Lucene search
K

688 matches found

CVE
CVE
added 2015/07/16 10:0 a.m.63 views

CVE-2015-4764

Technical details about CVE-2015-4764 are not publicly provided in the supplied documents; no concrete product/version/root-cause or remediation is stated. Monitor for updates.

6.9CVSS5.6AI score0.00413EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2015/07/16 10:0 a.m.24 views

CVE-2015-4775

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-2583, CVE-2015-2624,...

5.6AI score0.00413EPSS
Exploits0References1
Kitploit
Kitploit
added 2015/06/04 10:59 p.m.63 views

I2P - The Invisible Internet Project

I2P is an anonymous network, exposing a simple layer that applications can use to anonymously and securely send messages to each other. The network itself is strictly message based a la IP, but there is a library available to allow reliable streaming communication on top of it a la TCP. All...

7.4AI score
Exploits0
NVD
NVD
added 2015/02/01 2:59 a.m.19 views

CVE-2014-4632

VMware vSphere Data Protection VDP 5.1, 5.5 before 5.5.9, and 5.8 before 5.8.1 and the proxy client in EMC Avamar Data Store ADS and Avamar Virtual Edition AVE 6.x and 7.0.x do not properly verify X.509 certificates from vCenter Server SSL servers, which allows man-in-the-middle attackers to spoo...

4.3CVSS6.2AI score0.0062EPSS
Exploits0References4
Prion
Prion
added 2015/02/01 2:59 a.m.20 views

Design/Logic Flaw

VMware vSphere Data Protection VDP 5.1, 5.5 before 5.5.9, and 5.8 before 5.8.1 and the proxy client in EMC Avamar Data Store ADS and Avamar Virtual Edition AVE 6.x and 7.0.x do not properly verify X.509 certificates from vCenter Server SSL servers, which allows man-in-the-middle attackers to spoo...

4.3CVSS6.6AI score0.0062EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2014/10/25 10:55 a.m.25 views

CVE-2014-4624

EMC Avamar Data Store ADS and Avamar Virtual Edition AVE 6.x and 7.0.x through 7.0.2-43 do not require authentication for Java API calls, which allows remote attackers to discover grid MCUser and GSAN passwords via a crafted call...

5CVSS6.8AI score0.03337EPSS
Exploits0References11
Prion
Prion
added 2014/10/25 10:55 a.m.14 views

Default credentials

EMC Avamar 6.0.x, 6.1.x, and 7.0.x in Avamar Data Store ADS GEN4S and Avamar Virtual Edition AVE, when Password Hardening before 2.0.0.4 is enabled, uses UNIX DES crypt for password hashing, which makes it easier for context-dependent attackers to obtain cleartext passwords via a brute-force atta...

4.3CVSS7AI score0.01593EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2014/10/25 10:0 a.m.26 views

CVE-2014-4624

EMC Avamar Data Store ADS and Avamar Virtual Edition AVE 6.x and 7.0.x through 7.0.2-43 do not require authentication for Java API calls, which allows remote attackers to discover grid MCUser and GSAN passwords via a crafted call...

6.8AI score0.03337EPSS
Exploits0References11
CVE
CVE
added 2014/10/25 10:0 a.m.52 views

CVE-2014-4624

EMC Avamar Data Store (ADS) and Avamar Virtual Edition (AVE) 6.x and 7.0.x up to 7.0.2-43 expose MCUser and GSAN passwords via Java API calls without authentication (remote information disclosure). VMware vSphere Data Protection (VDP) 5.x also vulnerable via Java API access to retrieve credential...

5CVSS7AI score0.03337EPSS
Exploits0References11Affected Software4
CVE
CVE
added 2014/10/25 10:0 a.m.43 views

CVE-2014-4623

EMC Avamar ADS GEN4(S) and Avamar Virtual Edition (AVE) versions 6.0.x, 6.1.x, and 7.0.x are affected when the Password Hardening package is installed prior to 2.0.0.4. The issue stems from using UNIX DES crypt for password hashing, enabling context-dependent attackers to recover cleartext passwo...

4.3CVSS6.7AI score0.01593EPSS
Exploits0References5Affected Software1
Fedora
Fedora
added 2014/09/26 9:4 a.m.24 views

[SECURITY] Fedora 19 Update: python-oauth2-1.5.211-7.fc19

Oauth2 was originally forked from Leah Culver and Andy Smith's oauth.py code. Some of the tests come from a fork by Vic Fryzel, while a revamped Request class and more tests were merged in from Mark Paschal's fork. A number of notable differences exist between this code and its forefathers: - 100...

5.8CVSS6.6AI score0.0243EPSS
Exploits0
NVD
NVD
added 2013/07/19 2:36 p.m.28 views

CVE-2013-3275

EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly restrict use of FRAME elements, which makes it easier for remote attackers to obtain sensitive information via a crafted web site, related to "cross frame scripting vulnerabilitie...

4.3CVSS5.8AI score0.00806EPSS
Exploits0References1
NVD
NVD
added 2013/07/19 2:36 p.m.26 views

CVE-2013-3274

EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly determine authorization for calls to Java RMI methods, which allows remote authenticated users to execute arbitrary code via unspecified vectors...

9CVSS7.4AI score0.03101EPSS
Exploits0References1
Prion
Prion
added 2013/07/19 2:36 p.m.23 views

Authorization

EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly determine authorization for calls to Java RMI methods, which allows remote authenticated users to execute arbitrary code via unspecified vectors...

9CVSS7.9AI score0.03101EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2013/07/18 10:0 p.m.33 views

CVE-2013-3274

EMC Avamar Server and Avamar Virtual Edition before 7.0 on Data Store Gen3, Gen4, and Gen4s platforms do not properly determine authorization for calls to Java RMI methods, which allows remote authenticated users to execute arbitrary code via unspecified vectors...

7.4AI score0.03101EPSS
Exploits0References1
CVE
CVE
added 2013/07/18 10:0 p.m.48 views

CVE-2013-3274

EMC Avamar Server and Avamar Virtual Edition before version 7.0 on Data Store Gen3, Gen4, and Gen4s hardware are affected by CVE-2013-3274 due to improper authorization checks on Java RMI calls. This potentially allows remote authenticated users to execute arbitrary code via unspecified vectors. ...

9CVSS7.6AI score0.03101EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2013/07/18 10:0 p.m.54 views

CVE-2013-3275

EMC Avamar Server and Avamar Virtual Edition prior to v7.0 on Data Store Gen3, Gen4, or Gen4s platforms are affected by cross frame scripting vulnerabilities (CVE-2013-3275). The web interface does not properly restrict FRAME elements, which can allow a crafted remote site to monitor input and ex...

4.3CVSS6AI score0.00806EPSS
Exploits0References1Affected Software2
Mageia
Mageia
added 2013/06/19 10:13 a.m.43 views

Updated subversion packages fix security vulnerabilities

Subversion repositories with the FSFS repository data store format can be corrupted by newline characters in filenames. A remote attacker with a malicious client could use this flaw to disrupt the service for other users using that repository CVE-2013-1968. Subversion's svnserve server process ma...

7.8CVSS3.4AI score0.03894EPSS
Exploits0References4
securityvulns
securityvulns
added 2012/11/06 12:0 a.m.141 views

[CVE-2012-5777]EmpireCMS Template Parser Remote PHP Code Execution Vulnerability

Exploit Title : Answer my question wordpress plugin Multiple Cross-Site Scripting Vulnerabilities Author:Marcela Benetrix home:www.girlinthemiddle.net Date: 09/19/12 version: 1.1 software link:http://wordpress.org/extend/plugins/answer-my-question/ Answer my question plugin description This plugi...

0.02211EPSS
Exploits3
Veeam
Veeam
added 2011/07/20 12:0 a.m.68 views

Veeam vPower NFS Service fails to start

Challenge This article documents troubleshooting steps to be taken if the Veeam vPower NFS Service fails to start. Solution Check Port Usage Check if another process is locking one of ports used by the Veeam vPower NFS Service: 1. Open an Administrative PowerShell Prompt 2. Run the following...

7.1AI score
Exploits0Affected Software1
Rows per page
Query Builder