Lucene search
+L

555 matches found

nessus
nessus
added 2024/07/18 12:0 a.m.47 views

Oracle NoSQL Database (Jul 2024 CPU)

The version of Oracle NoSQL Database running on the remote host is prior to 23.3.34. It is, therefore, affected by a vulnerability as referenced in the July 2024 CPU advisory. - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remo...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References3
nessus
nessus
added 2024/07/03 12:0 a.m.30 views

CBL Mariner 2.0 Security Update: cert-manager / cf-cli / docker-buildx / erlang / kubernetes / kubevirt (CVE-2023-48795)

The version of cert-manager / cf-cli / docker-buildx / erlang / kubernetes / kubevirt installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-48795 advisory. - The SSH transport protocol with certain...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
openvas
openvas
added 2024/06/27 12:0 a.m.27 views

WinSCP Terrapin Vulnerability - Windows

WinSCP is prone to a Terrapin vulnerability SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:winscp:winscp"; ifdescription...

5.9CVSS7.2AI score0.93305EPSS
Exploits4References1
kitploit
kitploit
added 2024/06/21 12:30 p.m.40 views

Extrude - Analyse Binaries For Missing Security Features, Information Disclosure And More...

Analyse binaries for missing security features, information disclosure and more. Extrude is in the early stages of development, and currently only supports ELF and MachO binaries. PE Windows binaries will be supported soon. Usage Usage: extrude flags file Flags: -a, --all Show details of all test...

7AI score
Exploits0References1
osv
osv
added 2024/06/06 12:29 p.m.21 views

CGA-QQ8H-VH95-RJGJ

Bulletin has no description...

7.5CVSS7.6AI score0.01466EPSS
Exploits1
nessus
nessus
added 2024/05/30 12:0 a.m.19 views

EulerOS 2.0 SP12 : proftpd (EulerOS-SA-2024-1748)

According to the versions of the proftpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash...

7.5CVSS7.2AI score0.93305EPSS
Exploits5References3
nessus
nessus
added 2024/05/30 12:0 a.m.43 views

EulerOS 2.0 SP12 : libssh2 (EulerOS-SA-2024-1742)

According to the versions of the libssh2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
nessus
nessus
added 2024/05/30 12:0 a.m.40 views

EulerOS 2.0 SP12 : python-paramiko (EulerOS-SA-2024-1773)

According to the versions of the python-paramiko package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
nessus
nessus
added 2024/05/30 12:0 a.m.45 views

EulerOS 2.0 SP12 : proftpd (EulerOS-SA-2024-1771)

According to the versions of the proftpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash...

7.5CVSS7.2AI score0.93305EPSS
Exploits5References3
nessus
nessus
added 2024/05/30 12:0 a.m.41 views

EulerOS 2.0 SP12 : python-paramiko (EulerOS-SA-2024-1750)

According to the versions of the python-paramiko package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
redos
redos
added 2024/05/24 12:0 a.m.10 views

ROS-20240422-10

A vulnerability in the SSH protocol implementation is related to the ability to adjust packet sequence numbers during the connection negotiation process and remove an arbitrary number of SSH service messages. during the connection negotiation process and cause an arbitrary number of SSH service...

5.9CVSS7.6AI score0.93305EPSS
Exploits4
openvas
openvas
added 2024/05/15 12:0 a.m.34 views

Huawei EulerOS: Security Advisory for libssh (EulerOS-SA-2024-1609)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
nessus
nessus
added 2024/05/15 12:0 a.m.31 views

EulerOS Virtualization 2.11.1 : libssh2 (EulerOS-SA-2024-1610)

According to the versions of the libssh2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attacke...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
nessus
nessus
added 2024/05/15 12:0 a.m.44 views

EulerOS Virtualization 2.11.0 : python-paramiko (EulerOS-SA-2024-1635)

According to the versions of the python-paramiko package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
nvd
nvd
added 2024/05/07 5:15 a.m.23 views

CVE-2024-20821

A vulnerability possible to reconfigure OTP allows local attackers to transit RMAReturn Merchandise Authorization mode, which disables security features. This attack needs additional privilege to control TEE...

4.4CVSS4.7AI score0.00164EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/05/07 4:25 a.m.13 views

CVE-2024-20821

A vulnerability possible to reconfigure OTP allows local attackers to transit RMAReturn Merchandise Authorization mode, which disables security features. This attack needs additional privilege to control TEE...

4.4CVSS6.8AI score0.00164EPSS
Exploits0References1
cve
cve
added 2024/05/07 4:25 a.m.56 views

CVE-2024-20821

CVE-2024-20821 affects Samsung Exynos SoCs (e.g., Exynos1380, Exynos1330, Exynos2400) where a vulnerability allows a local attacker to reconfigure OTP and transit into RMA mode, disabling security features. The underlying issue is a reconfigurable OTP that requires an additional privilege to cont...

4.4CVSS6.7AI score0.00164EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2024/05/06 12:0 a.m.6 views

PT-2024-18728 · Samsung · Samsung Mobile Devices

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Devices affected versions not specified Description: A vulnerability allows local attackers to reconfigure OTP, enabling them to transit into RMA mode, which disables security features. This attack requires additional privilege...

4.4CVSS6.9AI score0.00164EPSS
Exploits0References5
thn
thn
added 2024/04/29 5:7 p.m.15 views

Google Prevented 2.28 Million Malicious Apps from Reaching Play Store in 2023

Google on Monday revealed that almost 200,000 app submissions to its Play Store for Android were either rejected or remediated to address issues with access to sensitive data such as location or SMS messages over the past year. The tech giant also said it blocked 333,000 bad accounts from the app...

7.3AI score
Exploits0
nessus
nessus
added 2024/04/29 12:0 a.m.24 views

Fedora 40 : doctl (2023-0355346550)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-0355346550 advisory. Automatic update for doctl-1.102.0-3.fc40. Changelog Sun Dec 31 2023 Mikel Olasagasti Uranga - Update to 1.102.0 - Closes rhbz2255468 rhbz2255083 Tenable has...

5.9CVSS7AI score0.93305EPSS
Exploits4References2
Rows per page
Query Builder