Lucene search
K

43 matches found

OSV
OSV
added 2024/03/06 11:17 a.m.24 views

BIT-GITLAB-2021-39932

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2. Using large payloads, the diff feature could be used to trigger high load time for users reviewing co...

4.3CVSS4.6AI score0.0086EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/01/03 12:0 a.m.22 views

GitLab 12.10 < 14.3.6 / 14.4 < 14.4.4 / 14.5 < 14.5.2 (CVE-2021-39932)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2. Usin...

4.3CVSS5.2AI score0.0086EPSS
Exploits0References3
Prion
Prion
added 2023/01/10 12:15 p.m.16 views

Code injection

Affected devices do not contain an Immutable Root of Trust in Hardware. With this the integrity of the code executed on the device can not be validated during load-time. An attacker with physical access to the device could use this to replace the boot image of the device and execute arbitrary cod...

4.6CVSS6.8AI score0.00293EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/04/28 12:0 a.m.7 views

SonicWall Global VPN Client 代码问题漏洞

Sonicwall Global Vpn Client is a corporate VPN client from Sonicwall USA. SonicWall Global VPN Client suffers from a code issue vulnerability that stems from an untrusted search path at load time. An attacker could exploit the vulnerability to place a malicious file that would escalate privileges...

7.8CVSS7.5AI score0.00697EPSS
Exploits0References3
NVD
NVD
added 2021/12/13 4:15 p.m.15 views

CVE-2021-39932

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2. Using large payloads, the diff feature could be used to trigger high load time for users reviewing co...

4.3CVSS0.0086EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2021/12/13 4:15 p.m.23 views

CVE-2021-39932

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2. Using large payloads, the diff feature could be used to trigger high load time for users reviewing co...

4.3CVSS5.8AI score0.0086EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2021/12/13 3:47 p.m.21 views

CVE-2021-39932

Removed by vendor...

4.3CVSS5.8AI score0.0086EPSS
Exploits0
Cvelist
Cvelist
added 2021/12/13 3:47 p.m.31 views

CVE-2021-39932

An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.0 before 14.3.6, all versions starting from 14.4 before 14.4.4, all versions starting from 14.5 before 14.5.2. Using large payloads, the diff feature could be used to trigger high load time for users reviewing co...

4.3CVSS5.1AI score0.0086EPSS
Exploits0References2
Akamai Blog
Akamai Blog
added 2021/02/08 5:0 a.m.16 views

Edge Redirector Cloudlet Gets Faster

Cloudlets Policy Manager often takes a long time to load, which is a by-product of its original design where every policy activation is an individual file. These files must be moved around the network, and as you might imagine, transferring thousands of files in a multi-tenant network can take a...

1AI score
Exploits0
OSV
OSV
added 2020/09/09 4:15 p.m.14 views

CVE-2020-11986

To be able to analyze gradle projects, the build scripts need to be executed. Apache NetBeans follows this pattern. This causes the code of the build script to be invoked at load time of the project. Apache NetBeans up to and including 12.0 did not request consent from the user for the analysis o...

9.8CVSS6.9AI score
Exploits0References3
Cvelist
Cvelist
added 2020/09/09 3:28 p.m.18 views

CVE-2020-11986

To be able to analyze gradle projects, the build scripts need to be executed. Apache NetBeans follows this pattern. This causes the code of the build script to be invoked at load time of the project. Apache NetBeans up to and including 12.0 did not request consent from the user for the analysis o...

9.5AI score0.09931EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2020/09/09 3:28 p.m.17 views

CVE-2020-11986

To be able to analyze gradle projects, the build scripts need to be executed. Apache NetBeans follows this pattern. This causes the code of the build script to be invoked at load time of the project. Apache NetBeans up to and including 12.0 did not request consent from the user for the analysis o...

9.8CVSS9.5AI score0.09931EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2020/03/24 3:7 p.m.78 views

Malicious package may avoid detection in python auditing

Python Auditing Vulnerability Demonstrates how a malicious package can insert a load-time poison pill to avoid detection by tools like Safety. Tools that are designed to find vulnerable packages can not ever run in the same python environment that they are trying to protect. Usage Install safety,...

5CVSS1.5AI score0.00366EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/12/03 12:0 a.m.28 views

Fedora 30 : clamav (2019-dcbfe89e39)

Drop [email protected] file bz1725810 ClamAV 0.101.5 is a security patch release that addresses the following issues. - CVE-2019-15961: A Denial-of-Service DoS vulnerability may occur when scanning a specially crafted email file as a result of excessively long scan times. The issue is resolved...

7.5CVSS7.5AI score0.03135EPSS
Exploits1References2
Akamai Blog
Akamai Blog
added 2019/11/14 6:0 p.m.62 views

Alibaba's Singles' Day Set Sales Records: Reinforces Mobile Optimization Lessons for All Retailers

On its 20th anniversary, Singles' Day 11 November, a popular Chinese shopping day meant to celebrate the status of those who are single, set a new one-day record of $38 billion in sales, a 26% increase over 2018 $30.7 billion, according to multiple media reports. However, according to Akamai data...

0.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/07/26 5:21 p.m.74 views

Introducing: Malwarebytes Browser Extension

Are you tired of all the unwanted content the world wide web offers up, whether you like it or not? It is our privilege to introduce you to the Malwarebytes Browser Extension BETA. Or, better said, the Malwarebytes Browser Extensions, because we have one for Firefox and one for Chrome. Introducti...

0.2AI score
Exploits0
Akamai Blog
Akamai Blog
added 2018/04/16 11:0 a.m.19 views

The Recipe for Web Performance Starts with the Right Ingredients: Page Construction Metrics

You can't manage what you can't measure. As devices grow in capacity and innovations allow us to do more with web apps, the complexity of our pages has grown, too. It becomes a balancing act to increase functionality while maintaining a performant and responsive site. Just like a great recipe, to...

0.3AI score
Exploits0
Akamai Blog
Akamai Blog
added 2017/06/15 12:12 p.m.21 views

Telegraph delivers better experience with Image Manager

The Telegraph Media Group TMG is a multi-media news publisher and its titles include The Daily Telegraph, The Sunday Telegraph and The Telegraph website. Today, its site serves more than 380 million pages to over 84 million unique visitors every month across the globe, featuring on average about...

6.7AI score
Exploits0
OpenVAS
OpenVAS
added 2017/03/03 12:0 a.m.37 views

RedHat Update for kernel RHSA-2017:0323-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.0596EPSS
Exploits13References2
Tenable Nessus
Tenable Nessus
added 2017/01/09 12:0 a.m.247 views

OpenSSH 7.x < 7.4 Multiple Vulnerabilities

Binary data 9855.prm...

7.8CVSS6.8AI score0.37431EPSS
Exploits9References6
Rows per page
Query Builder