Lucene search
+L

99 matches found

RedHat Linux
RedHat Linux
added 2020/09/17 1:7 p.m.9 views

Wildfly: EJBContext principal is not popped back after invoking another EJB using a different Security Domain

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity...

5.5CVSS5.7AI score0.00575EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/08/31 3:40 p.m.4 views

Wildfly: EJBContext principal is not popped back after invoking another EJB using a different Security Domain

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity...

5.5CVSS5.7AI score0.00575EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/07/23 7:3 a.m.4 views

Wildfly: EJBContext principal is not popped back after invoking another EJB using a different Security Domain

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity...

5.5CVSS5.7AI score0.00575EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/06/18 12:0 a.m.44 views

Amazon Linux 2 : kernel (ALAS-2020-1440)

The version of kernel installed on the remote host is prior to 4.14.177-139.253. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1440 advisory. A flaw was found in the Linux kernel's implementation of the BFQ IO scheduler. This flaw allows a local user able ...

7.8CVSS6AI score0.00711EPSS
Exploits1References8
Amazon
Amazon
added 2020/06/17 12:0 a.m.64 views

Important: kernel

Issue Overview: A flaw was found in the Linux kernel's implementation of the BFQ IO scheduler. This flaw allows a local user able to groom system memory to cause kernel memory corruption and possible privilege escalation by abusing a race condition in the IO scheduler. CVE-2020-12657 A flaw was...

7.8CVSS6AI score0.00711EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2020/06/11 9:3 a.m.3 views

Wildfly: EJBContext principal is not popped back after invoking another EJB using a different Security Domain

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity...

5.5CVSS5.7AI score0.00575EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/06/11 7:9 a.m.3 views

Wildfly: EJBContext principal is not popped back after invoking another EJB using a different Security Domain

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity...

5.5CVSS5.7AI score0.00575EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/06/10 7:23 p.m.4 views

Wildfly: EJBContext principal is not popped back after invoking another EJB using a different Security Domain

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity...

5.5CVSS5.7AI score0.00575EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2020/06/05 4:13 p.m.7 views

acegisecurity:acegi-security-domain (=0.9.0), ai.databand.azkaban:azkaban-web-server (=3.18.0) +16311 more potentially affected by CVE-2020-10683 via dom4j:dom4j (>=1.1 <=1.6.1)

dom4j:dom4j MAVEN version =1.1, =1.4.1, =1.4.1, =1.4.1, =1.2.0, =1.4.1, =1.4.1, =1.4.1, =1.4.1, =0.6.1, =1.0.0, =1.4.1, =1.4.1, =1.4.3 and more Source cves: CVE-2020-10683 Source advisory: OSV:GHSA-HWJ3-M3P6-HJ38...

9.8CVSS6.7AI score0.07269EPSS
Exploits0
Veracode
Veracode
added 2020/05/13 3:23 a.m.24 views

Privilege Escalation

wildfly is vulnerable to privilege escalation. The vulnerability exists as the EJBContext principal is not popped back after invoking another EJB using a different Security Domain...

5.4CVSS3.1AI score0.00575EPSS
Exploits0References35Affected Software81
Prion
Prion
added 2020/05/12 7:15 p.m.29 views

Integer overflow

A signal access-control issue was discovered in the Linux kernel before 5.6.5, aka CID-7395ea4e65c2. Because execid in include/linux/sched.h is only 32 bits, an integer overflow can interfere with a donotifyparent protection mechanism. A child process can send an arbitrary signal to a parent...

4.4CVSS6AI score0.00706EPSS
Exploits1References11Affected Software4
OSV
OSV
added 2020/05/12 7:15 p.m.3 views

UBUNTU-CVE-2020-12826

A signal access-control issue was discovered in the Linux kernel before 5.6.5, aka CID-7395ea4e65c2. Because execid in include/linux/sched.h is only 32 bits, an integer overflow can interfere with a donotifyparent protection mechanism. A child process can send an arbitrary signal to a parent...

5.3CVSS6.8AI score0.00706EPSS
Exploits1References11
Cvelist
Cvelist
added 2020/05/12 6:58 p.m.48 views

CVE-2020-12826

A signal access-control issue was discovered in the Linux kernel before 5.6.5, aka CID-7395ea4e65c2. Because execid in include/linux/sched.h is only 32 bits, an integer overflow can interfere with a donotifyparent protection mechanism. A child process can send an arbitrary signal to a parent...

6.2AI score0.00706EPSS
Exploits1References11
CVE
CVE
added 2020/05/12 6:58 p.m.409 views

CVE-2020-12826

CVE-2020-12826 affects the Linux kernel before 5.6.5. The root cause is an integer overflow in exec_id (include/linux/sched.h) due to 32-bit sizing, which can allow a child process to send an arbitrary signal to a parent process in a different security domain, bypassing protection. A patched vers...

5.3CVSS6AI score0.00706EPSS
Exploits1References11Affected Software1
Debian CVE
Debian CVE
added 2020/05/12 6:58 p.m.41 views

CVE-2020-12826

A signal access-control issue was discovered in the Linux kernel before 5.6.5, aka CID-7395ea4e65c2. Because execid in include/linux/sched.h is only 32 bits, an integer overflow can interfere with a donotifyparent protection mechanism. A child process can send an arbitrary signal to a parent...

5.3CVSS6.8AI score0.00706EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2020/05/12 5:16 p.m.3 views

Wildfly: EJBContext principal is not popped back after invoking another EJB using a different Security Domain

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity...

5.5CVSS5.7AI score0.00575EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/05/11 8:19 p.m.4 views

Wildfly: EJBContext principal is not popped back after invoking another EJB using a different Security Domain

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity...

5.5CVSS5.7AI score0.00575EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/05/11 8:17 p.m.5 views

Wildfly: EJBContext principal is not popped back after invoking another EJB using a different Security Domain

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity...

5.5CVSS5.7AI score0.00575EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/05/11 8:15 p.m.3 views

Wildfly: EJBContext principal is not popped back after invoking another EJB using a different Security Domain

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity...

5.5CVSS5.7AI score0.00575EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/05/11 8:12 p.m.3 views

Wildfly: EJBContext principal is not popped back after invoking another EJB using a different Security Domain

A flaw was found in wildfly. The EJBContext principle is not popped back after invoking another EJB using a different Security Domain. The highest threat from this vulnerability is to data confidentiality and integrity...

5.5CVSS5.7AI score0.00575EPSS
Exploits0References4
Rows per page
Query Builder