Lucene search
K

7488 matches found

OSV
OSV
added 2023/11/15 8:15 p.m.5 views

CVE-2023-41699

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Payara Platform Payara Server, Micro and Embedded Servlet Implementation modules allows Redirect Access to Libraries.This issue affects Payara Server, Micro and Embedded: from 5.0.0 before 5.57.0, from 4.1.2.191 before 4.1.2.191.4...

6.1CVSS5.8AI score0.00407EPSS
Exploits0References2
NVD
NVD
added 2023/11/15 8:15 p.m.22 views

CVE-2023-41699

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Payara Platform Payara Server, Micro and Embedded Servlet Implementation modules allows Redirect Access to Libraries.This issue affects Payara Server, Micro and Embedded: from 5.0.0 before 5.57.0, from 4.1.2.191 before 4.1.2.191.4...

6.1CVSS0.00407EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/11/15 7:54 p.m.12 views

CVE-2023-41699 Payara Platform: URL Redirection to untrusted site using FORM authentication

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Payara Platform Payara Server, Micro and Embedded Servlet Implementation modules allows Redirect Access to Libraries.This issue affects Payara Server, Micro and Embedded: from 5.0.0 before 5.57.0, from 4.1.2.191 before 4.1.2.191.4...

6.1CVSS6.8AI score0.00407EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2023/11/15 12:30 p.m.7 views

ai.optfor:spring-openai-api (>=0.2.2 <=0.3.25), be.vlaanderen.informatievlaanderen.ldes.ldio:ldio-azure-blob-out (=2.12.0) +750 more potentially affected by CVE-2023-34062 via io.projectreactor.netty:reactor-netty-http (>=1.1.0 <=1.1.12)

io.projectreactor.netty:reactor-netty-http MAVEN version =1.1.0, =0.2.2, =0.14.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0, =0.15.0-RC2 and more Source cves: CVE-2023-34062 Source advisory: OSV:GHSA-XJHV-P3FV-X24R...

7.5CVSS7.2AI score0.01124EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2023/11/14 10:24 p.m.3 views

ai.api.libai.speech:libai-speech-gcp (>=1.4.9 <=1.6.12), ai.apiverse:apipulse (>='1.0.3' <=1.0.20) +18196 more potentially affected by CVE-2023-5072 via org.json:json (>=20070829 <=20230618)

org.json:json MAVEN version =20070829, =1.4.9, ='1.0.3', =1.4.2, =1.4.2, =1.4.2, =1.4.2, =1.4.2, =0.5.0, =0.5.0, =0.5.0, =0.5.8, =0.5.0, =0.5.7, =0.5.0, =0.8.7 and more Source cves: CVE-2023-5072 Source advisory: OSV:GHSA-4JQ9-2XHW-JPX7...

7.5CVSS6.4AI score0.01449EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2023/11/14 3:15 a.m.4 views

aioasuswrt (>=1.1.20 <=1.3.3), aiosftp (>=0.0.1 <=0.3.0) +28 more potentially affected by CVE-2023-46446 via asyncssh (>=1.10.0 <=2.14.0)

asyncssh PYPI version =1.10.0, =1.1.20, =0.0.1, =0.6.0, =0.3.0, =1.2.1, =0.4.0, =0.1.0, =4.3.5, =0.35.0, =3.1.1, =0.6.5, =0.8.0, =2.8.1, =0.2.0, =0.1.0, =0.3.16 and more Source cves: CVE-2023-46446 Source advisory: OSV:PYSEC-2023-239...

6.8CVSS6.6AI score0.00867EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/11/11 12:0 a.m.6 views

The vulnerability of Python libraries for working with PDF files, such as PyPDF and PyPDF2, relates to the execution of loops with an unreachable exit condition. This allows attackers to cause service failures.

The vulnerability of Python libraries for working with PDF files, such as PyPDF and PyPDF2, is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.3AI score0.00352EPSS
Exploits1References9Affected Software4
Fedora
Fedora
added 2023/11/08 1:27 a.m.31 views

[SECURITY] Fedora 39 Update: open-vm-tools-12.3.0-3.fc39

The open-vm-tools project is an open source implementation of VMware Tools. It is a suite of open source virtualization utilities and drivers to improve the functionality, user experience and administration of VMware virtual machines. This package contains only the core user-space programs and...

7.5CVSS7.6AI score0.00667EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.41 views

Rocky Linux 8 : java-11-openjdk (RLSA-2022:1442)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:1442 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected...

7.5CVSS6.2AI score0.03825EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.29 views

Rocky Linux 8 : java-1.8.0-openjdk (RLSA-2022:0307)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:0307 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are...

5.3CVSS6.1AI score0.08346EPSS
Exploits0References26
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.27 views

Rocky Linux 8 : java-17-openjdk (RLSA-2022:0161)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:0161 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are...

5.3CVSS6.1AI score0.08346EPSS
Exploits0References31
OpenVAS
OpenVAS
added 2023/11/05 12:0 a.m.7 views

Fedora: Security Advisory (FEDORA-2023-b52438b698)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References3
OpenVAS
OpenVAS
added 2023/11/05 12:0 a.m.15 views

Fedora: Security Advisory for stb (FEDORA-2023-a93c06a1d9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.01137EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2023/11/05 12:0 a.m.25 views

Fedora: Security Advisory (FEDORA-2023-28cff1a2de)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.3AI score0.0086EPSS
Exploits0References9
Fedora
Fedora
added 2023/11/04 3:46 a.m.64 views

[SECURITY] Fedora 37 Update: stb-0^20231011gitbeebb24-12.fc37

Single-file public domain libraries for C/C++...

9.8CVSS7AI score0.01137EPSS
Exploits2
Fedora
Fedora
added 2023/11/04 3:42 a.m.40 views

[SECURITY] Fedora 38 Update: stb-0^20231011gitbeebb24-12.fc38

Single-file public domain libraries for C/C++...

9.8CVSS7AI score0.01137EPSS
Exploits2
Fedora
Fedora
added 2023/11/03 6:58 p.m.10 views

[SECURITY] Fedora 39 Update: dotnet6.0-6.0.123-1.fc39

.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...

7AI score
Exploits0
Fedora
Fedora
added 2023/11/03 6:58 p.m.17 views

[SECURITY] Fedora 39 Update: dotnet7.0-7.0.112-1.fc39

.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...

7AI score
Exploits0
Fedora
Fedora
added 2023/11/03 6:55 p.m.42 views

[SECURITY] Fedora 39 Update: golang-x-image-0.13.0-1.fc39

This package holds supplementary Go image libraries...

6.5CVSS7.2AI score0.0086EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2023/11/02 6:15 a.m.3 views

admin-tool-button (>=1.0.1a0 <=1.0.5a0), aedttest (=0.0.2) +125 more potentially affected by CVE-2023-46695 via django (>=3.2.0 <=3.2.22)

django PYPI version =3.2.0, =1.0.1a0, =2.0.0, =0.0.1, =1.0.6, =3.2.17.0, =6.2.0, =0.2.0, =0.1.0, =21.1.1, =21.1.0, =22.0.0.dev13, =22.0.0.dev14 and more Source cves: CVE-2023-46695 Source advisory: OSV:PYSEC-2023-222...

7.5CVSS7.1AI score0.49774EPSS
Exploits0
Rows per page
Query Builder