Lucene search
K

97 matches found

Tenable Nessus
Tenable Nessus
added 2024/01/12 12:0 a.m.35 views

Rocky Linux 8 : .NET 7.0 (RLSA-2024:0157)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:0157 advisory. - Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability CVE-2024-0056 - NET, .NET Framework, and...

9.8CVSS7.9AI score0.02868EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2024/01/11 12:0 a.m.34 views

.NET Core Multiple Vulnerabilities (KB5033733)

This host is missing an important security update according to Microsoft KB5033733. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS9.6AI score0.02895EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/01/11 12:0 a.m.29 views

.NET Core Multiple Vulnerabilities (KB5033741)

This host is missing an important security update according to Microsoft KB5033741. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS9.6AI score0.02868EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/01/10 6:38 p.m.5 views

dotnet: Information Disclosure: MD.SqlClient(MDS) & System.data.SQLClient (SDS)

A vulnerability was found in the .NET Framework. This vulnerability exists in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider where an attackercan perform an AiTM adversary-in-the-middle attack between the SQL client and the SQL server. This may allow the attacker to stea...

8.7CVSS5.8AI score0.0118EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/01/10 4:0 a.m.101 views

CVE-2024-0056

A vulnerability was found in the .NET Framework. This vulnerability exists in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider where an attackercan perform an AiTM adversary-in-the-middle attack between the SQL client and the SQL server. This may allow the attacker to stea...

8.7CVSS7.9AI score0.0118EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/01/10 12:0 a.m.39 views

RHEL 8 : .NET 7.0 (RHSA-2024:0157)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0157 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...

9.8CVSS7.8AI score0.02868EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/01/10 12:0 a.m.41 views

RHEL 9 : .NET 6.0 (RHSA-2024:0156)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0156 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...

9.8CVSS7.8AI score0.02868EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/01/10 12:0 a.m.35 views

RHEL 9 : .NET 7.0 (RHSA-2024:0151)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0151 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...

9.8CVSS7.8AI score0.02868EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/01/10 12:0 a.m.220 views

Security Updates for Microsoft .NET Framework (January 2024)

The Microsoft .NET Framework installation on the remote host is missing a security update. It is, therefore, affected by multiple vulnerabilities, as follows: - Denial of service vulnerability in Microsoft .NET Framework. CVE-2023-36042, CVE-2024-21312 - Security feature bypass in...

9.8CVSS7.9AI score0.03578EPSS
Exploits0References28
OSV
OSV
added 2024/01/09 6:30 p.m.51 views

GHSA-98G6-XH36-X2P7 Microsoft.Data.SqlClient and System.Data.SqlClient vulnerable to SQL Data Provider Security Feature Bypass

Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability...

8.7CVSS9.5AI score0.0118EPSS
Exploits0References3
OSV
OSV
added 2024/01/09 6:15 p.m.37 views

CVE-2024-0056

Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability...

8.7CVSS9.4AI score0.0118EPSS
Exploits0References1
NVD
NVD
added 2024/01/09 6:15 p.m.26 views

CVE-2024-0056

Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability...

8.7CVSS8.8AI score0.0118EPSS
Exploits0References1
Prion
Prion
added 2024/01/09 6:15 p.m.37 views

Security feature bypass

Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability...

4CVSS7.7AI score0.0118EPSS
Exploits0References1Affected Software6
AlpineLinux
AlpineLinux
added 2024/01/09 5:56 p.m.26 views

CVE-2024-0056

Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability...

8.7CVSS8.9AI score0.0118EPSS
Exploits0
Cvelist
Cvelist
added 2024/01/09 5:56 p.m.44 views

CVE-2024-0056 Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability

...

8.7CVSS9.5AI score0.0118EPSS
Exploits0References1
CVE
CVE
added 2024/01/09 5:56 p.m.654 views

CVE-2024-0056

CVE-2024-0056 affects Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider security feature bypass. CVSS v3.1 base score 8.7 (NETWORK, HIGH impact on confidentiality and integrity, no availability impact) per Microsoft, with CVSS v4 score 8.8 indicating high impact. Descriptions i...

8.7CVSS9.1AI score0.0118EPSS
Exploits0References1Affected Software4
Microsoft CVE
Microsoft CVE
added 2024/01/09 8:0 a.m.47 views

Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability

...

8.7CVSS7.1AI score0.0118EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/01/09 12:0 a.m.7 views

PT-2024-1053

Name of the Vulnerable Software and Affected Versions Microsoft.Data.SqlClient and System.Data.SqlClient affected versions not specified Description A security-feature bypass vulnerability in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider allows attackers to affect the...

9.8CVSS7.8AI score0.99999EPSS
Exploits19References215
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/12 4:57 p.m.41 views

Security Bulletin: IBM Tivoli Netcool Impact is vulnerable to remote code execution due to Apache ActiveMQ (CVE-2023-46604)

Summary Apache ActiveMQ is shipped with IBM Tivoli Netcool Impact as part of the data provider interface in the GUI server. Information about a security vulnerability affecting Apache ActiveMQ is provided in this security bulletin. Vulnerability Details CVEID:CVE-2023-46604 DESCRIPTION: Apache...

10CVSS9.8AI score0.99654EPSS
Exploits31Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/06/27 7:36 p.m.30 views

Security Bulletin: A vulnerability in the Oracle Data Provider may affect IBM Robotic Process Automation and result in an attacker gaining elevated privileges (CVE-2023-21893).

Summary Oracle Data Provider is used by IBM Robotic Process Automation as part of SQL Server database connectivity. CVE-2023-21893. Vulnerability Details CVEID:CVE-2023-21893 DESCRIPTION: Oracle Database Server could allow a remote attacker to gain elevated privileges on the system, caused by an...

7.5CVSS8AI score0.00594EPSS
Exploits0Affected Software1
Rows per page
Query Builder