Lucene search
+L

96 matches found

ATTACKERKB
ATTACKERKB
added 2021/10/12 4:15 p.m.3 views

CVE-2021-37734

A remote unauthorized read access to files vulnerability was discovered in Aruba Instant versions: 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.19 and below; Aruba Instant 8.5.x.x: 8.5.0.12 and below; Aruba Instant 8.6.x.x: 8.6.0.11 and below; Aruba Instant 8.7.x.x: 8.7.1.3 a...

6.5CVSS5.5AI score0.00946EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2021/09/21 10:13 a.m.5 views

mysql: Information Schema unspecified vulnerability (CPU Jan 2021)

Vulnerability in the MySQL Server product of Oracle MySQL component: Information Schema. Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL...

4.3CVSS7.1AI score0.01588EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2021/08/30 8:5 a.m.2 views

OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows...

4.3CVSS7.4AI score0.04238EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/07/22 3:8 p.m.4 views

OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows...

4.3CVSS7.4AI score0.04238EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2021/01/20 3:15 p.m.2 views

CVE-2021-2032

Vulnerability in the MySQL Server product of Oracle MySQL component: Information Schema. Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL...

4.3CVSS6.7AI score0.01588EPSS
Exploits0References4Affected Software1
RedHat Linux
RedHat Linux
added 2020/12/22 10:49 a.m.3 views

mysql: C API unspecified vulnerability (CPU Apr 2020)

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise...

4.3CVSS6.7AI score0.02436EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/11/30 1:47 p.m.6 views

mysql: C API unspecified vulnerability (CPU Jan 2021)

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise...

4.3CVSS6.7AI score0.02272EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2020/10/20 12:0 a.m.6 views

PT-2020-4501

Name of the Vulnerable Software and Affected Versions Java SE versions 7u271, 8u261, 11.0.8, and 15 Java SE Embedded version 8u261 Description The issue is related to insufficient input validation in the JNDI component of Java SE and Java SE Embedded. It allows an unauthenticated attacker with...

8.3CVSS7.2AI score0.37618EPSS
Exploits0References283
RedHat Linux
RedHat Linux
added 2020/08/19 2:10 p.m.5 views

mysql: C API unspecified vulnerability (CPU Apr 2020)

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise...

4.3CVSS6.7AI score0.02436EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2020/06/02 12:0 a.m.6 views

The vulnerability of the application policy configuration of Cisco Firepower Threat Defense allows a attacker to gain read access to data.

The vulnerability of Cisco Firepower Threat Defense’s application policy configuration is related to lack of access control. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain read-only access to data by creating traffic on the vulnerable device...

7.8CVSS6.5AI score0.01061EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2020/05/19 3:15 p.m.3 views

UBUNTU-CVE-2020-8021

a Improper Access Control vulnerability in of Open Build Service allows remote attackers to read files of an OBS package where the sourceaccess/access is disabled This issue affects: Open Build Service versions prior to 2.10.5...

5.3CVSS6.1AI score0.01267EPSS
Exploits1References3
OSV
OSV
added 2019/10/16 6:15 p.m.5 views

UBUNTU-CVE-2019-2922

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Encryption. Supported versions that are affected are 5.6.45 and prior and 5.7.27 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to...

5.3CVSS6.6AI score0.02211EPSS
Exploits0References5
OSV
OSV
added 2019/10/16 6:15 p.m.6 views

UBUNTU-CVE-2019-2894

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Security. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

3.7CVSS6.7AI score0.03159EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2019/08/09 12:0 a.m.11 views

PT-2022-5171 · Oracle +6 · Mysql Server +5

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 5.7.39 and prior MySQL Server versions 8.0.16 and prior Description: The issue exists due to insufficient input validation in the MySQL Server component, specifically in the Security: Privileges subcomponent. This allows...

9.8CVSS6.2AI score0.78483EPSS
Exploits12References722
OSV
OSV
added 2019/07/23 11:15 p.m.4 views

CVE-2019-2846

Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications subcomponent: Infrastructure. Supported versions that are affected are 12.0.1, 12.0.3, 12.0.4, 12.1.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows...

5.3CVSS5.8AI score0.01302EPSS
Exploits0References1
OSV
OSV
added 2019/04/23 7:32 p.m.5 views

CVE-2019-2704

Vulnerability in the Oracle Solaris component of Oracle Sun Systems Products Suite subcomponent: IPS Package Manager. The supported version that is affected is 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Solaris. Successfu...

5.3CVSS6.3AI score0.01276EPSS
Exploits0References1
OSV
OSV
added 2019/04/23 7:32 p.m.3 views

CVE-2019-2586

Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products subcomponent: RemoteCall. Supported versions that are affected are 8.55, 8.56 and 8.57. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

4.3CVSS5.8AI score0.00978EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/03/25 6:25 p.m.5 views

OpenJDK: memory disclosure in FileChannelImpl (Libraries, 8206290)

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...

3.1CVSS7.4AI score0.03374EPSS
Exploits0References4
OSV
OSV
added 2018/10/17 1:31 a.m.4 views

DEBIAN-CVE-2018-3157

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Sound. The supported version that is affected is Java SE: 11. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...

3.7CVSS6.9AI score0.02475EPSS
Exploits0References1
OSV
OSV
added 2018/08/27 2:29 p.m.8 views

CVE-2018-15697

ASUSTOR Data Master 3.1.5 and below allows authenticated remote non-administrative users to read any file on a share by providing the full path. For example, /home/admin/.ashhistory...

6.5CVSS5.8AI score0.00907EPSS
Exploits1References1
Rows per page
Query Builder