Lucene search
K

65 matches found

Prion
Prion
added 2018/08/01 1:29 p.m.15 views

Design/Logic Flaw

A data modification vulnerability exists in Jenkins Agiletestware Pangolin Connector for TestRail Plugin 2.1 and earlier in GlobalConfig.java that allows attackers with Overall/Read permission to override this plugin's configuration by sending crafted HTTP requests to an unprotected endpoint...

4CVSS6.3AI score0.01019EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2018/08/01 1:0 p.m.67 views

CVE-2018-1999037

CVE-2018-1999037 affects Jenkins Resource Disposer Plugin up to version 0.11. The vulnerability is in AsyncResourceDisposer.java and allows an attacker to stop tracking a resource (data modification). Related advisories confirm an additional CSRF weakness in the API endpoint prior to version 0.12...

4.3CVSS4.4AI score0.00761EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2017/04/24 7:59 p.m.4 views

CVE-2017-3531

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware subcomponent: Servlet Runtime. Supported versions that are affected are 12.1.3.0, 12.2.1.0, 12.2.1.1 and 12.2.1.2. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to...

7.2CVSS5.8AI score0.01927EPSS
Exploits0References4
CNVD
CNVD
added 2016/10/20 12:0 a.m.1 views

Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2016-09916)

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in the Oracle...

8.2CVSS6.8AI score0.01867EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/09/06 12:0 a.m.71 views

Cisco IP Communicator Certificate Trust List Manipulation

The version of Cisco IP Communicator is 8.61. Such versions are potentially affected by a data modification vulnerability. By performing a Man-in-the-Middle attack, a remote, unauthenticated attacker could replace the original Certificate Trust List with a modified one. C Tenable Network Security...

5CVSS5.4AI score0.00519EPSS
Exploits0References2
Rows per page
Query Builder