Lucene search
K

56 matches found

Positive Technologies
Positive Technologies
added 2022/07/05 12:0 a.m.4 views

PT-2022-3652 · Fortinet · Fortimanager +3

Name of the Vulnerable Software and Affected Versions: FortiAnalyzer versions 7.0.2 and below, 6.4.7 and below, 6.2.9 and below, 6.0.11 and below, 5.6.11 and below FortiManager versions 7.0.2 and below, 6.4.7 and below, 6.2.9 and below, 6.0.11 and below, 5.6.11 and below FortiOS versions 7.0.0...

6.8CVSS6.8AI score0.00179EPSS
Exploits0References12
Code423n4
Code423n4
added 2022/01/16 12:0 a.m.10 views

L1Migrator.migrateETH can be used to take away protocol's access to funds

Handle Ruhum Vulnerability details Impact The L1Migrator.migrateETH function can be called by anyone. It pulls all the ETH from the BridgeMinter contract and starts the process of moving the funds to L2. First of all, this function is only executable once. The RetryableTicket created with the fir...

6.7AI score
Exploits0
OSV
OSV
added 2021/10/20 11:17 a.m.5 views

UBUNTU-CVE-2021-35607

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of...

6.5CVSS6.7AI score0.02484EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/10/19 12:0 a.m.4 views

Oracle E-Business Suite 安全漏洞

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management, and other functions. A security vulnerability exists in the Oracle Payabl...

8.5CVSS8.1AI score0.01125EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/09/18 12:0 a.m.5 views

Teleport授权问题漏洞

Teleport is an identity-aware, multi-protocol access agent from Teleport USA, Inc. Used by engineers and security professionals to unify access to SSH servers, Kubernetes clusters, web applications, and databases across all environments, Teleport suffers from an authorization issue vulnerability...

9.8CVSS8.3AI score0.01067EPSS
Exploits0References4
ICS
ICS
added 2021/08/31 12:0 a.m.88 views

FANUC Robot Controllers (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION: Exploitable remotely Vendor: FANUC Equipment: R-30iA and R-30iB series controllers Vulnerabilities: Integer Coercion Error, Out-of-bounds Write 2. UPDATE INFORMATION This advisory is a follow-up to the original advisory titled ICSA-21-243-02P FANUC...

8.8CVSS8.6AI score0.01183EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/04/20 12:0 a.m.4 views

Oracle E-Business Suite Oracle Trade Management Quotes 安全漏洞

Oracle E-Business Suite is an extension of the original Application ERP, including ERP Enterprise Resource Planning, HR Human Resource Management, CRM Customer Relationship Management and so on, a collection of management software, is seamlessly integrated with a management suite.Oracle Trade...

8.2CVSS5.6AI score0.00933EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/04/20 12:0 a.m.5 views

多款 Oracle 产品输入验证错误漏洞

Oracle Java SE Embedded is a Java platform for portable applications for embedded systems from Oracle Corporation USA. Libraries component in Oracle GraalVM Enterprise Edition is incorrectly validated. It allows an unauthenticated attacker to access the network via multiple protocols, thereby...

5.9CVSS8.4AI score0.03125EPSS
Exploits0References68
Microsoft CVE
Microsoft CVE
added 2020/10/27 7:0 a.m.0 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).

...

6.8CVSS7AI score0.0202EPSS
Exploits0
OSV
OSV
added 2019/11/05 2:15 p.m.5 views

UBUNTU-CVE-2019-17221

PhantomJS through 2.1.1 has an arbitrary file read vulnerability, as demonstrated by an XMLHttpRequest for a file:// URI. The vulnerability exists in the page.open function of the webpage module, which loads a specified URL and calls a given callback. An attacker can supply a specially crafted HT...

7.5CVSS7.2AI score0.03424EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2019/05/10 9:5 a.m.29 views

Security Bulletin: A vulnerability has been identified in IBM Spectrum Scale with CES stack enabled that could allow sensitive data to be included with service snaps. This data could be sent to IBM during service engagements (CVE-2019-4259)

Summary A security vulnerability has been identified in IBM Spectrum Scale with CES stack enabled that could allow sensitive data to be included with service snaps. This data could be sent to IBM during service engagements CVE-2019-4259 Vulnerability Details Deployments with protocol access metho...

5.5CVSS1AI score0.00353EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/11/29 12:0 a.m.95 views

FreeBSD : payara -- Multiple vulnerabilities (d70c9e18-f340-11e8-be46-0019dbb15b3f)

Apache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation Remote Code Execution. Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware subcomponent: Administration. Supported versions that are affected are 3.0.1 and 3.1.2. Easily exploitable vulnerability...

9.8CVSS6.7AI score0.34731EPSS
Exploits0References8
OSV
OSV
added 2017/10/19 5:29 p.m.3 views

CVE-2017-10161

Vulnerability in the Oracle Engineering Data Management component of Oracle Supply Chain Products Suite subcomponent: Web Services Security. Supported versions that are affected are 6.1.3.0 and 6.2.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTT...

4.8CVSS7.3AI score0.00897EPSS
Exploits0References2
OSV
OSV
added 2017/08/08 3:29 p.m.4 views

CVE-2017-10179

Vulnerability in the Application Management Pack for Oracle E-Business Suite component of Oracle E-Business Suite subcomponent: User Monitoring. Supported versions that are affected are AMP 12.1.0.4.0 and AMP 13.1.1.1.0. Easily exploitable vulnerability allows unauthenticated attacker with networ...

6.5CVSS7.3AI score0.01646EPSS
Exploits0References3
OSV
OSV
added 2017/04/24 7:59 p.m.5 views

CVE-2017-3482

Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications subcomponent: Infrastructure. Supported versions that are affected are 12.0.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0 and 12.3.0. Easily "exploitable" vulnerability allows low privileged...

5.4CVSS5.8AI score0.00947EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2007/02/23 9:6 p.m.5 views

security flaw

Cross-zone vulnerability in Mozilla Firefox 1.5.0.9 considers blocked popups to have an internal zone origin, which allows user-assisted remote attackers to cross zone restrictions and read arbitrary file:// URIs by convincing a user to show a blocked popup...

4.3CVSS7.2AI score0.0167EPSS
Exploits1References4
Rows per page
Query Builder