CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Fedora•added 2024/06/18 1:14 a.m.•23 views

[SECURITY] Fedora 39 Update: galera-26.4.18-1.fc39

Galera is a fast synchronous multimaster wsrep provider replication engine for transactional databases and similar applications. For more information about wsrep API see https://github.com/codership/wsrep-API repository. For a description of Galera replication engine see...

4.9CVSS5.5AI score0.00287EPSS

Exploits0

OpenVAS•added 2024/06/18 12:0 a.m.•19 views

Fedora: Security Advisory (FEDORA-2024-d61bffd77f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.9CVSS5.6AI score0.00287EPSS

Exploits0References4

BDU FSTEC•added 2024/06/14 12:0 a.m.•2 views

The vulnerability of the remote access and file replication server 12d Synergy Server, 12d Synergy File Replication Server, is related to the absence of quotation marks in the names of elements or search paths. This allows attackers to exploit this flaw to gain higher privileges.

The vulnerability of the remote access and file replication server 12d Synergy Server lies in the absence of quotation marks in the names of elements or search paths. Exploiting this vulnerability can allow a malicious actor to gain increased privileges...

9CVSS5.5AI score0.00161EPSS

Exploits0References5Affected Software2

CNVD•added 2024/06/14 12:0 a.m.•4 views

Unspecified Vulnerability in SAP Replication Server (CNVD-2024-27893)

SAP LT Replication Server is a solution from SAP Germany. A security vulnerability exists in SAP Replication Server, which can be exploited by an attacker to execute certain commands against RSSD using the gateway, potentially resulting in memory corruption...

4.9CVSS7.3AI score0.00096EPSS

Veeam•added 2024/06/13 12:0 a.m.•12 views

Option to Add Veeam Kasten for Kubernetes Does Not Appear in Veeam Backup & Replication

Challenge When attempting to add Veeam Kasten for Kubernetes to Veeam Backup & Replication, the option for Kasten does not appear in the Add Server options. Cause This issue may occur if: The Veeam Kubernetes Service is not running and needs to be started. The Kasten Plug-In is not installed. Thi...

6.8AI score

Exploits0Affected Software1

Github Security Blog•added 2024/06/12 3:31 p.m.•39 views

Elasticsearch Remote Cluster Search Cross Cluster API Key insufficient restrictions

It was identified that if a cross-cluster API key https://www.elastic.co/guide/en/elasticsearch/reference/8.14/security-api-create-cross-cluster-api-key.htmlsecurity-api-create-cross-cluster-api-key-request-body restricts search for a given index using the query or the fieldsecurity parameter, an...

6.5CVSS7AI score0.00206EPSS

Exploits0References3Affected Software1

NVD•added 2024/06/12 2:15 p.m.•13 views

CVE-2024-23445

6.5CVSS0.00206EPSS

OSV•added 2024/06/12 2:15 p.m.•16 views

CVE-2024-23445

6.5CVSS6.6AI score

OSV•added 2024/06/12 2:15 p.m.•0 views

UBUNTU-CVE-2024-23445

6.5CVSS7AI score0.00206EPSS

Exploits0References3

CVE•added 2024/06/12 1:58 p.m.•322 views

CVE-2024-23445

CVE-2024-23445 affects Elasticsearch remote-cluster API key security model (GA 8.14.0). The issue: a cross-cluster API key that restricts index search via query or field_security and also grants replication for the same index may not enforce search restrictions during cross-cluster search, potent...

6.5CVSS6.5AI score0.00206EPSS

Exploits0References1Affected Software1

Fedora•added 2024/06/10 1:28 a.m.•25 views

[SECURITY] Fedora 40 Update: galera-26.4.18-1.fc40

4.9CVSS5.5AI score0.00287EPSS

Exploits0

OpenVAS•added 2024/06/10 12:0 a.m.•19 views

Fedora: Security Advisory for galera (FEDORA-2024-6ea93e629b)

4.9CVSS5.7AI score0.00287EPSS

BDU FSTEC•added 2024/06/04 12:0 a.m.•1 views

Vulnerability of the Server: Group Replication Plugin component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the Server: Group Replication Plugin component of the Oracle MySQL Server database management system is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

6.1CVSS6.3AI score0.00287EPSS

Exploits0References6Affected Software2

OESA-2024-1636 mysql security update

The MySQLTM software delivers a very fast, multi-threaded, multi-user, and robust SQL Structured Query Language database server. MySQL Server is intended for mission-critical, heavy-load production systems as well as for embedding into mass-deployed software. MySQL is a trademark of Oracle and/or...

OESA-2024-1635 mysql security update

OESA-2024-1633 mysql security update

OESA-2024-1634 mysql security update

NVD•added 2024/05/14 4:17 p.m.•10 views

CVE-2024-33008

SAP Replication Server allows an attacker to use gateway for executing some commands to RSSD. This could result in crashing the Replication Server due to memory corruption with high impact on Availability of the system...

4.9CVSS5.5AI score0.00096EPSS

OSV•added 2024/05/14 3:42 p.m.•1 views

CVE-2024-3792

Vulnerability in WBSAirback 21.02.04, which consists of a stored Cross-Site Scripting XSS through /admin/DeviceReplication, execution range field, all parameters. Exploitation of this vulnerability could allow a remote user to send a specially crafted URL to the victim and steal their session dat...

4.8CVSS5.9AI score