Lucene search
K

6887 matches found

OpenVAS
OpenVAS
added 2020/01/29 12:0 a.m.35 views

Apple Mac OS X Security Update (HT210919 - 02)

Apple Mac OS X is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

10CVSS7.6AI score0.03243EPSS
Exploits0References1
OSV
OSV
added 2020/01/28 5:15 p.m.7 views

CVE-2015-7851

Directory traversal vulnerability in the saveconfig function in ntpd in ntpcontrol.c in NTP before 4.2.8p4, when used on systems that do not use '' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite arbitrary files...

6.5CVSS9.1AI score
Exploits0References4
OSV
OSV
added 2020/01/28 5:15 p.m.1 views

DEBIAN-CVE-2015-7851

Directory traversal vulnerability in the saveconfig function in ntpd in ntpcontrol.c in NTP before 4.2.8p4, when used on systems that do not use '' or '/' characters for directory separation such as OpenVMS, allows remote authenticated users to overwrite arbitrary files...

6.5CVSS7.2AI score0.03942EPSS
Exploits1References1
OSV
OSV
added 2020/01/28 3:15 p.m.7 views

CVE-2012-6114

The git-changelog utility in git-extras 1.7.0 allows local users to overwrite arbitrary files via a symlink attack on 1 /tmp/changelog or 2 /tmp/.git-effort...

5.5CVSS5.4AI score
Exploits0References5
Apple
Apple
added 2020/01/28 12:0 a.m.45 views

About the security content of watchOS 6.1.2

About the security content of watchOS 6.1.2 This document describes the security content of watchOS 6.1.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...

9.3CVSS8.9AI score0.16111EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2020/01/27 9:15 a.m.4 views

CVE-2018-12476

Relative Path Traversal vulnerability in obs-service-tarscm of SUSE Linux Enterprise Server 15; openSUSE Factory allows remote attackers with control over a repository to overwrite files on the machine of the local user if a malicious service is executed. This issue affects: SUSE Linux Enterprise...

7.5CVSS5.8AI score0.01026EPSS
Exploits0References1
NVD
NVD
added 2020/01/27 9:15 a.m.24 views

CVE-2018-12476

Relative Path Traversal vulnerability in obs-service-tarscm of SUSE Linux Enterprise Server 15; openSUSE Factory allows remote attackers with control over a repository to overwrite files on the machine of the local user if a malicious service is executed. This issue affects: SUSE Linux Enterprise...

7.5CVSS5.7AI score0.01026EPSS
Exploits0References1
OSV
OSV
added 2020/01/17 5:16 p.m.2 views

CVE-2019-15855

An issue was discovered in Maarch RM before 2.5. A path traversal vulnerability allows an unauthenticated remote attacker to overwrite any files with a crafted POST request if the default installation procedure was followed. This results in a permanent Denial of Service...

9.1CVSS7.4AI score0.01508EPSS
Exploits0References1
Prion
Prion
added 2020/01/17 5:16 p.m.12 views

Path traversal

An issue was discovered in Maarch RM before 2.5. A path traversal vulnerability allows an unauthenticated remote attacker to overwrite any files with a crafted POST request if the default installation procedure was followed. This results in a permanent Denial of Service...

6.4CVSS8.9AI score0.01508EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2020/01/13 1:15 p.m.20 views

CVE-2014-6059

WordPress Advanced Access Manager Plugin before 2.8.2 has an Arbitrary File Overwrite Vulnerability...

7.2CVSS7AI score0.03288EPSS
Exploits3References3
Prion
Prion
added 2020/01/13 1:15 p.m.18 views

Arbitrary file deletion

WordPress Advanced Access Manager Plugin before 2.8.2 has an Arbitrary File Overwrite Vulnerability...

6.5CVSS7AI score0.03288EPSS
Exploits3References3Affected Software1
Cvelist
Cvelist
added 2020/01/13 12:22 p.m.25 views

CVE-2014-6059

WordPress Advanced Access Manager Plugin before 2.8.2 has an Arbitrary File Overwrite Vulnerability...

6.9AI score0.03288EPSS
Exploits3References3
CVE
CVE
added 2020/01/13 12:22 p.m.110 views

CVE-2014-6059

CVE-2014-6059 concerns the WordPress plugin Advanced Access Manager (AAM) prior to version 2.8.2. The vulnerability is an Arbitrary File Overwrite flaw that allows an admin user to write arbitrary content to arbitrary files, which could in some configurations lead to arbitrary code execution or o...

7.2CVSS6.9AI score0.03288EPSS
Exploits3References3Affected Software1
Positive Technologies
Positive Technologies
added 2020/01/13 12:0 a.m.7 views

PT-2020-7722 · WordPress · Wordpress Advanced Access Manager Plugin

Name of the Vulnerable Software and Affected Versions: WordPress Advanced Access Manager Plugin versions prior to 2.8.2 Description: The issue is related to an Arbitrary File Overwrite Vulnerability. There is no information provided about the estimated number of potentially affected devices...

7.2CVSS6.8AI score0.03288EPSS
Exploits3References6
Tenable Nessus
Tenable Nessus
added 2020/01/10 12:0 a.m.70 views

SUSE SLES12 Security Update : nodejs12 (SUSE-SU-2020:0059-1) (0-Length Headers Leak) (Data Dribble) (Empty Frames Flood) (Internal Data Buffering) (Ping Flood) (Reset Flood) (Resource Loop) (Settings Flood)

This update for nodejs12 fixes the following issues : Update to LTS release 12.13.0 jscSLE-8947. Security issues fixed : CVE-2019-9511: Fixed the HTTP/2 implementation that was vulnerable to window size manipulations bsc1146091. CVE-2019-9512: Fixed the HTTP/2 implementation that was vulnerable t...

7.8CVSS7.4AI score0.87806EPSS
Exploits1References29
OSV
OSV
added 2020/01/09 12:30 p.m.7 views

SUSE-SU-2020:0059-1 Security update for nodejs12

This update for nodejs12 fixes the following issues: Update to LTS release 12.13.0 jscSLE-8947. Security issues fixed: - CVE-2019-9511: Fixed the HTTP/2 implementation that was vulnerable to window size manipulations bsc1146091. - CVE-2019-9512: Fixed the HTTP/2 implementation that was vulnerable...

7.8CVSS6.8AI score0.87806EPSS
Exploits1References21
OpenVAS
OpenVAS
added 2020/01/09 12:0 a.m.18 views

openSUSE: Security Advisory for nodejs10 (openSUSE-SU-2019:1846-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.02781EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2019/12/19 7:18 p.m.55 views

git: Arbitrary path overwriting via export-marks in-stream command feature

A flaw was found in the git fast-import command where it provides the export-marks feature that may unexpectedly overwrite arbitrary paths. An attacker can abuse this flaw if they can control the input passed to the fast-import command by using the export-marks feature and overwrite arbitrary...

3.6CVSS5.9AI score0.00427EPSS
Exploits0References5
Prion
Prion
added 2019/12/18 6:15 p.m.23 views

Design/Logic Flaw

This issue was addressed with improved checks. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2. A malicious application may be able to overwrite arbitrary files...

5.8CVSS4.4AI score0.00909EPSS
Exploits0References3Affected Software3
CVE
CVE
added 2019/12/18 5:33 p.m.90 views

CVE-2019-8530

CVE-2019-8530 affects Apple platforms (iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2). A malicious application may overwrite arbitrary files due to improved checks that were addressed. Patch status: fixed in the listed versions. Exploitation requires local access with user interaction (per CVSS: LOCA...

5.8CVSS5.7AI score0.00909EPSS
Exploits0References3Affected Software3
Rows per page
Query Builder