Lucene search
K

7485 matches found

Code423n4
Code423n4
added 2023/07/31 12:0 a.m.12 views

Migration of Profiles can fail due to difference in handle validity in V1 and V2

Lines of code Vulnerability details Impact Profiles with certain type of handles in V1 cannot be migrated to V2. Proof of Concept In V1 and V2, the validity of handles is determined differently. Due to this it is possible that some profiles have handles that are valid according to V1 validation b...

7AI score
Exploits0
OSV
OSV
added 2023/07/28 8:0 p.m.11 views

SUSE-SU-2023:3023-1 Security update for java-17-openjdk

This update for java-17-openjdk fixes the following issues: Updated to version jdk-17.0.8+7 July 2023 CPU: - CVE-2023-22006: Fixed vulnerability in the network component bsc1213473. - CVE-2023-22036: Fixed vulnerability in the utility component bsc1213474. - CVE-2023-22041: Fixed vulnerability in...

7.5CVSS5.1AI score0.01812EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2023/07/28 12:0 a.m.38 views

CentOS 7 : java-1.8.0-openjdk (RHSA-2023:1904)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:1904 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affecte...

7.4CVSS6.4AI score0.02474EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2023/07/27 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2023:2990-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.9AI score0.01812EPSS
Exploits0References10
OSV
OSV
added 2023/07/26 3:4 p.m.8 views

SUSE-SU-2023:2990-1 Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: Updated to jdk-11.0.20+8 July 2023 CPU: - CVE-2023-22006: Fixed vulnerability in the network component bsc1213473. - CVE-2023-22036: Fixed vulnerability in the utility component bsc1213474. - CVE-2023-22041: Fixed vulnerability in the...

7.5CVSS4.8AI score0.01812EPSS
Exploits0References15
OpenVAS
OpenVAS
added 2023/07/26 12:0 a.m.32 views

Fedora: Security Advisory for kernel-headers (FEDORA-2023-3661f028b8)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.2AI score0.02163EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2023/07/26 12:0 a.m.30 views

Fedora: Security Advisory for grpc (FEDORA-2023-6cad6e5003)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.5AI score0.00531EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2023/07/24 9:30 p.m.4 views

ca.ibodrov.concord:testcontainers-concord-core (>=2.0.0 <=2.0.2), ca.ibodrov.mica:mica-concord-server-plugin (>=0.0.2 <=0.0.21) +257 more potentially affected by CVE-2023-34478 via org.apache.shiro:shiro-web (>=1.0.0-incubating <=1.11.0)

org.apache.shiro:shiro-web MAVEN version =1.0.0-incubating, =2.0.0, =0.0.2, =2.2.0, =2.2.0, =2.2.0, =2.8.0, =2.8.0, =2.8.0, =2.8.0, =3.0.0, =2.8.0, =5.0, =5.0, =5.5 and more Source cves: CVE-2023-34478 Source advisory: OSV:GHSA-PMHC-2G4F-85CG...

9.8CVSS7.1AI score0.01533EPSS
Exploits0
Fedora
Fedora
added 2023/07/23 1:30 a.m.40 views

[SECURITY] Fedora 38 Update: kernel-headers-6.4.4-200.fc38

Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package...

7.8CVSS7.3AI score0.02163EPSS
Exploits2
Fedora
Fedora
added 2023/07/23 1:29 a.m.38 views

[SECURITY] Fedora 38 Update: grpc-1.48.4-8.fc38

gRPC is a modern open source high performance RPC framework that can run in a ny environment. It can efficiently connect services in and across data centers with pluggable support for load balancing, tracing, health checking and authentication. It is also applicable in last mile of distributed...

5.3CVSS5.6AI score0.00531EPSS
Exploits0
Fedora
Fedora
added 2023/07/23 1:25 a.m.40 views

[SECURITY] Fedora 37 Update: kernel-headers-6.4.4-100.fc37

Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package...

7.8CVSS7.3AI score0.02163EPSS
Exploits2
Fedora
Fedora
added 2023/07/23 1:24 a.m.29 views

[SECURITY] Fedora 37 Update: grpc-1.48.4-8.fc37

gRPC is a modern open source high performance RPC framework that can run in a ny environment. It can efficiently connect services in and across data centers with pluggable support for load balancing, tracing, health checking and authentication. It is also applicable in last mile of distributed...

5.3CVSS5.6AI score0.00531EPSS
Exploits0
Fedora
Fedora
added 2023/07/22 1:22 a.m.31 views

[SECURITY] Fedora 38 Update: dotnet6.0-6.0.120-1.fc38

.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...

8.1CVSS7.9AI score0.01913EPSS
Exploits0
Fedora
Fedora
added 2023/07/22 12:40 a.m.26 views

[SECURITY] Fedora 37 Update: dotnet6.0-6.0.120-1.fc37

.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...

8.1CVSS7.9AI score0.01913EPSS
Exploits0
Fedora
Fedora
added 2023/07/22 12:40 a.m.41 views

[SECURITY] Fedora 37 Update: dotnet7.0-7.0.109-1.fc37

.NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications and micro-services. .NET contains a runtime conforming to .NET Standards a set of framework...

8.1CVSS7.9AI score0.01913EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/07/21 12:0 a.m.34 views

AlmaLinux 8 : java-1.8.0-openjdk (ALSA-2023:4176)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:4176 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Hotspot. Supported...

3.7CVSS6.3AI score0.01316EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/07/21 12:0 a.m.37 views

Oracle Linux 7 : java-11-openjdk (ELSA-2023-4233)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-4233 advisory. 1:11.0.20.0.8-1.0.1 - link atomic for ix86 build 1:11.0.20.0.8-1 - Update to jdk-11.0.20.0+8 GA - Update release notes to 11.0.20.0+8 - Switch to GA mo...

7.5CVSS6.4AI score0.01812EPSS
Exploits0References7
OSV
OSV
added 2023/07/20 6:15 p.m.7 views

CVE-2023-38335

Omnis Studio 10.22.00 has incorrect access control. It advertises a feature for making Omnis libraries "always private" - this is supposed to be an irreversible operation. However, due to implementation issues, "always private" Omnis libraries can be opened by the Omnis Studio browser by bypassin...

5.3CVSS5.7AI score0.01091EPSS
Exploits1References4
NVD
NVD
added 2023/07/20 6:15 p.m.12 views

CVE-2023-38335

Omnis Studio 10.22.00 has incorrect access control. It advertises a feature for making Omnis libraries "always private" - this is supposed to be an irreversible operation. However, due to implementation issues, "always private" Omnis libraries can be opened by the Omnis Studio browser by bypassin...

5.3CVSS5.2AI score0.01091EPSS
Exploits1References4
NVD
NVD
added 2023/07/20 6:15 p.m.11 views

CVE-2023-38334

Omnis Studio 10.22.00 has incorrect access control. It advertises an irreversible feature for locking classes within Omnis libraries: it should be no longer possible to delete, view, change, copy, rename, duplicate, or print a locked class. Due to implementation issues, locked classes in Omnis...

6.5CVSS6.4AI score0.00779EPSS
Exploits1References4
Rows per page
Query Builder