NOTE: although mariadblib.c was originally based on code shipped for MySQL, this issue does not affect any MySQL components supported by Oracle...

8.8CVSS8.9AI score0.02779EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/03/30 12:0 a.m.42 views

Drupal 5.x < 5.11 / 6.x < 6.5 Multiple Vulnerabilities (SA-2008-060)

The version of Drupal running on the remote web server is 5.x prior to 5.11 or 6.x prior to 6.5. It is, therefore, affected by the following vulnerabilities: - The validation functionality in the core upload module in Drupal 6.x before 6.5 allows remote, authenticated users to bypass intended...

7.5CVSS5.7AI score0.02207EPSS
Exploits0References8
ThreatPost
ThreatPost
added 2020/03/18 6:0 p.m.50 views

Trend Micro Fixes Critical Flaws Under Attack

Trend Micro has released security updates patching five vulnerabilities in its endpoint security solutions, Apex One and OfficeScan XG for Windows. Specifically, Apex One 2019 and OfficeScan XG SP1 and XG are affected by four critical-severity and one high-severity flaws. Two of these...

10CVSS1.2AI score0.25125EPSS
Exploits0References6
OSV
OSV
added 2020/03/18 1:15 a.m.2 views

CVE-2020-8468

Trend Micro Apex One 2019, OfficeScan XG and Worry-Free Business Security 9.0, 9.5, 10.0 agents are affected by a content validation escape vulnerability which could allow an attacker to manipulate certain agent client components. An attempted attack requires user authentication...

8.8CVSS7.3AI score0.05754EPSS
Exploits0References5
NVD
NVD
added 2020/03/18 1:15 a.m.18 views

CVE-2020-8468

Trend Micro Apex One 2019, OfficeScan XG and Worry-Free Business Security 9.0, 9.5, 10.0 agents are affected by a content validation escape vulnerability which could allow an attacker to manipulate certain agent client components. An attempted attack requires user authentication...

8.8CVSS8.6AI score0.05754EPSS
Exploits0References5
Prion
Prion
added 2020/03/18 1:15 a.m.16 views

Design/Logic Flaw

Trend Micro Apex One 2019, OfficeScan XG and Worry-Free Business Security 9.0, 9.5, 10.0 agents are affected by a content validation escape vulnerability which could allow an attacker to manipulate certain agent client components. An attempted attack requires user authentication...

6.5CVSS8.5AI score0.05754EPSS
Exploits0References4Affected Software3
CVE
CVE
added 2020/03/18 12:30 a.m.922 views

CVE-2020-8468

CVE-2020-8468 affects Trend Micro Apex One (2019), OfficeScan XG and Worry‑Free Business Security agents. Described as a content validation escape vulnerability that could allow an attacker to manipulate agent client components; an attack requires user authentication. The connected documents prov...

8.8CVSS8.9AI score0.05754EPSS
In wildExploits0References5Affected Software3
Cvelist
Cvelist
added 2020/03/18 12:30 a.m.25 views

CVE-2020-8468

Trend Micro Apex One 2019, OfficeScan XG and Worry-Free Business Security 9.0, 9.5, 10.0 agents are affected by a content validation escape vulnerability which could allow an attacker to manipulate certain agent client components. An attempted attack requires user authentication...

8.9AI score0.05754EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2020/03/18 12:30 a.m.7 views

CVE-2020-8468

Trend Micro Apex One 2019, OfficeScan XG and Worry-Free Business Security 9.0, 9.5, 10.0 agents are affected by a content validation escape vulnerability which could allow an attacker to manipulate certain agent client components. An attempted attack requires user authentication...

8.6AI score0.05754EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2020/03/18 12:0 a.m.26 views

CVE-2020-8468

Trend Micro Apex One 2019, OfficeScan XG and Worry-Free Business Security 9.0, 9.5, 10.0 agents are affected by a content validation escape vulnerability which could allow an attacker to manipulate certain agent client components. An attempted attack requires user authentication. Recent...

10CVSS8.3AI score0.1324EPSS
In wildExploits0References6
Tenable Nessus
Tenable Nessus
added 2020/03/18 12:0 a.m.52 views

Trend Micro OfficeScan Multiple Vulnerabilities (000245571)

According to its self-reported version, the Trend Micro OfficeScan application running on the remote host is prior to 12.0 CP 5474 XG SP1 or 12.0 CP 1988 XG. It is, therefore, affected by multiple vulnerabilities. - A remote code execution vulnerability exists due to a unsecured dll. An...

10CVSS9.2AI score0.1324EPSS
Exploits0References6
VulnCheck KEV
VulnCheck KEV
added 2020/03/16 12:0 a.m.4 views

VulnCheck KEV: CVE-2020-8468

Trend Micro Apex One, OfficeScan, and Worry-Free Business Security agents contain a content validation escape vulnerability that could allow an attacker to manipulate certain agent client components...

8.8CVSS7.3AI score0.05754EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2020/03/16 12:0 a.m.3 views

PT-2020-1850 · Trend Micro · Trend Micro Officescan Xg +2

Name of the Vulnerable Software and Affected Versions: Trend Micro Apex One version 2019 Trend Micro OfficeScan XG versions 9.0 through 10.0 Trend Micro Worry-Free Business Security versions 9.0 through 10.0 Description: A content validation escape vulnerability exists in the affected products,...

9CVSS9.5AI score0.05754EPSS
Exploits0References13
GithubExploit
GithubExploit
added 2019/12/08 10:44 a.m.162 views

Exploit for Unrestricted Upload of File with Dangerous Type in Verot_Project Verot

CVE-2019-19634 - class.upload.php = 2.0.4 Arbitrary file uplo...

9.8CVSS9.9AI score0.26184EPSS
Exploits9
Rows per page
Query Builder