CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2022/05/12 12:0 a.m.•56 views

AlmaLinux 8 : fetchmail (ALSA-2022:1964)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:1964 advisory. - reportvbuild in report.c in Fetchmail before 6.4.20 sometimes omits initialization of the vsnprintf valist argument, which might allow mail servers to...

7.5CVSS6.3AI score0.0256EPSS

RedHat Linux•added 2022/05/10 2:9 p.m.•40 views

Moderate: Red Hat Security Advisory: fetchmail security update

An update for fetchmail is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.5CVSS6.6AI score0.0256EPSS

Exploits0References4

OSV•added 2022/05/10 6:41 a.m.•24 views

ALSA-2022:1964 Moderate: fetchmail security update

Fetchmail is a remote mail retrieval and forwarding utility intended for use over on-demand TCP/IP links, like SLIP or PPP connections. Fetchmail supports every remote-mail protocol currently in use on the Internet POP2, POP3, RPOP, APOP, KPOP, all IMAPs, ESMTP ETRN, IPv6, and IPSEC for retrieval...

7.5CVSS6.8AI score0.0256EPSS

OpenVAS•added 2022/02/01 12:0 a.m.•18 views

openSUSE: Security Advisory for fetchmail (openSUSE-SU-2021:1591-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.9AI score0.0256EPSS

OSV•added 2021/10/20 2:38 p.m.•5 views

SUSE-SU-2021:3493-1 Security update for fetchmail

This update for fetchmail fixes the following issues: - CVE-2021-39272: Fix failure to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH. bsc1190069...

5.9CVSS6.1AI score0.00895EPSS

GithubExploit•added 2021/09/06 12:28 p.m.•7 views

Exploit for Command Injection in Rubyonrails Rails

CVE-2019-5420 A vulnerability can allow an attacker to guess t...

9.8CVSS8.8AI score0.92144EPSS

Exploits13

CNNVD•added 2021/06/24 12:0 a.m.•3 views

Shopware 授权问题漏洞

Shopware is a suite of open source e-commerce software from the German company Shopware. An authorization issue vulnerability exists in Shopware that stems from the lack of proper encryption of sessions in the system, which could allow an attacker to hijack a customer's session. The following...

7.5CVSS7.2AI score0.00877EPSS

Exploits0References4

Tenable Nessus•added 2021/06/10 12:0 a.m.•35 views

SUSE SLES11 Security Update : openldap2 (SUSE-SU-2020:14353-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2020:14353-1 advisory. - An issue was discovered in the server in OpenLDAP before 2.4.48. When the server administrator delegates rootDN database admin privileges fo...

GithubExploit•added 2021/01/20 3:6 p.m.•75 views

Exploits0References7

Exploit for Command Injection in Rubyonrails Rails

CVE-2019-5420 Ruby-on-Rails offers three different environmen...

9.8CVSS8.3AI score0.92144EPSS

Exploits13

Tenable Nessus•added 2020/04/16 12:0 a.m.•42 views

EulerOS Virtualization 3.0.2.2 : openldap (EulerOS-SA-2020-1481)

According to the versions of the openldap packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in the server in OpenLDAP before 2.4.48. When the server administrator delegates rootDN database admin...

OpenVAS•added 2020/04/16 12:0 a.m.•40 views

Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2020-1481)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Tenable Nessus•added 2020/03/13 12:0 a.m.•33 views

EulerOS Virtualization for ARM 64 3.0.2.0 : openldap (EulerOS-SA-2020-1200)

According to the version of the openldap packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relyi...

7.5CVSS6.6AI score0.05015EPSS

OpenVAS•added 2020/03/13 12:0 a.m.•28 views

Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2020-1200)

OpenVAS•added 2020/01/23 12:0 a.m.•17 views

Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2019-2178)

OpenVAS•added 2020/01/23 12:0 a.m.•30 views

Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2019-2112)

OpenVAS•added 2020/01/23 12:0 a.m.•22 views

Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2019-2358)

OpenVAS•added 2020/01/23 12:0 a.m.•29 views

Huawei EulerOS: Security Advisory for openldap (EulerOS-SA-2020-1077)

Tenable Nessus•added 2020/01/13 12:0 a.m.•29 views

EulerOS Virtualization for ARM 64 3.0.5.0 : openldap (EulerOS-SA-2020-1077)

7.5CVSS6.6AI score0.05015EPSS

OpenVAS•added 2020/01/09 12:0 a.m.•24 views

openSUSE: Security Advisory for openldap2 (openSUSE-SU-2019:2157-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.8AI score0.07022EPSS