Lucene search
+L

697 matches found

nessus
nessus
added 2025/03/04 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2012-0547

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 6 and earlier, and 6 Update 34 and earlier, has no impact and...

8AI score0.12471EPSS
Exploits1References2
f5
f5
added 2023/02/21 7:0 p.m.31 views

K15480: PHP vulnerability CVE-2012-2688

Security Advisory Description Description Unspecified vulnerability in the phpstreamscandir function in the stream implementation in PHP before 5.3.15 and 5.4.x before 5.4.5 has unknown impact and remote attack vectors, related to an "overflow." CVE-2012-2688 Impact None. F5 products are not...

10CVSS9.3AI score0.10467EPSS
Exploits1
f5
f5
added 2023/02/21 4:17 p.m.40 views

K14734: Apache HTTP server vulnerability CVE-2013-2249

Security Advisory Description modsessiondbd.c in the modsessiondbd module in the Apache HTTP Server before 2.4.5 proceeds with save operations for a session without considering the dirty flag and the requirement for a new session ID, which has unspecified impact and remote attack vectors...

7.5CVSS8.1AI score0.14255EPSS
Exploits3Affected Software1
susecve
susecve
added 2023/02/15 6:20 a.m.4 views

SUSE CVE-2004-0505

The AIM dissector in Ethereal 0.10.3 allows remote attackers to cause a denial of service assert error via unknown attack vectors...

5CVSS6.8AI score0.02714EPSS
Exploits0References4
susecve
susecve
added 2023/02/15 6:9 a.m.3 views

SUSE CVE-2007-6337

Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlibprivate.h in ClamAV before 0.92 has unknown impact and remote attack vectors...

10CVSS9.3AI score0.02823EPSS
Exploits0References4
susecve
susecve
added 2023/02/15 5:57 a.m.3 views

SUSE CVE-2010-2994

Stack-based buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.14 and 1.2.0 through 1.2.9 has unknown impact and remote attack vectors. NOTE: this issue exists because of a CVE-2010-2284 regression...

10CVSS7.5AI score0.02431EPSS
Exploits0References6
susecve
susecve
added 2023/02/15 5:55 a.m.16 views

SUSE CVE-2010-4508

The WebSockets implementation in Mozilla Firefox 4 through 4.0 Beta 7 does not properly perform proxy upgrade negotiation, which has unspecified impact and remote attack vectors, related to an "inherent problem" with the WebSocket specification...

10CVSS7AI score0.01299EPSS
Exploits0References4
susecve
susecve
added 2023/02/15 5:55 a.m.2 views

SUSE CVE-2010-4586

The default configuration of Opera before 11.00 enables WebSockets functionality, which has unspecified impact and remote attack vectors, possibly a related issue to CVE-2010-4508...

10CVSS7AI score0.02047EPSS
Exploits0References4
susecve
susecve
added 2023/02/15 5:51 a.m.4 views

SUSE CVE-2011-3087

Google Chrome before 19.0.1084.46 does not properly perform window navigation, which has unspecified impact and remote attack vectors...

10CVSS9.4AI score0.01302EPSS
Exploits0References4
susecve
susecve
added 2023/02/15 5:49 a.m.2 views

SUSE CVE-2011-4684

Opera before 11.60 does not properly handle certificate revocation, which has unspecified impact and remote attack vectors related to "corner cases."...

10CVSS7.1AI score0.06047EPSS
Exploits0References3
susecve
susecve
added 2023/02/15 5:35 a.m.4 views

SUSE CVE-2013-5615

The JavaScript implementation in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 does not properly enforce certain typeset restrictions on the generation of GetElementIC typed array stubs, which has unspecified impact and remote attack...

9.8CVSS9AI score0.04219EPSS
Exploits1References7
susecve
susecve
added 2023/02/15 4:46 a.m.1 views

SUSE CVE-2017-8380

Buffer overflow in the "megasasmmiowrite" function in Qemu 2.9.0 allows remote attackers to have unspecified impact via unknown vectors...

9.8CVSS7.7AI score0.03912EPSS
Exploits0References6
osv
osv
added 2022/05/17 5:23 a.m.6 views

GHSA-G5FX-CCWV-5C4F Caucho Quercus, as distributed in Resin, overwrites entries in SERVER superglobal array on basis of POST parameters

Caucho Quercus, as distributed in Resin before 4.0.29, overwrites entries in the SERVER superglobal array on the basis of POST parameters, which has unspecified impact and remote attack vectors...

7.5CVSS6.9AI score0.01616EPSS
Exploits0References5
github
github
added 2022/05/17 5:23 a.m.16 views

Caucho Quercus, as distributed in Resin, does not properly handle unspecified characters in the names of variables

Caucho Quercus, as distributed in Resin before 4.0.29, does not properly handle unspecified characters in the names of variables, which has unknown impact and remote attack vectors, related to an "HTTP Parameter Contamination" issue...

7.5CVSS7.2AI score0.01616EPSS
Exploits0References6Affected Software1
github
github
added 2022/05/17 5:23 a.m.8 views

Caucho Quercus, as distributed in Resin, overwrites entries in SERVER superglobal array on basis of POST parameters

Caucho Quercus, as distributed in Resin before 4.0.29, overwrites entries in the SERVER superglobal array on the basis of POST parameters, which has unspecified impact and remote attack vectors...

7.5CVSS7.2AI score0.01616EPSS
Exploits0References6Affected Software1
osv
osv
added 2022/05/14 2:8 a.m.7 views

GHSA-CR65-P662-FX5C phpMyAdmin vulnerable to Cross-site Scripting

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allow remote attackers to inject arbitrary web script or HTML via vectors involving 1 a crafted table name that is mishandled during privilege checking in...

6.1CVSS6.4AI score0.02182EPSS
Exploits0References16
github
github
added 2022/05/01 11:57 p.m.13 views

Joomla! doesn't configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs

Joomla! before 1.5.4 does not configure .htaccess to apply certain security checks that "block common exploits" to SEF URLs, which has unknown impact and remote attack vectors...

7.5CVSS7AI score0.01164EPSS
Exploits0References6Affected Software1
osv
osv
added 2022/05/01 5:53 p.m.7 views

GHSA-7JJR-3R8R-9PCF Trac missing Content-Disposition HTTP header

Trac before 0.10.3.1 does not send a Content-Disposition HTTP header specifying an attachment in certain "unsafe" situations, which has unknown impact and remote attack vectors...

6.9CVSS6.4AI score0.01342EPSS
Exploits0References3
github
github
added 2022/05/01 5:53 p.m.13 views

Trac missing Content-Disposition HTTP header

Trac before 0.10.3.1 does not send a Content-Disposition HTTP header specifying an attachment in certain "unsafe" situations, which has unknown impact and remote attack vectors...

10CVSS6.9AI score0.01342EPSS
Exploits0References4Affected Software1
osv
osv
added 2019/01/09 11:29 p.m.18 views

CVE-2018-16167

LogonTracer 1.2.0 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors...

9.8CVSS7.9AI score
Exploits0References2
Rows per page
Query Builder