CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

325 matches found

CNNVD•added 2024/08/13 12:0 a.m.•1 views

Fortinet FortiOS 访问控制错误漏洞

Fortinet FortiOS is a set of security operating system dedicated to FortiGate network security platform from American Fita Fortinet. The system provides users with firewall, antivirus, IPSec/SSLVPN, Web content filtering and anti-spam and other security features. An access control error...

5.5CVSS6.7AI score0.00019EPSS

Exploits0References3

The Hacker News•added 2024/05/21 10:30 a.m.•14 views

Achieve Security Compliance with Wazuh File Integrity Monitoring

File Integrity Monitoring FIM is an IT security control that monitors and detects file changes in computer systems. It helps organizations audit important files and system configurations by routinely scanning and verifying their integrity. Most information security standards mandate the use of FI...

6.7AI score

Exploits0

Qualys Blog•added 2024/05/17 11:45 p.m.•22 views

Qualys Enterprise TruRisk™ Platform Extends FIM with Real-Time Monitoring of Unauthorized Access to Sensitive Data and Configuration Change Detection on Network Devices

Introducing FIM 4.0 with File Access Monitoring FAM and Agentless FIM to ensure compliance with the new PCI 4.0 File Integrity Monitoring FIM solutions are essential for virtually any organization to help identify suspicious activities across critical system files and registries, diagnose changes...

7.3AI score

Exploits0

Qualys Blog•added 2024/05/02 5:35 p.m.•16 views

Agentless FIM for Detecting Network Configuration Changes

Dealing with multiple network administrators making frequent configuration changes with a monitoring solution that provides insights into device change without causing resource constraints. The performance and capabilities of a network device are entirely dependent upon its configuration settings...

7.2AI score

Exploits0

Cvelist•added 2024/05/02 1:11 p.m.•13 views

CVE-2024-23462 ZCC Mac validinstaller file integrity check missing

An Improper Validation of Integrity Check Value vulnerability in Zscaler Client Connector on MacOS allows a denial of service of the Client Connector binary and thus removing client functionality.This issue affects Client Connector on MacOS: before 3.4...

3.3CVSS4.5AI score0.00094EPSS

Exploits0References1

Vulnrichment•added 2024/05/02 1:11 p.m.•9 views

CVE-2024-23462 ZCC Mac validinstaller file integrity check missing

3.3CVSS7AI score0.00094EPSS

Exploits0References1

Qualys Blog•added 2024/04/15 5:37 p.m.•23 views

Navigating the EU NIS2 Directive

How Qualys Cybersecurity Solutions Ensure Compliance The European Union’s revised Network and Information Security NIS2 Directive is a comprehensive cybersecurity regulation aimed at bolstering the resilience of critical entities and essential services across the EU. As organizations grapple with...

7.6AI score

Exploits0

Vulnrichment•added 2024/04/09 5:19 p.m.•12 views

CVE-2024-31454 PsiTransfer file integrity violation vulnerability

PsiTransfer is an open source, self-hosted file sharing solution. Prior to version 2.2.0, the absence of restrictions on the endpoint, which is designed for uploading files, allows an attacker who received the id of a file distribution to change the files that are in this distribution. The...

6.5CVSS7.2AI score0.00186EPSS

Exploits0References2

Cvelist•added 2024/04/09 5:19 p.m.•19 views

CVE-2024-31454 PsiTransfer file integrity violation vulnerability

6.5CVSS6.7AI score0.00186EPSS

Exploits0References2

OSV•added 2024/03/06 11:11 a.m.•14 views

BIT-GITLAB-2023-1178

An issue has been discovered in GitLab CE/EE affecting all versions from 8.6 before 15.9.6, all versions starting from 15.10 before 15.10.5, all versions starting from 15.11 before 15.11.1. File integrity may be compromised when source code or installation packages are pulled from a tag or from a...

5.7CVSS5.6AI score0.09198EPSS

Exploits0References4

OSV•added 2024/03/06 10:56 a.m.•21 views

BIT-GITLAB-2023-5512 Improper Control of Generation of Code ('Code Injection') in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 16.3 before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. File integrity may be compromised when specific HTML encoding is used for file names leading for incorrect...

5.7CVSS5.2AI score0.00296EPSS

Exploits0References3

OSV•added 2024/03/06 10:55 a.m.•16 views

BIT-GITLAB-2023-6051 Improper Control of Generation of Code ('Code Injection') in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. File integrity may be compromised when source code or installation packages are pulled from a specific tag...

6.5CVSS5.9AI score0.00194EPSS

Exploits0References3

BDU FSTEC•added 2024/01/25 12:0 a.m.•1 views

The vulnerability of the AppleMobileFileIntegrity component in the Safari browser and operating systems macOS, iOS, iPadOS, allows attackers to disclose protected information.

The vulnerability of AppleMobileFileIntegrity in the Safari browser and operating systems macOS, iOS, iPadOS is related to permission handling errors. Exploiting this vulnerability can allow attackers to disclose sensitive information...

5.5CVSS5.8AI score0.00066EPSS

Exploits0References4Affected Software4