Lucene search
+L

194 matches found

Redos
Redos
added 2021/09/08 12:0 a.m.13 views

ROS-2-1435

2.1435 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

6.1CVSS9.4AI score0.0262EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.16 views

ROS-2-863

2.863 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

6.1CVSS9.3AI score0.0262EPSS
Exploits0
Redos
Redos
added 2021/09/08 12:0 a.m.7 views

ROS-2-2167

2.2167 Nettle library vulnerabilityCVE-2021-20305 1. Vulnerability Description: A vulnerability in the Nettle library involving the use of a failed cryptographic algorithm and allowing a remote attacker who has not been authenticated to execute arbitrary code.Identifier of the Information Securit...

8.1CVSS9.5AI score0.01607EPSS
Exploits1
NVD
NVD
added 2021/08/11 11:15 p.m.23 views

CVE-2021-38588

In cPanel before 96.0.13, fixcpanelperl lacks verification of the integrity of downloads SEC-587...

8.1CVSS0.00442EPSS
Exploits0References1
Prion
Prion
added 2021/08/11 11:15 p.m.18 views

Command injection

In cPanel before 96.0.13, fixcpanelperl lacks verification of the integrity of downloads SEC-587...

6.8CVSS8.1AI score0.00442EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/08/11 10:55 p.m.72 views

CVE-2021-38588

CVE-2021-38588 affects cPanel before 96.0.13, where fix_cpanel_perl does not verify the integrity of downloads (SEC-587). Root cause: lack of integrity verification in the download process. Impacts include partial confidentiality, integrity, and availability (per CVSS) with network exposure and n...

8.1CVSS8AI score0.00442EPSS
Exploits0References1Affected Software1
Fedora
Fedora
added 2021/02/09 1:7 a.m.40 views

[SECURITY] Fedora 32 Update: pngcheck-2.4.0-7.fc32

pngcheck verifies the integrity of PNG, JNG and MNG files by checking the internal 32-bit CRCs checksums and decompressing the image data; it can optionally dump almost all of the chunk-level information in the image in human-readable form. For example, it can be used to print the basic statist i...

0.7AI score
Exploits0
Fedora
Fedora
added 2020/12/23 1:19 a.m.49 views

[SECURITY] Fedora 33 Update: pngcheck-2.4.0-5.fc33

pngcheck verifies the integrity of PNG, JNG and MNG files by checking the internal 32-bit CRCs checksums and decompressing the image data; it can optionally dump almost all of the chunk-level information in the image in human-readable form. For example, it can be used to print the basic statist i...

0.7AI score
Exploits0
Fedora
Fedora
added 2020/12/23 1:4 a.m.47 views

[SECURITY] Fedora 32 Update: pngcheck-2.4.0-5.fc32

pngcheck verifies the integrity of PNG, JNG and MNG files by checking the internal 32-bit CRCs checksums and decompressing the image data; it can optionally dump almost all of the chunk-level information in the image in human-readable form. For example, it can be used to print the basic statist i...

0.7AI score
Exploits0
OpenVAS
OpenVAS
added 2020/12/23 12:0 a.m.6 views

Fedora: Security Advisory for pngcheck (FEDORA-2020-f3a397cbf8)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2020/11/22 1:27 a.m.9 views

[SECURITY] Fedora 31 Update: pngcheck-2.3.0-4.fc31

pngcheck verifies the integrity of PNG, JNG and MNG files by checking the internal 32-bit CRCs checksums and decompressing the image data; it can optionally dump almost all of the chunk-level information in the image in human-readable form. For example, it can be used to print the basic statist i...

0.7AI score
Exploits0
Fedora
Fedora
added 2020/11/22 1:27 a.m.13 views

[SECURITY] Fedora 33 Update: pngcheck-2.3.0-4.fc33

pngcheck verifies the integrity of PNG, JNG and MNG files by checking the internal 32-bit CRCs checksums and decompressing the image data; it can optionally dump almost all of the chunk-level information in the image in human-readable form. For example, it can be used to print the basic statist i...

0.7AI score
Exploits0
Fedora
Fedora
added 2020/11/07 12:23 a.m.14 views

[SECURITY] Fedora 31 Update: pngcheck-2.3.0-3.fc31

pngcheck verifies the integrity of PNG, JNG and MNG files by checking the internal 32-bit CRCs checksums and decompressing the image data; it can optionally dump almost all of the chunk-level information in the image in human-readable form. For example, it can be used to print the basic statist i...

0.7AI score
Exploits0
NVD
NVD
added 2020/08/07 4:15 p.m.19 views

CVE-2020-7810

hslogin2.dll ActiveX Control in Groupware contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the activex method. This is due to a lack of integrity verification of the policy files referenced in the update process, and a remote attacke...

8.8CVSS8.7AI score0.00439EPSS
Exploits0References2
Prion
Prion
added 2020/08/07 4:15 p.m.14 views

Design/Logic Flaw

hslogin2.dll ActiveX Control in Groupware contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the activex method. This is due to a lack of integrity verification of the policy files referenced in the update process, and a remote attacke...

6.8CVSS8.6AI score0.00439EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/08/07 3:21 p.m.38 views

CVE-2020-7810

The CVE-2020-7810 entry concerns the hslogin2.dll ActiveX Control in HandySoft Groupware. The vulnerability arises from a lack of integrity verification for policy files referenced during the update process, enabling a remote attacker to craft a web page that could trigger the ActiveX method to d...

8.8CVSS8.7AI score0.00439EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/08/07 3:21 p.m.22 views

CVE-2020-7810 HandySoft ActiveX File Download and Execution Vulnerability

hslogin2.dll ActiveX Control in Groupware contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the activex method. This is due to a lack of integrity verification of the policy files referenced in the update process, and a remote attacke...

8.8CVSS8.6AI score0.00439EPSS
Exploits0References2
OSV
OSV
added 2020/08/06 5:15 p.m.6 views

CVE-2020-7817

MyBrowserPlus downloads the files needed to run the program through the setup file Setup.inf. At this time, there is a vulnerability in downloading arbitrary files due to insufficient integrity verification of the files...

7.8CVSS7.2AI score0.0028EPSS
Exploits0References2
Prion
Prion
added 2020/08/06 5:15 p.m.14 views

Authorization

MyBrowserPlus downloads the files needed to run the program through the setup file Setup.inf. At this time, there is a vulnerability in downloading arbitrary files due to insufficient integrity verification of the files...

4.6CVSS7.6AI score0.0028EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/08/06 4:57 p.m.22 views

CVE-2020-7817

MyBrowserPlus downloads the files needed to run the program through the setup file Setup.inf. At this time, there is a vulnerability in downloading arbitrary files due to insufficient integrity verification of the files...

5.5CVSS7.6AI score0.0028EPSS
Exploits0References2
Rows per page
Query Builder