Lucene search
K

226 matches found

CVE
CVE
added 2024/10/08 4:25 p.m.43 views

CVE-2024-9620

CVE-2024-9620 affects Red Hat Ansible Automation Platform’s Event-Driven Automation (EDA) component, where sensitive information is not encrypted. The issue allows an attacker with network access to sniff plaintext data transmitted between EDA and AAP, or with system access to read plaintext data...

5.3CVSS5.2AI score0.00153EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/10/08 4:25 p.m.16 views

CVE-2024-9620 Event-driven automation in ansible automation platform (aap): ansible event-driven automation (eda) lacks encryption

A flaw was found in Event-Driven Automation EDA in Ansible Automation Platform AAP, which lacks encryption of sensitive information. An attacker with network access could exploit this vulnerability by sniffing the plaintext data transmitted between the EDA and AAP. An attacker with system access...

5.3CVSS0.00153EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/10/08 1:27 a.m.11 views

CVE-2024-9620

A flaw was found in Event-Driven Automation EDA in Ansible Automation Platform AAP, which lacks encryption of sensitive information. An attacker with network access could exploit this vulnerability by sniffing the plaintext data transmitted between the EDA and AAP. An attacker with system access...

5.3CVSS6.5AI score0.00153EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/10/08 12:0 a.m.4 views

PT-2024-39723 · Red Hat · Ansible Automation Platform

Name of the Vulnerable Software and Affected Versions: Ansible Automation Platform AAP affected versions not specified Description: A flaw was found in Event-Driven Automation EDA in Ansible Automation Platform AAP, which lacks encryption of sensitive information. An attacker with network access...

5.3CVSS6.5AI score0.00153EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/09/30 12:50 a.m.21 views

Moderate: Red Hat Security Advisory: Custom Metrics Autoscaler Operator for Red Hat 2.14.1-467 OpenShift Update

Custom Metrics Autoscaler Operator for Red Hat OpenShift Security Update to fix Moderate CVE-2024-24791 The Custom Metrics Autoscaler Operator for Red Hat OpenShift is an optional operator based upon the Kubernetes Event Driven Autoscaler KEDA, which allows workloads to be scaled by using...

7.5CVSS6.8AI score0.01414EPSS
Exploits0References3
Akamai Blog
Akamai Blog
added 2024/08/06 1:0 p.m.11 views

What Is an Event-Driven Microservices Architecture?

...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.23 views

Fedora: Security Advisory (FEDORA-2024-8d548b8c96)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.7AI score0.01387EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.31 views

Fedora: Security Advisory (FEDORA-2024-e28ccc9c17)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.6AI score0.87211EPSS
Exploits1References12
RedHat Linux
RedHat Linux
added 2024/05/23 2:9 p.m.40 views

Low: Red Hat Security Advisory: Custom Metrics Autoscaler Operator for Red Hat OpenShift 2.12.1-394 Security Update

Custom Metrics Autoscaler Operator for Red Hat OpenShift including security updates. The following updates for the Custom Metric Autoscaler operator for Red Hat OpenShift are now available: custom-metrics-autoscaler-adapter-container custom-metrics-autoscaler-admission-webhooks-container...

7.5CVSS7AI score0.91969EPSS
Exploits1References1
OSV
OSV
added 2024/05/10 2:32 p.m.36 views

RLSA-2023:6551 Moderate: yajl security update

Yet Another JSON Library YAJL is a small event-driven SAX-style JSON parser written in ANSI C, and a small validating JSON generator. Security Fixes: yajl: Memory leak in yajltreeparse function CVE-2023-33460 For more details about the security issues, including the impact, a CVSS score,...

6.5CVSS6.9AI score0.01129EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2024/04/30 3:11 p.m.52 views

Moderate: Red Hat Security Advisory: yajl security update

An update for yajl is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

6.5CVSS6.6AI score0.01129EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2024/04/25 3:13 p.m.373 views

Moderate: Red Hat Security Advisory: yajl security update

An update for yajl is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

7.5CVSS6.8AI score0.03472EPSS
Exploits2References3
Fedora
Fedora
added 2024/04/20 1:3 a.m.30 views

[SECURITY] Fedora 39 Update: nodejs18-18.20.2-1.fc39

Node.js is a platform built on Chrome's JavaScript runtime \ for easily building fast, scalable network applications. \ Node.js uses an event-driven, non-blocking I/O model that \ makes it lightweight and efficient, perfect for data-intensive \ real-time applications that run across distributed...

8.1CVSS6.7AI score0.01387EPSS
Exploits0
Fedora
Fedora
added 2024/04/19 9:44 p.m.41 views

[SECURITY] Fedora 40 Update: nodejs18-18.20.2-1.fc40

Node.js is a platform built on Chrome's JavaScript runtime \ for easily building fast, scalable network applications. \ Node.js uses an event-driven, non-blocking I/O model that \ makes it lightweight and efficient, perfect for data-intensive \ real-time applications that run across distributed...

8.1CVSS7.3AI score0.01387EPSS
Exploits0
Fedora
Fedora
added 2024/04/19 9:44 p.m.56 views

[SECURITY] Fedora 40 Update: nodejs20-20.12.2-1.fc40

Node.js is a platform built on Chrome's JavaScript runtime \ for easily building fast, scalable network applications. \ Node.js uses an event-driven, non-blocking I/O model that \ makes it lightweight and efficient, perfect for data-intensive \ real-time applications that run across distributed...

8.2CVSS7.3AI score0.87211EPSS
Exploits1
OSV
OSV
added 2024/03/22 5:7 p.m.25 views

CVE-2024-29186 Slow String Operations via MultiPart Requests in Event-Driven Functions

Bref is an open-source project that helps users go serverless on Amazon Web Services with PHP. When Bref prior to version 2.1.17 is used with the Event-Driven Function runtime and the handler is a RequestHandlerInterface, then the Lambda event is converted to a PSR7 object. During the conversion...

5.3CVSS5.4AI score0.00669EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/03/22 5:7 p.m.15 views

CVE-2024-29186 Slow String Operations via MultiPart Requests in Event-Driven Functions

Bref is an open-source project that helps users go serverless on Amazon Web Services with PHP. When Bref prior to version 2.1.17 is used with the Event-Driven Function runtime and the handler is a RequestHandlerInterface, then the Lambda event is converted to a PSR7 object. During the conversion...

5.3CVSS5.2AI score0.00669EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/03/22 5:7 p.m.16 views

CVE-2024-29186 Slow String Operations via MultiPart Requests in Event-Driven Functions

Bref is an open-source project that helps users go serverless on Amazon Web Services with PHP. When Bref prior to version 2.1.17 is used with the Event-Driven Function runtime and the handler is a RequestHandlerInterface, then the Lambda event is converted to a PSR7 object. During the conversion...

5.3CVSS5.4AI score0.00669EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2024/03/22 4:57 p.m.25 views

Slow String Operations via MultiPart Requests in Event-Driven Functions

Impacted Resources bref/src/Event/Http/Psr7Bridge.php:94-125 multipart-parser/src/StreamedPart.php:383-418 Description When Bref is used with the Event-Driven Function runtime and the handler is a RequestHandlerInterface, then the Lambda event is converted to a PSR7 object. During the conversion...

5.3CVSS7AI score0.00669EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2024/03/22 4:57 p.m.18 views

GHSA-J4HQ-F63X-F39R Slow String Operations via MultiPart Requests in Event-Driven Functions

Impacted Resources bref/src/Event/Http/Psr7Bridge.php:94-125 multipart-parser/src/StreamedPart.php:383-418 Description When Bref is used with the Event-Driven Function runtime and the handler is a RequestHandlerInterface, then the Lambda event is converted to a PSR7 object. During the conversion...

5.3CVSS5.2AI score0.00669EPSS
Exploits1References4
Rows per page
Query Builder