Lucene search
K

188 matches found

OSV
OSV
added 2016/12/11 2:59 a.m.9 views

CVE-2016-6608

XSS issues were discovered in phpMyAdmin. This affects the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. All 4.6.x versions prior to 4.6.4 are affected...

6.1CVSS6AI score
Exploits0References3
Prion
Prion
added 2016/12/11 2:59 a.m.20 views

Cross site scripting

XSS issues were discovered in phpMyAdmin. This affects the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. All 4.6.x versions prior to 4.6.4 are affected...

4.3CVSS6AI score0.0128EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2016/12/11 2:0 a.m.88 views

CVE-2016-6608

CVE-2016-6608 refers to a Cross-site Scripting (XSS) vulnerability in phpMyAdmin affecting 4.6.x versions prior to 4.6.4, specifically impacting the database privilege check and the Remove partitioning functionality via specially crafted database names. The issue is rooted in input validation tha...

6.1CVSS6.1AI score0.0128EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2016/12/11 2:0 a.m.37 views

CVE-2016-9863

An issue was discovered in phpMyAdmin. With a very large request to table partitioning function, it is possible to invoke a Denial of Service DoS attack. All 4.6.x versions prior to 4.6.5 are affected...

7.3AI score0.01936EPSS
Exploits0References3
Cvelist
Cvelist
added 2016/12/11 2:0 a.m.30 views

CVE-2016-6608

XSS issues were discovered in phpMyAdmin. This affects the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. All 4.6.x versions prior to 4.6.4 are affected...

6.3AI score0.0128EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2016/12/11 2:0 a.m.34 views

CVE-2016-6608

XSS issues were discovered in phpMyAdmin. This affects the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. All 4.6.x versions prior to 4.6.4 are affected...

6.1CVSS6.4AI score0.0128EPSS
Exploits0
Debian CVE
Debian CVE
added 2016/12/11 2:0 a.m.34 views

CVE-2016-9863

An issue was discovered in phpMyAdmin. With a very large request to table partitioning function, it is possible to invoke a Denial of Service DoS attack. All 4.6.x versions prior to 4.6.5 are affected...

7.5CVSS7.4AI score0.01936EPSS
Exploits0
Debian CVE
Debian CVE
added 2016/12/11 2:0 a.m.33 views

CVE-2016-6608

XSS issues were discovered in phpMyAdmin. This affects the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. All 4.6.x versions prior to 4.6.4 are affected...

6.1CVSS6.8AI score0.0128EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/12/01 12:0 a.m.14 views

Fedora 25 : calamares (2016-561a937494)

A security update that fixes Calamares bug CAL-405: https://calamares.io/bugs/browse/CAL-405 When installing with a LUKS-encrypted / partition, Calamares was always creating a keyfile to decode / and storing it in the initramfs. It did that even with an unencrypted separate /boot partition. As a...

5.5AI score
Exploits0References1
phpMyAdmin
phpMyAdmin
added 2016/11/25 12:0 a.m.66 views

DOS vulnerability in table partitioning

PMASA-2016-68 Announcement-ID: PMASA-2016-68 Date: 2016-11-25 Updated: 2016-12-06 Summary DOS vulnerability in table partitioning Description With a very large request to table partitioning function, it is possible to invoke a Denial of Service DOS attack. Severity We consider this vulnerability ...

7.5CVSS7AI score0.01936EPSS
Exploits0Affected Software1
NVD
NVD
added 2016/07/22 2:59 p.m.17 views

CVE-2016-6224

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a 1 NVMe or 2 MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an...

3.3CVSS3.2AI score0.00373EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2016/07/22 2:59 p.m.25 views

CVE-2016-6224

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a 1 NVMe or 2 MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an...

3.3CVSS5.9AI score0.00373EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/07/22 2:59 p.m.23 views

CVE-2015-8946

ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors...

3.3CVSS5.9AI score0.00353EPSS
Exploits0References1
Prion
Prion
added 2016/07/22 2:59 p.m.16 views

Design/Logic Flaw

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a 1 NVMe or 2 MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an...

2.1CVSS3.6AI score0.00373EPSS
Exploits0References7Affected Software2
NVD
NVD
added 2016/07/22 2:59 p.m.21 views

CVE-2015-8946

ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors...

3.3CVSS3.2AI score0.00353EPSS
Exploits0References5
Prion
Prion
added 2016/07/22 2:59 p.m.18 views

Information disclosure

ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors...

2.1CVSS6.1AI score0.00353EPSS
Exploits0References5Affected Software2
Cvelist
Cvelist
added 2016/07/22 2:0 p.m.25 views

CVE-2015-8946

ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors...

3.1AI score0.00353EPSS
Exploits0References5
CVE
CVE
added 2016/07/22 2:0 p.m.56 views

CVE-2015-8946

Summary : CVE-2015-8946 affects the ecryptfs-utils package (eCryptfs) and its helper, specifically the swap setup in ecryptfs-setup-swap. The issue occurs when using GPT partitioning (and in some cases with certain systemd versions), where encrypted swap is not properly configured, potentially al...

3.3CVSS3.2AI score0.00353EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2016/07/22 2:0 p.m.48 views

CVE-2016-6224

The CVE-2016-6224 issue affects the ecryptfs-utils package (ecryptfs-setup-swap) and stems from an incomplete fix for CVE-2015-8946. Affects systems using GPT with NVMe or MMC drives; boot may activate an unencrypted swap, leading to potential exposure of sensitive data. Multiple distributions (F...

3.3CVSS3.3AI score0.00373EPSS
Exploits0References7Affected Software1
RedhatCVE
RedhatCVE
added 2016/07/15 7:18 a.m.25 views

CVE-2016-6224

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a 1 NVMe or 2 MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an...

4.7CVSS4AI score0.00373EPSS
Exploits0References1
Rows per page
Query Builder