Lucene search
K

116 matches found

CNNVD
CNNVD
added 2021/09/21 12:0 a.m.5 views

Dell Vnx2 Oe For File 日志信息泄露漏洞

Dell Vnx2 Oe For File is an operating environment from Dell, Inc. A sensitive information vulnerability exists in Dell VNX2 OE for File versions 8.1.21.266 and earlier, which stems from an application exporting too much data. An attacker could use this vulnerability to obtain log information...

7.8CVSS7.4AI score0.00242EPSS
Exploits0References4
CNVD
CNVD
added 2021/06/29 12:0 a.m.39 views

Linux kernel information disclosure vulnerability (CNVD-2021-60526)

Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux kernel is vulnerable due to an excessive amount of data output in the Linux kernel functions, which allows user-state applications to read the contents of a sigpage, thereby leaking the contents o...

4CVSS2AI score0.00529EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/06/25 12:0 a.m.2 views

Linux kernel安全漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system, Linux. Linux kernel is vulnerable due to an excessive amount of data output in the Linux kernel functions, which allows user-state applications to read the contents of a sigpage, thereby leaking the contents o...

4CVSS5.1AI score0.00529EPSS
Exploits1References22
CNNVD
CNNVD
added 2021/05/17 12:0 a.m.6 views

Moodle 信息泄露漏洞

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment. Moodle suffers from an information disclosure vulnerability that stems from the application exporting too much data. A remote attacker...

5.3CVSS6.8AI score0.00993EPSS
Exploits0References4
OSV
OSV
added 2021/04/30 10:15 p.m.4 views

CVE-2020-28944

OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or with a large amount of data...

7.5CVSS5.8AI score0.0157EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/03/11 12:0 a.m.56 views

Security Update for Microsoft Power BI Report Server (March 2021)

An information disclosure vulnerability exists in Microsoft Power BI Report Server due to excessive data output by the application in Microsoft Power BI. An authenticated, remote attacker can exploit this, to disclose potentially sensitive information. Note that Nessus has not tested for this iss...

7.7CVSS7.4AI score0.02839EPSS
Exploits0References2
CNNVD
CNNVD
added 2020/11/25 12:0 a.m.7 views

WESEEK GROWI Information Disclosure Vulnerability

Weseek WESEEK GROWI is a suite of team collaboration software from WESEEK Weseek Japan. An information disclosure vulnerability exists in GROWI versions 4.0.0 through 4.1.3, which stems from the application exporting too much data. The vulnerability allows a remote attacker to access potentially...

7.5CVSS6.8AI score0.0177EPSS
Exploits0References5
Veracode
Veracode
added 2019/09/04 12:21 p.m.53 views

Denial Of Service (DoS) Via Settings Flood

github.com/grpc/grpc-go is vulnerable to denial of service DoS attacks. The attack can be triggered by sending a flood of settings by a HTTP/2 peer, leading to an excessive data queue and causing high CPU and resource consumption...

7.5CVSS2.2AI score0.87806EPSS
Exploits0References47Affected Software31
UbuntuCve
UbuntuCve
added 2019/06/27 5:15 p.m.22 views

CVE-2019-5839

Excessive data validation in URL parser in Google Chrome prior to 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL...

4.3CVSS6.8AI score0.01275EPSS
Exploits0References1
Prion
Prion
added 2019/06/27 5:15 p.m.15 views

Authentication flaw

Excessive data validation in URL parser in Google Chrome prior to 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL...

4.3CVSS5AI score0.01275EPSS
Exploits0References9Affected Software5
Cvelist
Cvelist
added 2019/06/27 4:13 p.m.22 views

CVE-2019-5839

Excessive data validation in URL parser in Google Chrome prior to 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL...

5.2AI score0.01275EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2019/06/27 4:13 p.m.24 views

CVE-2019-5839

Excessive data validation in URL parser in Google Chrome prior to 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL...

4.3CVSS6.1AI score0.01275EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2019/06/07 11:51 a.m.22 views

CVE-2019-5839

Excessive data validation in URL parser in Google Chrome prior to 75.0.3770.80 allowed a remote attacker who convinced a user to input a URL to bypass website URL validation via a crafted URL...

4.3CVSS5.3AI score0.01275EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2015/03/29 11:49 p.m.15 views

Your Location has been Shared 5,398 Times in Last 14 Days

Do you realize how often your smartphone is sharing your location data with various companies? It is more than 5000 times in just two weeks. That is little Shocking but True! A recent study by the security researchers from Carnegie Mellon reveals that a number of smartphone applications collect...

6.7AI score
Exploits0
The Hacker News
The Hacker News
added 2014/11/28 11:59 p.m.16 views

Uber’s Android app is Literally Malware?

The popular ride-sharing service Uber has been hit by various controversies lately, but now the things gone even worse for the company when a security researcher made a worrying discovery this week and claims, "Uber’s app is literally malware." The ride-hailing company is in disputes of handling...

6.5AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

CesarFTP 0.99 g Remote CWD Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7950/info A vulnerability has been reported for CesarFTP. Reportedly, an attacker may crash a target server by supplying excessive data as the argument to the 'CWD' command. This may result in the server hanging,...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

Crackalaka IRC Server 1.0.8 - Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10092/info It has been reported that Crackalaka may be prone to a remote denial of service vulnerability that may allow an attacker to crash the server by sending an excessive amount of data. Crackalaka version 1.0.8 is...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

EvolutionX Multiple Remote Buffer Overflow Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/9631/info The FTP server that is distributed with EvolutionX has been reported prone to multiple buffer overflow vulnerabilities. The first of these vulnerabilities exists post-authentication, and is due to a lack of...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

GoodTech Telnet Server 4.0 - Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9337/info GoodTech Telnet Server is reportedly prone to a denial of service vulnerability. This condition occurs prior to authentication when excessive data is received by the server. Exploitation could result in memory...

7.1AI score
Exploits0
CVE
CVE
added 2014/05/30 11:0 p.m.61 views

CVE-2014-2342

Triangle MicroWorks SCADA Data Gateway vulnerable to DoS via crafted DNP3 packets. Affected: versions before 3.00.0635. Root cause: incorrect input validation leading to uncontrolled resource consumption (IP-connected DoS; serial connections also impacted with physical access). Impact: denial of ...

5CVSS6.7AI score0.01791EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder