Lucene search
K

485 matches found

OpenVAS
OpenVAS
added 2021/01/29 12:0 a.m.24 views

Oracle MySQL Server 5.6 <= 5.6.27 Security Update (cpujan2016) - Linux

Oracle MySQL Server is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4CVSS7.3AI score0.02801EPSS
Exploits0References2
OSV
OSV
added 2021/01/20 3:15 p.m.19 views

CVE-2021-2030

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS5.8AI score
Exploits0References3
CNVD
CNVD
added 2021/01/20 12:0 a.m.3 views

Unspecified Vulnerability in Oracle BI Publisher (CNVD-2021-04812)

Oracle BI Publisher is a reporting solution that makes it easier and faster than traditional reporting tools to produce, manage and deliver all reports and documents. An unspecified vulnerability exists in the Web Server component in Oracle BI Publisher 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0,...

7.6CVSS9.1AI score0.00922EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/01/19 12:0 a.m.5 views

Oracle Fusion Middleware 安全漏洞

Oracle BI Publisher is a reporting solution that makes it easier and faster than traditional reporting tools to produce, manage and deliver all reports and documents. An unspecified vulnerability exists in the Web Server component in Oracle BI Publisher 5.5.0.0.0, 11.1.1.9.0, 12.2.1.3.0,...

7.6CVSS7.2AI score0.00922EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/01/19 12:0 a.m.4 views

Oracle MySQL 访问控制错误漏洞

Oracle MySQL is an open source relational database management system.MySQL Server mysqld is the MySQL server, the main program that performs most of the work in a MySQL installation. An unspecified vulnerability exists in the Server: Optimizer component of Oracle MySQL Server 8.0.21 and earlier. ...

6.8CVSS6.7AI score0.02157EPSS
Exploits0References15
CNNVD
CNNVD
added 2021/01/07 12:0 a.m.7 views

Omron CX-One and CX-Protocol Buffer Error Vulnerability

Omron CX-One is an integrated toolkit from Omron Japan. The products include inverters, temperature controllers, and PLC programming software, etc. CX-Protocol is one of the components used to create a serial communication protocol to communicate with standard serial devices. A buffer error...

8.8CVSS7.4AI score0.07612EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2020/11/26 12:0 a.m.4 views

Vulnerability of the Server component: Security: Privileges of the MySQL Server database management system, which allows attackers to gain unauthorized access to protected information.

The vulnerability of the MySQL Server component relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

4.3CVSS6.4AI score0.01384EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/11/12 12:0 a.m.4 views

The vulnerability of the Core server component of Oracle WebLogic Server allows a hacker to gain full control over the application.

The vulnerability of the Core server component of Oracle WebLogic Server is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to gain full control over the application using IIOP and T3 protocols...

10CVSS7.7AI score0.30081EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/11/12 12:0 a.m.4 views

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component involves insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL network protocol...

6.8CVSS6.5AI score0.02336EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/11/10 12:0 a.m.4 views

Vulnerability of the Server component: Security: LDAP Authentication of the MySQL Server database management system, allowing attackers to gain full control over the application

The vulnerability of the Server component’s Security: LDAP Auth component of the MySQL Server database management system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain full control over the application using th...

8CVSS6.9AI score0.01184EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2020/10/28 2:15 p.m.19 views

Code injection

The Snap7 server component in version 1.4.1, when an attacker sends a crafted packet with COTP protocol the last-data-unit flag set to No and S7 writes a var function, the Snap7 server will be crashed...

5CVSS7.4AI score0.02011EPSS
Exploits1References3Affected Software1
Packet Storm
Packet Storm
added 2020/10/02 12:0 a.m.482 views

Platinum Mobile 1.0.4.850 Authorization Bypass

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Broken Access Control product: Platinum Mobile vulnerable version: 1.0.4.850 fixed version: 1.0.4.851 CVE number: - impact: critical homepage:...

0.2AI score
Exploits0
Prion
Prion
added 2020/08/18 7:15 p.m.21 views

Input validation

The TIBCO Data Virtualization Server component of TIBCO Software Inc.'s TIBCO Data Virtualization and TIBCO Data Virtualization for AWS Marketplace contains a vulnerability that theoretically allows a malicious authenticated user to download any arbitrary file from the affected system. The user...

4CVSS6.5AI score0.00786EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/08/05 12:0 a.m.4 views

Vulnerability of the Server component: Security: Privileges of the Oracle MySQL Server database management system, which allows attackers to gain full control over the application.

The vulnerability of the Server component, specifically in the Security section related to system administration of the Oracle MySQL database, stems from insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to gain full control over the application...

9CVSS6.8AI score0.02035EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2020/07/14 12:0 a.m.5 views

PT-2020-3573 · Oracle +8 · Mysql Server +7

Name of the Vulnerable Software and Affected Versions: Oracle MySQL Server versions 8.0.20 and prior Description: The issue is related to insufficient input validation in the Server: DML component of Oracle MySQL Server. This can be exploited by a remote attacker to cause the server to hang or...

9.8CVSS6.5AI score0.88077EPSS
Exploits25References950
BDU FSTEC
BDU FSTEC
added 2020/04/16 12:0 a.m.5 views

Vulnerability of the Server component: Security: Privileges of the MySQL database management system, allowing attackers to modify data or cause partial service interruptions.

The vulnerability of the Server component, specifically in the Security section related to MySQL database management system privileges, is associated with deficiencies in access control. Exploiting this vulnerability allows a malicious actor to modify data or cause partial service interruptions...

5.5CVSS6.5AI score0.01846EPSS
Exploits0References7Affected Software4
RedhatCVE
RedhatCVE
added 2020/03/31 8:23 a.m.32 views

CVE-2018-3155

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Parser. Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL...

7.7CVSS4.2AI score0.03683EPSS
Exploits0References2
NVD
NVD
added 2020/03/30 10:15 p.m.11 views

CVE-2020-10374

A webserver component in Paessler PRTG Network Monitor 19.2.50 to PRTG 20.1.56 allows unauthenticated remote command execution via a crafted POST request or the what parameter of the screenshot function in the Contact Support form...

9.8CVSS9.5AI score0.04667EPSS
Exploits0References3
OSV
OSV
added 2020/02/19 7:15 p.m.3 views

CVE-2019-17333

The Web server component of TIBCO Software Inc.'s TIBCO EBX contains a vulnerability that theoretically allows authenticated users to perform stored cross-site scripting XSS attacks. Affected releases are TIBCO Software Inc.'s TIBCO EBX: versions 5.8.1.fixS and below, versions 5.9.3, 5.9.4, 5.9.5...

5.4CVSS5.7AI score0.00678EPSS
Exploits0References2
CNVD
CNVD
added 2020/02/05 12:0 a.m.3 views

OSSEC-HIDS Server Component Buffer Overflow Vulnerability (CNVD-2020-04124)

OSSEC-HIDS is an open source intrusion detection tool. A buffer overflow vulnerability exists in the OSSEC-HIDS server component. The vulnerability originates when a network system or product performs operations on memory without properly validating data boundaries, resulting in incorrect read an...

9.8CVSS7.3AI score0.02685EPSS
Exploits2References1
Rows per page
Query Builder