Lucene search
K

18 matches found

Qualys Blog
Qualys Blog
added 2021/01/25 12:0 p.m.54 views

Building an Open Cloud Platform

Qualys Chairman and CEO Philippe Courtot kicked off Qualys Security Conference with an assessment of current security challenges and a clear call to action on how to successfully overcome them. “Today security is front and center, and as we move to the cloud, we must rethink security,” Courtot sa...

0.8AI score
Exploits0
Qualys Blog
Qualys Blog
added 2020/11/09 8:1 p.m.22 views

Building an Open Cloud Platform

Qualys Chairman and CEO Philippe Courtot kicked off QSC USA 2020, the company’s 20th annual user conference, with an assessment of current security challenges, and a clear call to action on how to successfully overcome them. “Today security is front and center, and as we move to the cloud, we mus...

0.9AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/06/26 12:0 a.m.3 views

The vulnerability of the Open Cloud Integrity Technology, which is used to create cloud services, and the OpenAttestation agent exists due to errors in path name restrictions for restricted access directories. This allows attackers to disclose protected information.

The vulnerability of the Open Cloud Integrity Technology, which is used to create cloud services, and the OpenAttestation agent exists due to errors in path name restrictions for restricted access directories. Exploiting this vulnerability could allow a attacker to disclose protected information...

3.3CVSS5.5AI score0.0026EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/06/26 12:0 a.m.4 views

The vulnerability of the Open Cloud Integrity Technology, which is used to create cloud services, and the OpenAttestation agent, arises from password handling issues during system login processes. This allows attackers to compromise the protected information.

The vulnerability of the Open Cloud Integrity Technology, which is used to create cloud services, and the OpenAttestation agent are related to password handling deficiencies during system login processes. Exploiting these vulnerabilities can allow attackers to disclose sensitive information that ...

3.3CVSS5.5AI score0.0026EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/06/26 12:0 a.m.6 views

The vulnerability of the Open Cloud Integrity Technology, a tool for creating cloud services, stems from password handling flaws during system login processes. This allows attackers to compromise the protected information.

The vulnerability of the Open Cloud Integrity Technology, a tool used for creating cloud services, is related to deficiencies in password handling during system login processes. Exploiting this vulnerability could allow attackers to disclose sensitive information that is protected by this...

4.4CVSS5.4AI score0.00252EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/06/21 12:0 a.m.4 views

The vulnerability of the Open Cloud Integrity Technology, a tool for creating cloud services, is related to the “race-to-availability” scenario, which allows a attacker to expose protected information.

The vulnerability of the Open Cloud Integrity Technology, which is used to create cloud services, stems from a “race-to-obtain” situation. Exploiting this vulnerability could allow an attacker to disclose protected information...

4.4CVSS5.5AI score0.00228EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2019/06/21 12:0 a.m.3 views

The vulnerability of the Open Cloud Integrity Technology, which is used to create cloud services, and the OpenAttestation agent, arises from errors in checking input data. This allows attackers to exploit these vulnerabilities to increase their privileges.

The vulnerability of the Open Cloud Integrity Technology, which is used to create cloud services, and the OpenAttestation agent are related to errors during the validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges by using specially crafted...

6.7CVSS5.5AI score0.0031EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/06/21 12:0 a.m.4 views

The vulnerability of the Open Cloud Integrity Technology, a tool for creating cloud services, lies in the insufficient password protection in configuration files, which allows attackers to disclose sensitive information.

The vulnerability of the Open Cloud Integrity Technology, which is used to create cloud services, is related to insufficient password protection in configuration files. Exploiting this vulnerability can allow attackers to disclose sensitive information...

4.4CVSS5.4AI score0.00252EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/06/21 12:0 a.m.3 views

The vulnerability of the Open Cloud Integrity Technology, a tool for creating cloud services, stems from deficiencies in access control within the certification database. This allows attackers to disclose protected information.

The vulnerability of the Open Cloud Integrity Technology, which is used to create cloud services, is related to deficiencies in access control within the certification database. Exploiting this vulnerability could allow attackers to disclose protected information...

4.4CVSS5.5AI score0.00252EPSS
Exploits0References4
CNVD
CNVD
added 2019/06/14 12:0 a.m.4 views

Intel Open Cloud Integrity Technology Input Validation Error Vulnerability

Intel Open Cloud Integrity Technology CIT is a set of solutions from Intel Corporation USA for establishing a hardware root of trust and building a chain of trust between hardware, operating systems, hypervisors, virtual machines and Docker containers. An input validation error vulnerability exis...

4.4CVSS7.1AI score0.00337EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/14 12:0 a.m.1 views

Intel Open Cloud Integrity Technology Information Disclosure Vulnerability

Intel Open Cloud Integrity Technology CIT is a set of solutions from Intel Corporation USA for establishing a hardware root of trust and building a chain of trust between hardware, operating systems, hypervisors, virtual machines and Docker containers. An information disclosure vulnerability exis...

3.3CVSS6AI score0.0026EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/14 12:0 a.m.2 views

Intel Open Cloud Integrity Technology Security Feature Issue Vulnerability (CNVD-2019-29211)

Intel Open Cloud Integrity Technology CIT is a set of solutions from Intel Corporation USA for establishing a hardware root of trust and building a chain of trust between hardware, operating systems, hypervisors, virtual machines and Docker containers. A security signature issue vulnerability...

4.4CVSS6.5AI score0.00252EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/14 12:0 a.m.5 views

Intel Open Cloud Integrity Technology Competitive Conditions Issue Vulnerability

Intel Open Cloud Integrity Technology CIT is a set of solutions from Intel Corporation USA for establishing a hardware root of trust and building a chain of trust between hardware, operating systems, hypervisors, virtual machines and Docker containers. A Competing Conditions Issue vulnerability...

3.6CVSS6.7AI score0.00228EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/14 12:0 a.m.4 views

Intel Open Cloud Integrity Technology Security Feature Issue Vulnerability (CNVD-2019-29213)

Intel Open Cloud Integrity Technology CIT is a set of solutions from Intel Corporation USA for establishing a hardware root of trust and building a chain of trust between hardware, operating systems, hypervisors, virtual machines and Docker containers. A security signature issue vulnerability...

4.4CVSS6.5AI score0.00252EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/14 12:0 a.m.3 views

Intel Open Cloud Integrity Technology and Intel OpenAttestation Input Validation Error Vulnerabilities

Intel Open Cloud Integrity Technology CIT and Intel OpenAttestation are both products of Intel Corporation, U.S.A. Intel Open Cloud Integrity Technology is a suite of programs for establishing a hardware root of trust and building a chain of trust between the hardware, operating systems,...

6.7CVSS7AI score0.0031EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/06/11 12:0 a.m.5 views

PT-2019-2402 · Intel · Open Cloud Integrity Technology +1

Name of the Vulnerable Software and Affected Versions: Open Cloud Integrity Technology affected versions not specified OpenAttestation affected versions not specified Description: The issue is related to errors in input validation in Open Cloud Integrity Technology and OpenAttestation. It may all...

6.7CVSS6.3AI score0.0031EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2019/06/11 12:0 a.m.4 views

PT-2019-2398 · Intel · Open Cloud Integrity Technology

Name of the Vulnerable Software and Affected Versions: Open Cloud Integrity Technology affected versions not specified Description: The issue is related to insufficient password protection in the attestation database for Open Cloud Integrity Technology, which may allow an authenticated user to...

4.4CVSS4.9AI score0.00252EPSS
Exploits0References6
Packet Storm
Packet Storm
added 2016/07/06 12:0 a.m.45 views

IBM BlueMix Cloud Script Insertion

Document Title: =============== IBM BlueMix Cloud - API Persistent Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1846 IBM Security Tracking ID: 5377-12593283 Release Date: ============= 2016-07-04 Vulnerability Laboratory ID VL-ID:...

7.4AI score
Exploits0
Rows per page
Query Builder