Lucene search
K

3662 matches found

NVD
NVD
added 2019/03/14 8:29 p.m.24 views

CVE-2019-0121

Improper permissions in IntelR Matrix Storage Manager 8.9.0.1023 and before may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8CVSS7.8AI score0.00358EPSS
Exploits0References2
Prion
Prion
added 2019/03/14 8:29 p.m.12 views

Input validation

Improper permissions in IntelR Matrix Storage Manager 8.9.0.1023 and before may allow an authenticated user to potentially enable escalation of privilege via local access...

4.6CVSS7.7AI score0.00358EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/03/14 8:0 p.m.82 views

CVE-2019-0121

CVE-2019-0121 affects Intel Matrix Storage Manager (MSM) ≤ 8.9.0.1023. The issue is improper permissions that could allow an authenticated, local attacker to escalate privileges. Affected product is MSM as listed in Intel’s advisory (Intel‑SA‑00216) with CVSS‑3.0 vector AV:L/AC:L/PR:L/UI:N/S:C/C:...

7.8CVSS7.7AI score0.00358EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/03/14 8:0 p.m.19 views

CVE-2019-0121

Improper permissions in IntelR Matrix Storage Manager 8.9.0.1023 and before may allow an authenticated user to potentially enable escalation of privilege via local access...

7.8AI score0.00358EPSS
Exploits0References2
NVD
NVD
added 2019/03/08 9:29 p.m.18 views

CVE-2019-1003031

A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM...

9.9CVSS9.8AI score0.03394EPSS
Exploits0References3
Prion
Prion
added 2019/03/08 9:29 p.m.22 views

Security feature bypass

A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM...

6.5CVSS9.7AI score0.03394EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2019/03/08 9:29 p.m.20 views

CVE-2019-1003031

A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM...

9.9CVSS7.5AI score
Exploits0References3
Cvelist
Cvelist
added 2019/03/08 9:0 p.m.23 views

CVE-2019-1003031

A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM...

9.8AI score0.03394EPSS
Exploits0References3
EUVD
EUVD
added 2019/03/08 9:0 p.m.4 views

EUVD-2022-5059

A sandbox bypass vulnerability exists in Jenkins Matrix Project Plugin 1.13 and earlier in pom.xml, src/main/java/hudson/matrix/FilterScript.java that allows attackers with Job/Configure permission to execute arbitrary code on the Jenkins master JVM...

9.9CVSS9.4AI score0.03394EPSS
Exploits0References6
CVE
CVE
added 2019/03/08 9:0 p.m.98 views

CVE-2019-1003031

CVE-2019-1003031 describes a sandbox bypass in the Jenkins Matrix Project Plugin (versions up to 1.13) where an attacker with Job/Configure permission can execute arbitrary code on the Jenkins master JVM via FilterScript.java. This undermines containment of code execution with high impact on conf...

9.9CVSS9.6AI score0.03394EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2019/03/08 12:0 a.m.4 views

PT-2019-2301 · Jenkins · Jenkins Matrix Project Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Matrix Project Plugin versions 1.13 and earlier Description: A sandbox bypass issue exists, related to errors in input data processing during code parsing in components such as pom.xml and FilterScript.java. This allows attackers with...

9.9CVSS9.3AI score0.03394EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2019/02/11 12:0 a.m.19 views

Schneider Electric MatriX Detection (Windows SMB Login)

SMB login-based detection of Schneider Electric MatriX. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3AI score
Exploits0References1
ArchLinux
ArchLinux
added 2019/01/24 12:0 a.m.30 views

[ASA-201901-12] matrix-synapse: private key recovery

Arch Linux Security Advisory ASA-201901-12 ========================================== Severity: High Date : 2019-01-24 CVE-ID : CVE-2019-5885 Package : matrix-synapse Type : private key recovery Remote : No Link : https://security.archlinux.org/AVG-846 Summary ======= The package matrix-synapse...

7.5CVSS1.3AI score0.02418EPSS
Exploits0References3
Fedora
Fedora
added 2019/01/23 1:46 a.m.45 views

[SECURITY] Fedora 28 Update: matrix-synapse-0.34.0.1-2.fc28

Matrix is an ambitious new ecosystem for open federated Instant Messaging a nd VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is inten ded to showcase the concept of Matrix and let folks see the spec i...

7.5CVSS0.7AI score0.02418EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/01/23 12:0 a.m.27 views

Fedora 29 : matrix-synapse (2019-4d914f9257)

Fix for CVE-2019-5885 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security,...

7.5CVSS7.4AI score0.02418EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/01/23 12:0 a.m.27 views

Fedora Update for matrix-synapse FEDORA-2019-c6044b3fce

The remote host is missing an update for the SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.02418EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/01/23 12:0 a.m.27 views

Fedora 28 : matrix-synapse (2019-c6044b3fce)

Fix for CVE-2019-5885 Upgrade notes available at https://github.com/matrix-org/synapse/blob/v0.34.0/UPGRADE.rstupgradi ng-to-v0340 - Note this continues to use Python 2. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...

7.5CVSS7.4AI score0.02418EPSS
Exploits0References3
Fedora
Fedora
added 2019/01/22 5:43 p.m.36 views

[SECURITY] Fedora 29 Update: matrix-synapse-0.34.0.1-1.fc29

Matrix is an ambitious new ecosystem for open federated Instant Messaging a nd VoIP. Synapse is a reference "homeserver" implementation of Matrix from the core development team at matrix.org, written in Python/Twisted. It is inten ded to showcase the concept of Matrix and let folks see the spec i...

7.5CVSS0.7AI score0.02418EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/01/16 12:0 a.m.37 views

FreeBSD : py-matrix-synapse -- undisclosed vulnerability (383931ba-1818-11e9-92ea-448a5b29e8a9)

Matrix developers report : The matrix team announces the availablility of synapse security releases 0.34.0.1 and 0.34.1.1, fixing CVE-2019-5885. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright...

7.5CVSS7.5AI score0.02418EPSS
Exploits0References3
0day.today
0day.today
added 2019/01/11 12:0 a.m.20 views

MLMPro 1.0 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Matrix MLM Script 1.0 - SQL Injection Exploit Author: Ihsan Sencan Vendor Homepage: https://royallifefoundation.org/ Software Link: https://codecanyon.net/item/mlmpro-multistage-forced-matrix-mlm-script/23050292 Version: 1.0...

0.1AI score
Exploits0
Rows per page
Query Builder