Lucene search
K

1155 matches found

BDU FSTEC
BDU FSTEC
added 2020/02/17 12:0 a.m.4 views

The vulnerability of the PIA Core Technology component of the PeopleSoft Enterprise PeopleTools business application suite allows a hacker to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the PIA Core Technology component in the PeopleSoft Enterprise PeopleTools business application suite is related to access control deficiencies. Exploiting this vulnerability could allow an attacker to gain access to modify, add, or delete data, or to unauthorizedly access...

6.1CVSS6.7AI score0.01042EPSS
Exploits0References3Affected Software1
Kitploit
Kitploit
added 2020/02/15 9:0 p.m.256 views

Fuzzowski - The Network Protocol Fuzzer That We Will Want To Use

The idea is to be the Network Protocol Fuzzer that we will want to use. The aim of this tool is to assist during the whole process of fuzzing a network protocol, allowing to define the communications, helping to identify the "suspects" of crashing a service, and much more Last Changes 16/12/2019...

7.7AI score
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.6 views

The vulnerability of the Cloud Control Manager component – a software platform of the Enterprise Manager Base Platform – allows a malicious individual to gain access to modify, add, or delete data, gain unauthorized access to protected information, or cause service failures.

The vulnerability of the Cloud Control Manager component – a software platform of the Enterprise Manager Base Platform – is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, gain unauthorized acces...

8CVSS6.6AI score0.01388EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.4 views

Vulnerability of the Server component: The MySQL Server database management system’s Parser component, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component, which is part of the database management system, is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL network protocol...

7.8CVSS6.7AI score0.02055EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.5 views

The vulnerability of the Enterprise Config Management component of the Enterprise Manager Base Platform allows a malicious individual to gain access to modify, add, or delete data, to gain unauthorized access to protected information, or to cause service failures.

The vulnerability of the Enterprise Config Management component of the Enterprise Manager Base Platform is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to modify, add, or delete data, gain unauthorized access to protected...

8.6CVSS6.6AI score0.01205EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.5 views

The vulnerability of the C API component of the MySQL Database Management System client, which allows a hacker to trigger a service failure.

The vulnerability of the C API component of the MySQL Database Management System client is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the MySQL network protocol...

5.9CVSS6.6AI score0.03006EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/02/06 12:0 a.m.6 views

The vulnerability of component C of the MySQL Client database management system allows a hacker to trigger a service failure.

The vulnerability of the C API of the MySQL database management system’s client is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the MySQL network protocol...

7.1CVSS6.6AI score0.0293EPSS
Exploits0References2Affected Software2
NVD
NVD
added 2020/02/05 6:15 p.m.18 views

CVE-2020-3120

A vulnerability in the Cisco Discovery Protocol implementation for Cisco FXOS Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service DoS condition. The vulnerability is d...

7.4CVSS6.6AI score0.02026EPSS
Exploits0References2
ThreatPost
ThreatPost
added 2020/02/05 4:0 p.m.211 views

Critical Cisco 'CDPwn' Protocol Flaws Explained: Podcast

Researchers on Wednesday disclosed five critical vulnerabilities in Cisco Discovery Protocol CDP, the Cisco Proprietary Layer 2 network protocol that is used to discover information about locally attached Cisco equipment. Researchers say that the vulnerabilities, which they collectively call CDPw...

8.3CVSS0.2AI score0.26869EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2020/02/03 12:0 a.m.6 views

The vulnerability of the Enterprise Manager for Oracle Database component (Change Manager – web-based) of the Oracle Enterprise Manager software platform allows a malicious individual to gain unauthorized access to protected information or cause service failures.

The vulnerability of the Enterprise Manager for Oracle Database’s Change Manager web-based software platform is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information or cause service failures usi...

6.5CVSS6.6AI score0.01159EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/02/03 12:0 a.m.3 views

The vulnerability of the Java Secure Socket Extension (JSSE) component in Oracle Java SE software allows a perpetrator to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the Java Secure Socket Extension JSSE in Oracle Java SE software platforms is related to lack of access control mechanisms. Exploiting this vulnerability could allow an attacker to modify, add, or delete data, or gain unauthorized access to protected information using the HTT...

5.8CVSS6.5AI score0.03132EPSS
Exploits0References6Affected Software10
BDU FSTEC
BDU FSTEC
added 2020/02/03 12:0 a.m.5 views

The vulnerability of the Libraries component in Oracle Java SE software platforms allows a perpetrator to trigger a service failure.

The vulnerability of the Libraries component in Oracle Java SE software platforms is related to lack of access control. Exploiting this vulnerability could allow an attacker to cause service interruptions using network protocols...

4.3CVSS6.4AI score0.03299EPSS
Exploits0References7Affected Software16
BDU FSTEC
BDU FSTEC
added 2020/02/03 12:0 a.m.5 views

Vulnerability of the Server: Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component of the database management system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker, operating remotely, to cause downtime or service failures using the MySQL network protocol...

4.9CVSS6.3AI score0.01878EPSS
Exploits0References3Affected Software2
Tenable Nessus
Tenable Nessus
added 2020/01/21 12:0 a.m.53 views

Debian DLA-2068-1 : linux security update

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service, or information leak. CVE-2019-2215 The syzkaller tool discovered a use-after-free vulnerability in the Android binder driver. A local user on a system with this driver...

10CVSS8.1AI score0.72105EPSS
Exploits34References43
OSV
OSV
added 2020/01/07 11:15 p.m.1 views

CVE-2019-17146

This vulnerability allows remote attackers to execute arbitrary code on affected installations of D-Link DCS-960L v1.07.102. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HNAP service, which listens on TCP port 80 by default. When parsing the...

9.8CVSS7.7AI score0.09532EPSS
Exploits0References2
OSV
OSV
added 2019/12/30 5:15 a.m.3 views

UBUNTU-CVE-2019-20096

In the Linux kernel before 5.1, there is a memory leak in featregistersp in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b...

5.5CVSS6.7AI score0.00994EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2019/12/17 12:0 a.m.6 views

The vulnerability of the Server:Optimizer component of the Oracle MySQL database management system allows a hacker to cause a service failure.

The vulnerability of the Server:Optimizer component of the Oracle MySQL database management system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the MySQL network protocol...

6.8CVSS7AI score0.03952EPSS
Exploits0References18Affected Software7
BDU FSTEC
BDU FSTEC
added 2019/12/17 12:0 a.m.4 views

The vulnerability of the Server:Optimizer component of the Oracle MySQL database management system allows a hacker to cause a service failure.

The vulnerability of the Server:Optimizer component of the Oracle MySQL database management system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the MySQL network protocol...

6.8CVSS6.6AI score0.03952EPSS
Exploits0References17Affected Software6
BDU FSTEC
BDU FSTEC
added 2019/12/17 12:0 a.m.4 views

The vulnerability of the Server:Optimizer component of the Oracle MySQL database management system allows a hacker to cause a service failure.

The vulnerability of the Server:Optimizer component of the Oracle MySQL database management system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the MySQL network protocol...

6.8CVSS6.7AI score0.03952EPSS
Exploits0References18Affected Software7
RedHat Linux
RedHat Linux
added 2019/12/02 5:4 p.m.5 views

HTTP/2: flood using PING frames results in unbounded memory growth

A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability...

7.8CVSS7.1AI score0.83433EPSS
Exploits1References9
Rows per page
Query Builder