Lucene search
K

6886 matches found

Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.23 views

SUSE SLES12 Security Update : nodejs4 (SUSE-SU-2019:2078-1)

This update for nodejs4 fixes the following issues : CVE-2019-13173: Fixed a potential file overwrite via hardlink in fstream.DirWriter bsc1140290. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...

7.5CVSS7.9AI score0.02781EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.26 views

SUSE SLES15 Security Update : nodejs8 (SUSE-SU-2019:2055-1)

This update for nodejs8 fixes the following issues : Security issue fixed : CVE-2019-13173: Fixed a potential file overwrite via hardlink in fstream.DirWriter bsc1140290. Non-security issue fixed: Backported fixes for OpenSSL 1.1.1 from nodejs8 bsc1134209. Note that Tenable Network Security has...

7.5CVSS7.9AI score0.02781EPSS
Exploits0References5
OSV
OSV
added 2019/08/09 7:31 a.m.5 views

SUSE-SU-2019:2099-1 Security update for nodejs10

This update for nodejs10 to version 10.16.0 fixes the following issues: Security issue fixed: - CVE-2019-13173: Fixed a potential file overwrite via hardlink in fstream.DirWriter bsc1140290. Non-security issue fixed: - Update to new upstream LTS version 10.16.0, including npm version 6.9.0 and...

7.5CVSS7.7AI score0.02781EPSS
Exploits0References4
Veracode
Veracode
added 2019/08/08 12:7 a.m.33 views

Arbitrary File Overwrite

keepalived is vulnerable to arbitrary file overwrite. The vulnerability exists as there is an improper pathname validation that allows for overwrite of arbitrary filenames via symlinks...

4.7CVSS4.4AI score0.00501EPSS
Exploits1References8Affected Software1
CNVD
CNVD
added 2019/08/08 12:0 a.m.2 views

Cisco Enterprise NFV Infrastructure Software Path Traversal Vulnerability (CNVD-2019-38857)

Cisco Enterprise NFV Infrastructure Software is a lightweight virtualization platform that integrates complete VM lifecycle management, monitoring, device programmability, and service chaining in one installable package. A path traversal vulnerability exists in the CLI for Cisco Enterprise NFV...

6.7CVSS7AI score0.00716EPSS
Exploits0References1
OSV
OSV
added 2019/08/07 1:15 p.m.3 views

CVE-2016-10804

The SQLite journal feature in cPanel before 57.9999.54 allows arbitrary file-overwrite operations during Horde Restore SEC-58...

8.1CVSS5.9AI score0.01096EPSS
Exploits0References2
NVD
NVD
added 2019/08/07 1:15 p.m.18 views

CVE-2016-10804

The SQLite journal feature in cPanel before 57.9999.54 allows arbitrary file-overwrite operations during Horde Restore SEC-58...

8.7CVSS8.1AI score0.01096EPSS
Exploits0References2
Prion
Prion
added 2019/08/07 1:15 p.m.16 views

Design/Logic Flaw

The SQLite journal feature in cPanel before 57.9999.54 allows arbitrary file-overwrite operations during Horde Restore SEC-58...

8.7CVSS7.2AI score0.01096EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/08/07 12:26 p.m.40 views

CVE-2016-10804

The CVE-2016-10804 issue affects cPanel prior to 57.9999.54, where the SQLite journal feature can cause arbitrary file overwrites during Horde Restore (SEC-58). Root cause: misuse of the SQLite journal leads to write operations to arbitrary files. Impact (per sources): High, with potential confid...

8.7CVSS8AI score0.01096EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/08/07 12:26 p.m.19 views

CVE-2016-10804

The SQLite journal feature in cPanel before 57.9999.54 allows arbitrary file-overwrite operations during Horde Restore SEC-58...

8.1AI score0.01096EPSS
Exploits0References1
OSV
OSV
added 2019/08/07 9:38 a.m.4 views

SUSE-SU-2019:2078-1 Security update for nodejs4

This update for nodejs4 fixes the following issues: - CVE-2019-13173: Fixed a potential file overwrite via hardlink in fstream.DirWriter bsc1140290...

7.5CVSS7.5AI score0.02781EPSS
Exploits0References3
CNVD
CNVD
added 2019/08/07 12:0 a.m.2 views

Unspecified vulnerability in cPanel (CNVD-2019-27418)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in versions prior to cPanel 62.0.17. An attacker can exploit the vulnerability to arbitrarily...

5.5CVSS6.8AI score0.00714EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/07 12:0 a.m.2 views

cPanel Input Validation Error Vulnerability (CNVD-2019-27604)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in versions of cPanel prior to 60.0.25. An attacker can exploit the vulnerability to arbitrarily...

6.5CVSS6.8AI score0.00746EPSS
Exploits0References1
CNVD
CNVD
added 2019/08/07 12:0 a.m.3 views

Unspecified vulnerability in cPanel (CNVD-2019-27420)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A security vulnerability exists in versions of cPanel prior to 60.0.25. An attacker can exploit the vulnerability to overwrite...

6.5CVSS6.8AI score0.00746EPSS
Exploits0References1
OSV
OSV
added 2019/08/06 8:35 a.m.8 views

SUSE-SU-2019:2055-1 Security update for nodejs8

This update for nodejs8 fixes the following issues: Security issue fixed: - CVE-2019-13173: Fixed a potential file overwrite via hardlink in fstream.DirWriter bsc1140290. Non-security issue fixed: - Backported fixes for OpenSSL 1.1.1 from nodejs8 bsc1134209...

7.5CVSS7.4AI score0.02781EPSS
Exploits0References4
CNVD
CNVD
added 2019/08/06 12:0 a.m.2 views

cPanel Input Validation Error Vulnerability (CNVD-2019-27606)

cPanel is a set of Web-based automated colocation platforms from the American company cPanel. The platform is primarily used to automate the management of websites and servers. An input validation error vulnerability exists in cPanel versions prior to 62.0.17. An attacker can exploit the...

3.6CVSS6.8AI score0.00342EPSS
Exploits0References1
OSV
OSV
added 2019/08/05 1:15 p.m.1 views

CVE-2016-10768

cPanel before 60.0.25 allows file-overwrite operations during preparation for MySQL upgrades SEC-161...

6.5CVSS5.8AI score0.00746EPSS
Exploits0References1
NVD
NVD
added 2019/08/05 1:15 p.m.23 views

CVE-2016-10768

cPanel before 60.0.25 allows file-overwrite operations during preparation for MySQL upgrades SEC-161...

6.5CVSS6.5AI score0.00746EPSS
Exploits0References1
OSV
OSV
added 2019/08/05 1:15 p.m.4 views

CVE-2016-10770

cPanel before 60.0.25 allows arbitrary file-overwrite operations during a Roundcube update SEC-164...

6.5CVSS5.9AI score0.00746EPSS
Exploits0References1
NVD
NVD
added 2019/08/05 1:15 p.m.18 views

CVE-2016-10770

cPanel before 60.0.25 allows arbitrary file-overwrite operations during a Roundcube update SEC-164...

6.5CVSS6.6AI score0.00746EPSS
Exploits0References1
Rows per page
Query Builder