Lucene search
K

1237 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2016-5240

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The DrawDashPolygon function in magick/render.c in GraphicsMagick before 1.3.24 and the SVG renderer in ImageMagick allow remote attackers to cause a denial of...

5.5CVSS6.9AI score0.02177EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2017-7586

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In libsndfile before 1.0.28, an error in the headerread function common.c when handling ID3 tags can be exploited to cause a stack-based buffer overflow via a...

5.5CVSS6.5AI score0.01243EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2017-15412

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in libxml2 before 2.9.5, as used in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to potentially exploit heap...

8.8CVSS7.9AI score0.02963EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2016-6794

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When a SecurityManager is configured, a web application's ability to read system properties should be controlled by the SecurityManager. In Apache Tomcat 9.0.0....

5.3CVSS6.3AI score0.07152EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2019-20839

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libvncclient/sockets.c in LibVNCServer before 0.9.13 has a buffer overflow via a long socket filename. CVE-2019-20839 Note that Nessus relies on the presence of...

7.5CVSS7.4AI score0.03589EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2015-8466

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Swift3 before 1.9 allows remote attackers to conduct replay attacks via an Authorization request that lacks a Date header. CVE-2015-8466 Note that Nessus relies...

7.4CVSS7.3AI score0.02013EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-8322

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in RubyGems 2.6 and later through 3.0.2. The gem owner command outputs the contents of the API response directly to stdout. Therefore, i...

7.5CVSS6.6AI score0.03372EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2014-8240

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in TigerVNC allows remote VNC servers to cause a denial of service crash and possibly execute arbitrary code via vectors related to screen size...

7.5CVSS8.4AI score0.03547EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2011-1097

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rsync 3.x before 3.0.8, when certain recursion, deletion, and ownership options are used, allows remote rsync servers to cause a denial of service heap memory...

5.1CVSS6.2AI score0.03163EPSS
Exploits0References2
Metasploit
Metasploit
added 2025/02/20 6:55 p.m.354 views

TFTP Fetch, Linux Reboot

Fetch and execute an MIPSBE payload from a TFTP server. A very small shellcode for rebooting the system. This payload is sometimes helpful for testing purposes or executing other payloads that rely on initial startup procedures. Requires CAPSYSBOOT privileges. Module Options msf use...

5.8AI score
Exploits0
Metasploit
Metasploit
added 2025/02/20 6:55 p.m.340 views

HTTP Fetch

Fetch and execute an MIPSLE payload from an HTTP server. Module Options msf use payload/cmd/linux/http/mipsle/meterpreterreversetcp msf payloadmeterpreterreversetcp show actions ...actions... msf payloadmeterpreterreversetcp set ACTION msf payloadmeterpreterreversetcp show options ...show and set...

7.2AI score
Exploits0
Metasploit
Metasploit
added 2025/02/20 6:55 p.m.299 views

HTTPS Fetch

Fetch and execute an ARMLE payload from an HTTPS server. Module Options msf use payload/cmd/linux/https/armle/meterpreterreversehttp msf payloadmeterpreterreversehttp show actions ...actions... msf payloadmeterpreterreversehttp set ACTION msf payloadmeterpreterreversehttp show options ...show and...

7.2AI score
Exploits0
Metasploit
Metasploit
added 2025/02/20 6:55 p.m.313 views

HTTP Fetch, Bind TCP Stager

Fetch and execute an ARMLE payload from an HTTP server. Listen for a connection Module Options msf use payload/cmd/linux/http/armle/meterpreter/bindtcp msf payloadbindtcp show actions ...actions... msf payloadbindtcp set ACTION msf payloadbindtcp show options ...show and set options... msf...

7.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/02/18 12:0 a.m.5 views

The vulnerability of the ext4 kernel component in the Linux operating system, which allows a hacker to cause a service failure

The vulnerability of the ext4 kernel component in Linux operating systems is related to the use of an uninitialized resource. Exploiting this vulnerability can allow a perpetrator to cause a system failure...

5.5CVSS6.6AI score0.00231EPSS
Exploits0References33Affected Software6
RedhatCVE
RedhatCVE
added 2025/02/05 11:51 p.m.11 views

CVE-2022-41552

Server-Side Request Forgery SSRF vulnerability in Hitachi Infrastructure Analytics Advisor on Linux Data Center Analytics, Analytics probe components, Hitachi Ops Center Analyzer on Linux Hitachi Ops Center Analyzer detail view, Hitachi Ops Center Analyzer probe components allows Server Side...

9.8CVSS6.9AI score0.00621EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 8:14 p.m.16 views

CVE-2022-4895

Improper Certificate Validation vulnerability in Hitachi Infrastructure Analytics Advisor on Linux Analytics probe component, Hitachi Ops Center Analyzer on Linux Analyzer probe component allows Man in the Middle Attack.This issue affects Hitachi Infrastructure Analytics Advisor: from 2.0.0-00...

8.6CVSS6.8AI score0.0028EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/02/04 12:0 a.m.10 views

Roundcube Webmail <= 1.6.9 XSS Vulnerability - Linux

Roundcube Webmail is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.1CVSS5AI score0.27762EPSS
Exploits1References2
Veracode
Veracode
added 2025/02/03 4:7 a.m.7 views

Credential Caching

snowflakeconnectorpython is vulnerable to Credential Caching. The vulnerability is due to improper handling of temporary credential caching on Linux systems, When caching is enabled, the credentials are stored in a file that is readable by all users, allowing unauthorized access...

5.5CVSS4.5AI score0.00137EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2025/01/29 8:49 p.m.22 views

snowflake-connector-python vulnerable to insecure cache files permissions

Issue Snowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. On Linux systems, when temporary credential caching is enabled, the Snowflake Connector for Python will cache temporary credentials locally in a world-readable file. This vulnerability affects version...

5.5CVSS4.8AI score0.00137EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2025/01/29 8:30 p.m.23 views

CVE-2025-24795 The Snowflake Connector for Python uses insecure cache files permissions

The Snowflake Connector for Python provides an interface for developing Python applications that can connect to Snowflake and perform all standard operations. Snowflake discovered and remediated a vulnerability in the Snowflake Connector for Python. On Linux systems, when temporary credential...

4.4CVSS0.00137EPSS
Exploits0References2
Rows per page
Query Builder