Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1115 matches found

Tenable Nessus
Tenable Nessusadded 2022/11/22 12:0 a.m.35 views

Oracle Linux 9 : grafana-pcp (ELSA-2022-8250)

The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-8250 advisory. 3.2.0-3 - bump NVR Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...

7.5CVSS7.2AI score0.01618EPSS
Exploits2References7
Tenable Nessus
Tenable Nessusadded 2022/11/22 12:0 a.m.60 views

Oracle Linux 9 : podman (ELSA-2022-7954)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-7954 advisory. 2:4.2.0-3.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.2.0-3 - fix dependency in test subpackage - Related:...

7.5CVSS7.3AI score0.07032EPSS
Exploits7References9
Tenable Nessus
Tenable Nessusadded 2022/11/16 12:0 a.m.41 views

RHEL 9 : grafana-pcp (RHSA-2022:8250)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:8250 advisory. The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and...

7.5CVSS7.2AI score0.01618EPSS
Exploits2References16
Tenable Nessus
Tenable Nessusadded 2022/11/16 12:0 a.m.36 views

RHEL 9 : toolbox (RHSA-2022:8098)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:8098 advisory. Toolbox is a tool for Linux operating systems, which allows the use of containerized command line environments. It is built on top of Podman...

7.5CVSS7.2AI score0.01618EPSS
Exploits1References13
Tenable Nessus
Tenable Nessusadded 2022/11/15 12:0 a.m.29 views

Oracle Linux 8 : container-tools:3.0 (ELSA-2022-7529)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-7529 advisory. - fixes CVE-2021-3602 - amend CVE-2022-1708 - fix CVE-2022-1708 - thanks to Peter Hunt - fix CVE-2022-27650 - fixes CVE-2021-3602 - rc95 fixes...

8.5CVSS7.3AI score0.06604EPSS
Exploits4References11
OpenVAS
OpenVASadded 2022/11/14 12:0 a.m.32 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2022-2731)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.3AI score0.89436EPSS
Exploits15References4
Tenable Nessus
Tenable Nessusadded 2022/11/12 12:0 a.m.43 views

AlmaLinux 8 : container-tools:3.0 (ALSA-2022:7529)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:7529 advisory. golang: net/http: improper sanitization of Transfer-Encoding header CVE-2022-1705 cri-o: memory exhaustion on the node when access to the kube api...

7.8CVSS7.3AI score0.05994EPSS
Exploits4References11
Tenable Nessus
Tenable Nessusadded 2022/11/09 12:0 a.m.33 views

RHEL 8 : grafana-pcp (RHSA-2022:7648)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:7648 advisory. The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and...

7.5CVSS7.2AI score0.01618EPSS
Exploits2References16
RedHat Linux
RedHat Linuxadded 2022/11/08 9:43 a.m.66 views

Moderate: Red Hat Security Advisory: container-tools:3.0 security update

An update for the container-tools:3.0 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

7.8CVSS6.9AI score0.05994EPSS
Exploits4References12
Rockylinux
Rockylinuxadded 2022/11/08 6:22 a.m.81 views

container-tools:3.0 security update

An update is available for fuse-overlayfs, container-selinux, udica, runc, toolbox, podman, conmon, skopeo, crun, libslirp, oci-seccomp-bpf-hook, slirp4netns, containernetworking-plugins, buildah, criu, cockpit-podman. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS...

7.8CVSS8.2AI score0.05994EPSS
Exploits4
Tenable Nessus
Tenable Nessusadded 2022/11/08 12:0 a.m.37 views

CentOS 8 : grafana-pcp (CESA-2022:7648)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2022:7648 advisory. - golang: net/http: improper sanitization of Transfer-Encoding header CVE-2022-1705 - golang: io/fs: stack exhaustion in Glob CVE-2022-30630 - golang:...

7.5CVSS7.1AI score0.01618EPSS
Exploits2References7
Tenable Nessus
Tenable Nessusadded 2022/11/04 12:0 a.m.45 views

EulerOS 2.0 SP5 : golang (EulerOS-SA-2022-2710)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In filepath.Clean in path/filepath in Go before 1.17.11 and 1.18.x before 1.18.3 on Windows, invalid paths such as .\c: could be converted to...

7.5CVSS7.2AI score0.0198EPSS
Exploits3References9
Tenable Nessus
Tenable Nessusadded 2022/11/04 12:0 a.m.26 views

Amazon Linux 2022 : golang, golang-bin, golang-misc (ALAS2022-2022-193)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-193 advisory. A flaw was found in golang. The HTTP/1 client accepted invalid Transfer-Encoding headers indicating chunked encoding. This issue could allow request smuggling, but only if combined with an...

9.8CVSS7.2AI score0.10299EPSS
Exploits9References49
Tenable Nessus
Tenable Nessusadded 2022/10/25 12:0 a.m.40 views

RHEL 8 : git-lfs (RHSA-2022:7129)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:7129 advisory. Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while...

7.5CVSS7.1AI score0.02513EPSS
Exploits5References21
AlmaLinux
AlmaLinuxadded 2022/10/25 12:0 a.m.38 views

Moderate: git-lfs security and bug fix update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang.org/x/text: Panic in language.ParseAcceptLanguage while parsing -u- extension...

7.5CVSS7.7AI score0.02513EPSS
Exploits5References20
Tenable Nessus
Tenable Nessusadded 2022/10/21 12:0 a.m.35 views

Amazon Linux 2 : golang-github-kr-pty (ALAS-2022-1864)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2022-1864 advisory. 2023-05-11: CVE-2022-1996 has changed status to NOT AFFECTED for this package and has been removed from this advisory. A flaw was found in golang. The HTTP/1 client accepted invalid...

9.3CVSS7.2AI score0.05292EPSS
Exploits7References32
Tenable Nessus
Tenable Nessusadded 2022/10/20 12:0 a.m.33 views

SUSE SLED15 / SLES15 Security Update : go1.18 (SUSE-SU-2022:3668-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3668-1 advisory. - Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could...

7.5CVSS7AI score0.01557EPSS
Exploits1References11
OpenVAS
OpenVASadded 2022/10/19 12:0 a.m.27 views

Mageia: Security Advisory (MGASA-2022-0377)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.01557EPSS
Exploits1References6
OSV
OSVadded 2022/10/14 3:15 p.m.21 views

CVE-2022-2880

Requests forwarded by ReverseProxy include the raw query parameters from the inbound request, including unparsable parameters rejected by net/http. This could permit query parameter smuggling when a Go proxy forwards a parameter with an unparsable value. After fix, ReverseProxy sanitizes the quer...

7.5CVSS7.4AI score
Exploits0References5
Prion
Prionadded 2022/10/14 3:15 p.m.21 views

Design/Logic Flaw

Requests forwarded by ReverseProxy include the raw query parameters from the inbound request, including unparsable parameters rejected by net/http. This could permit query parameter smuggling when a Go proxy forwards a parameter with an unparsable value. After fix, ReverseProxy sanitizes the quer...

5CVSS7.5AI score0.01094EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder