Lucene search
K

188 matches found

OSV
OSV
added 2022/11/08 6:26 a.m.21 views

RLSA-2022:7700 Moderate: gdisk security update

The gdisk packages provide the gdisk partitioning utility for GUID Partition Table GPT disks. The utility features a command-line interface similar to fdisk, direct manipulation of partition table structures, recovery tools to deal with corrupt partition tables, and the ability to convert Master...

6.8CVSS6.9AI score0.00436EPSS
Exploits0References4
Spring Security Advisories
Spring Security Advisories
added 2022/07/31 5:3 p.m.31 views

How to integrate Hibernates Multitenant feature with Spring Data JPA in a Spring Boot application

For quite some time now, Hibernate has offered a Multitenant feature. It integrates nicely with Spring, but there is not much information about how to actually set it up, so I thought an example or two or three could help. There is already an excellent blog article, but it is a little dated and i...

Exploits0
Fedora
Fedora
added 2022/07/17 1:16 a.m.32 views

[SECURITY] Fedora 35 Update: ignition-2.14.0-3.fc35

Ignition is a utility used to manipulate systems during the initramfs. This includes partitioning disks, formatting partitions, writing files regular files, systemd units, etc., and configuring users. On first boot, Ignition reads its configuration from a source of truth remote URL, network...

9.3CVSS2.7AI score0.05994EPSS
Exploits4
Fedora
Fedora
added 2022/07/13 2:0 a.m.34 views

[SECURITY] Fedora 36 Update: ignition-2.14.0-2.fc36

Ignition is a utility used to manipulate systems during the initramfs. This includes partitioning disks, formatting partitions, writing files regular files, systemd units, etc., and configuring users. On first boot, Ignition reads its configuration from a source of truth remote URL, network...

9.3CVSS2.7AI score0.05335EPSS
Exploits4
Fedora
Fedora
added 2022/05/26 1:35 a.m.25 views

[SECURITY] Fedora 35 Update: ignition-2.14.0-1.fc35

Ignition is a utility used to manipulate systems during the initramfs. This includes partitioning disks, formatting partitions, writing files regular files, systemd units, etc., and configuring users. On first boot, Ignition reads its configuration from a source of truth remote URL, network...

6.5CVSS2.7AI score0.01158EPSS
Exploits0
Fedora
Fedora
added 2022/05/26 1:18 a.m.29 views

[SECURITY] Fedora 34 Update: ignition-2.14.0-1.fc34

Ignition is a utility used to manipulate systems during the initramfs. This includes partitioning disks, formatting partitions, writing files regular files, systemd units, etc., and configuring users. On first boot, Ignition reads its configuration from a source of truth remote URL, network...

6.5CVSS2.7AI score0.01158EPSS
Exploits0
Fedora
Fedora
added 2022/05/26 1:7 a.m.23 views

[SECURITY] Fedora 36 Update: ignition-2.14.0-1.fc36

Ignition is a utility used to manipulate systems during the initramfs. This includes partitioning disks, formatting partitions, writing files regular files, systemd units, etc., and configuring users. On first boot, Ignition reads its configuration from a source of truth remote URL, network...

6.5CVSS2.7AI score0.01158EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2022/05/17 2:37 a.m.34 views

phpMyAdmin Cross-site Scripting (XSS)

XSS issues were discovered in phpMyAdmin. This affects the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. All 4.6.x versions prior to 4.6.4 are affected...

6.1CVSS6.2AI score0.0128EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2022/05/17 2:37 a.m.21 views

GHSA-JFMJ-27FP-QP67 phpMyAdmin Cross-site Scripting (XSS)

XSS issues were discovered in phpMyAdmin. This affects the database privilege check and the "Remove partitioning" functionality. Specially crafted database names can trigger the XSS attack. All 4.6.x versions prior to 4.6.4 are affected...

6.1CVSS6.3AI score0.0128EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2022/05/17 2:36 a.m.35 views

phpMyAdmin DoS Vulnerability

An issue was discovered in phpMyAdmin. With a very large request to table partitioning function, it is possible to invoke a Denial of Service DoS attack. All 4.6.x versions prior to 4.6.5 are affected...

7.5CVSS7.3AI score0.01936EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2022/05/17 2:36 a.m.23 views

GHSA-QGRQ-64G6-MMH6 phpMyAdmin DoS Vulnerability

An issue was discovered in phpMyAdmin. With a very large request to table partitioning function, it is possible to invoke a Denial of Service DoS attack. All 4.6.x versions prior to 4.6.5 are affected...

7.5CVSS6.6AI score0.01936EPSS
Exploits0References5
NVD
NVD
added 2021/08/05 8:15 p.m.17 views

CVE-2021-29974

When network partitioning was enabled, e.g. as a result of Enhanced Tracking Protection settings, a TLS error page would allow the user to override an error on a domain which had specified HTTP Strict Transport Security which implies that the error should not be override-able. This issue did not...

4.3CVSS0.0084EPSS
Exploits0References3
OSV
OSV
added 2021/08/05 8:15 p.m.2 views

CVE-2021-29974

When network partitioning was enabled, e.g. as a result of Enhanced Tracking Protection settings, a TLS error page would allow the user to override an error on a domain which had specified HTTP Strict Transport Security which implies that the error should not be override-able. This issue did not...

4.3CVSS7.4AI score0.0084EPSS
Exploits0References3
Prion
Prion
added 2021/08/05 8:15 p.m.18 views

Design/Logic Flaw

When network partitioning was enabled, e.g. as a result of Enhanced Tracking Protection settings, a TLS error page would allow the user to override an error on a domain which had specified HTTP Strict Transport Security which implies that the error should not be override-able. This issue did not...

2.6CVSS4.6AI score0.0084EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2021/08/05 7:46 p.m.18 views

CVE-2021-29974

When network partitioning was enabled, e.g. as a result of Enhanced Tracking Protection settings, a TLS error page would allow the user to override an error on a domain which had specified HTTP Strict Transport Security which implies that the error should not be override-able. This issue did not...

5.8AI score0.0084EPSS
Exploits0References3
CVE
CVE
added 2021/08/05 7:46 p.m.173 views

CVE-2021-29974

CVE-2021-29974 affects Mozilla Firefox before 90. When network partitioning is enabled (e.g., via Enhanced Tracking Protection), a TLS error page could allow overriding an error on an HSTS domain, violating intended error handling. The issue does not affect network connections, which still upgrad...

4.3CVSS5.3AI score0.0084EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2021/08/05 7:46 p.m.32 views

CVE-2021-29974

When network partitioning was enabled, e.g. as a result of Enhanced Tracking Protection settings, a TLS error page would allow the user to override an error on a domain which had specified HTTP Strict Transport Security which implies that the error should not be override-able. This issue did not...

4.3CVSS7.1AI score0.0084EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/08/05 7:46 p.m.38 views

CVE-2021-29974

When network partitioning was enabled, e.g. as a result of Enhanced Tracking Protection settings, a TLS error page would allow the user to override an error on a domain which had specified HTTP Strict Transport Security which implies that the error should not be override-able. This issue did not...

4.3CVSS5.6AI score0.0084EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2021/07/15 12:0 a.m.32 views

CVE-2021-29974

When network partitioning was enabled, e.g. as a result of Enhanced Tracking Protection settings, a TLS error page would allow the user to override an error on a domain which had specified HTTP Strict Transport Security which implies that the error should not be override-able. This issue did not...

4.3CVSS6.7AI score0.0084EPSS
Exploits0References3
OSV
OSV
added 2021/07/15 12:0 a.m.1 views

UBUNTU-CVE-2021-29974

When network partitioning was enabled, e.g. as a result of Enhanced Tracking Protection settings, a TLS error page would allow the user to override an error on a domain which had specified HTTP Strict Transport Security which implies that the error should not be override-able. This issue did not...

4.3CVSS6.1AI score0.0084EPSS
Exploits0References4
Rows per page
Query Builder