CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2022/09/06 6:15 p.m.•13 views

CVE-2021-39326

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

Tenable Nessus•added 2022/09/02 12:0 a.m.•29 views

Rocky Linux 8 : systemd (RLSA-2022:6206)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:6206 advisory. - systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c CVE-2022-2526 Note that Nessus has not tested for this issue but has...

9.8CVSS7.5AI score0.01052EPSS

Exploits0References3

OpenVAS•added 2022/09/02 12:0 a.m.•20 views

CentOS: Security Advisory for libgudev1-219-78.el7_ (CESA-2022:6160)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.7AI score0.01052EPSS

RedHat Linux•added 2022/08/29 5:23 p.m.•8 views

systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

Tenable Nessus•added 2022/08/29 12:0 a.m.•23 views

Ubuntu 18.04 LTS : systemd vulnerability (USN-5583-1)

The remote Ubuntu 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5583-1 advisory. It was discovered that systemd incorrectly handled certain DNS requests, which leads to user-after-free vulnerability. An attacker could possibly use this issue t...

9.8CVSS7.9AI score0.01052EPSS

Tenable Nessus•added 2022/08/29 12:0 a.m.•27 views

Oracle Linux 8 : systemd (ELSA-2022-6206)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-6206 advisory. 239-58.0.1.4 - Disable unprivileged BPF by default Orabug: 32870980 - backport upstream pstore tmpfiles patch Orabug: 31420486 - udev rules: fix memory hot add...

9.8CVSS7.4AI score0.01052EPSS

Tenable Nessus•added 2022/08/25 12:0 a.m.•122 views

Oracle Linux 7 : systemd (ELSA-2022-6160)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-6160 advisory. 219-78.0.9.el79.7 - Core: explicitly trigger changing udev systemdwants property Orabug: 31858125 - Disable unprivileged BPF by default Orabug: 32871008 - Resol...

9.8CVSS7.5AI score0.01052EPSS

RedHat Linux•added 2022/08/24 6:2 p.m.•7 views

systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

RedHat Linux•added 2022/08/24 5:54 p.m.•7 views

systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

RedHat Linux•added 2022/08/24 5:5 p.m.•4 views

systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

RedHat Linux•added 2022/08/24 4:47 p.m.•7 views

systemd-resolved: use-after-free when dealing with DnsStream in resolved-dns-stream.c

UbuntuCve•added 2022/08/24 12:0 a.m.•42 views

CVE-2022-2526

9.8CVSS6.8AI score0.01052EPSS

Exploits0References3

Tenable Nessus•added 2022/08/24 12:0 a.m.•43 views

RHEL 8 : systemd (RHSA-2022:6163)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:6163 advisory. The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive...

9.8CVSS7.6AI score0.01052EPSS

Tenable Nessus•added 2022/08/24 12:0 a.m.•32 views

RHEL 8 : systemd (RHSA-2022:6162)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:6162 advisory. The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive...

9.8CVSS7.6AI score0.01052EPSS

Hacker One•added 2022/08/07 4:50 p.m.•122 views

Adobe: Main Domain Takeover at https://www.marketo.net/

Resolved valid subdomain takeover report on Marketo. We appreciate the collaboration with the researcher...

0.2AI score

Hacker One•added 2022/07/19 11:39 a.m.•175 views

8x8: LFI via Jolokia at https://█.█.█.█:1293

@shuvam321 reported to us a single exposed host in the acceptance environment. The report demonstrated a Local File Inclusion via Jolokia, e.g.: https://█.█.█.█:1293/actuator/jolokia/exec/com.sun.management:type=DiagnosticCommand/compilerDirectivesAdd/!/etc!/hostname No sensitive information has...

0.6AI score

Microsoft KB•added 2022/07/12 7:0 a.m.•82 views

July 12, 2022—KB5015875 (Security-only update)

July 12, 2022—KB5015875 Security-only update Summary Learn more about this security-only update, including improvements, any known issues, and how to get the update. IMPORTANT Windows Server 2012 has reached the end of mainstream support and is now in extended support. Starting in July 2020, ther...

8.8CVSS7.3AI score0.31591EPSS

Exploits4

Hacker One•added 2022/07/08 10:38 a.m.•12 views

Stripo Inc: [demo.stripo.email] HTTP request Smuggling

A vulnerability in the demo.stripo.email website was reported, which has since been resolved...

7.1AI score

Hacker One•added 2022/07/01 4:9 p.m.•16 views

Stripo Inc: [SSRF] my.stripo.email via the setup-wizard parameter

A vulnerability in the setup wizard allowed SSRF. The issue has been resolved...

7AI score