Lucene search
+L

310 matches found

Prion
Prion
added 2019/11/07 4:15 p.m.13 views

Directory traversal

Portainer before 1.22.1 allows Directory Traversal...

5CVSS7.6AI score0.01352EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/11/07 4:15 p.m.11 views

Design/Logic Flaw

Portainer before 1.22.1 has Incorrect Access Control issue 4 of 4...

6.5CVSS8.7AI score0.01036EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/11/07 3:15 p.m.18 views

CVE-2019-16874

Portainer before 1.22.1 has Incorrect Access Control issue 2 of 4...

6.5CVSS6.6AI score0.0089EPSS
Exploits0References1
OSV
OSV
added 2019/11/07 3:15 p.m.14 views

CVE-2019-16873

Portainer before 1.22.1 has XSS issue 1 of 2...

5.4CVSS6AI score
Exploits0References1
OSV
OSV
added 2019/11/07 3:15 p.m.15 views

CVE-2019-16874

Portainer before 1.22.1 has Incorrect Access Control issue 2 of 4...

6.5CVSS6.9AI score
Exploits0References1
NVD
NVD
added 2019/11/07 3:15 p.m.13 views

CVE-2019-16873

Portainer before 1.22.1 has XSS issue 1 of 2...

5.4CVSS5.3AI score0.00521EPSS
Exploits0References1
Prion
Prion
added 2019/11/07 3:15 p.m.14 views

Cross site scripting

Portainer before 1.22.1 has XSS issue 1 of 2...

3.5CVSS5.3AI score0.00521EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/11/07 3:15 p.m.15 views

Improper access control

Portainer before 1.22.1 has Incorrect Access Control issue 2 of 4...

4CVSS6.6AI score0.0089EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/11/07 3:13 p.m.58 views

CVE-2019-16877

Portainer (Portainer app) before version 1.22.1 contains an access control flaw described as an Incorrect Access Control issue (issue 4 of 4). The CNVD entry notes that an attacker could gain full privileges to the host filesystem via the Host Management API. A fix is to upgrade Portainer to 1.22...

8.8CVSS8.7AI score0.01036EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/11/07 3:13 p.m.18 views

CVE-2019-16877

Portainer before 1.22.1 has Incorrect Access Control issue 4 of 4...

9.2AI score0.01036EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/11/07 3:11 p.m.17 views

CVE-2019-16878

Portainer before 1.22.1 has XSS issue 2 of 2...

6.3AI score0.00516EPSS
Exploits0References1
CVE
CVE
added 2019/11/07 3:11 p.m.54 views

CVE-2019-16878

CVE-2019-16878 applies to Portainer before 1.22.1, with a cross-site scripting (XSS) vulnerability. The issue allows an attacker to inject arbitrary JavaScript into Portainer pages viewed by other users. Affected software: Portainer (before 1.22.1). Root cause: XSS in the Portainer UI. Impact: de...

5.4CVSS5.6AI score0.00516EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/11/07 3:9 p.m.15 views

CVE-2019-16876

Portainer before 1.22.1 allows Directory Traversal...

8.1AI score0.01352EPSS
Exploits0References1
CVE
CVE
added 2019/11/07 3:9 p.m.54 views

CVE-2019-16876

Portainer before 1.22.1 is affected by a directory traversal vulnerability (CVE-2019-16876). Multiple connected sources explicitly state the issue exists in Portainer versions prior to 1.22.1 and describe the vulnerability as directory traversal, with CNVD explicitly noting an attacker could uplo...

7.5CVSS7.6AI score0.01352EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/11/07 3:4 p.m.18 views

CVE-2019-16872

Portainer before 1.22.1 has Incorrect Access Control issue 1 of 4...

9.6AI score0.01355EPSS
Exploits0References1
CVE
CVE
added 2019/11/07 3:4 p.m.75 views

CVE-2019-16872

Portainer

9.9CVSS9.5AI score0.01355EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/11/07 2:51 p.m.20 views

CVE-2019-16874

Portainer before 1.22.1 has Incorrect Access Control issue 2 of 4...

7.3AI score0.0089EPSS
Exploits0References1
CVE
CVE
added 2019/11/07 2:51 p.m.53 views

CVE-2019-16874

Portainer before 1.22.1 has Incorrect Access Control (RBAC extension). This vulnerability could allow access to sensitive information via the bulk browsing feature. Remediation: upgrade to Portainer 1.22.1 or later.

6.5CVSS6.8AI score0.0089EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/11/07 2:47 p.m.45 views

CVE-2019-16873

Portainer (CVE-2019-16873) affects versions prior to 1.22.1 and involves a cross-site scripting (XSS) vulnerability in the ist even-multi-select component. The CNVD-2019-40484 description states an attacker can exploit this to inject arbitrary JavaScript into Portainer pages viewed by other users...

5.4CVSS5.6AI score0.00521EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/11/07 2:47 p.m.15 views

CVE-2019-16873

Portainer before 1.22.1 has XSS issue 1 of 2...

6.3AI score0.00521EPSS
Exploits0References1
Rows per page
Query Builder