Lucene search
K

2259 matches found

OSV
OSV
added 2019/11/21 12:0 p.m.13 views

RUSTSEC-2019-0031 spin is no longer actively maintained

The author of the spin crate does not have time or interest to maintain it. Consider the following alternatives all of which support nostd: - conquer-once - lockapi a subproject of parkinglot - spinningtop spinlock crate built on lockapi - spinning...

7.1AI score
Exploits0References3
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/10/24 4:35 p.m.46 views

A New Playground for Cybercrime: Why Supply Chain Security Must Cover Software Development

Most organisations see supply chains as providers of physical goods and services. The supply chain management function in these companies usually provides the governance framework to reduce third-party risks and prevent hackers from stealing data, disrupting daily operations and affecting busines...

0.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/09/27 12:0 a.m.4 views

The vulnerability of Intel Remote Displays SDK’s remote screens involves permission processing errors, allowing attackers to escalate their privileges.

The vulnerability of Intel Remote Displays SDK’s remote screens involves permission processing errors. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.2CVSS5.6AI score0.00349EPSS
Exploits0References5
CNVD
CNVD
added 2019/09/22 12:0 a.m.1 views

SQL Injection Vulnerability in Library Bibliographic Search System op***.php Page

Jiangsu Huiwen Software Co., Ltd. is a company specializing in information management system software development, sales. A SQL injection vulnerability exists in the library bibliographic retrieval system op.php page, which can be exploited by attackers to obtain sensitive information from the...

7.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.29 views

SUSE SLED12 / SLES12 Security Update : bzip2 (SUSE-SU-2019:2013-1)

This update for bzip2 fixes the following issues : Fixed a regression with the fix for CVE-2019-12900, which caused incompatibilities with files that used many selectors bsc1139083. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...

9.8CVSS6.8AI score0.08042EPSS
Exploits0References4
CNVD
CNVD
added 2019/08/05 12:0 a.m.2 views

IBM SDK, Java Technology Edition Privilege Vulnerability

IBM SDK, Java Technology Edition is a software development kit for Java application development from IBM, USA. An elevation of privilege vulnerability exists in IBM SDK, Java Technology Edition for AIX-based platforms, which can be exploited by a local attacker to inject code and elevate privileg...

8.4CVSS7AI score0.0045EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2019/07/23 4:23 p.m.91 views

Moderate: Red Hat Security Advisory: java-1.7.0-openjdk security update

An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.8CVSS6.7AI score0.04472EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2019/07/22 12:0 a.m.6 views

PT-2022-8603 · Unknown +2 · Platinum Upnp Sdk +2

Name of the Vulnerable Software and Affected Versions: Platinum Upnp SDK versions prior to 1.2.1 Description: The issue allows for a directory traversal attack, which could be exploited by sending a malicious URL, such as "http://ip:port/../privacy.avi", to compromise a victim's privacy. This cou...

7.8CVSS6.7AI score0.01711EPSS
Exploits5References42
CVE
CVE
added 2019/07/12 3:30 p.m.286 views

CVE-2019-8998

CVE-2019-8998 affects BlackBerry QNX Software Development Platform up to version 6.5.0 SP1. The procfs (/proc) service exposes process information, enabling a less-privileged local attacker to access a target process address space (information disclosure leading to local privilege escalation). Se...

7.8CVSS7.4AI score0.00222EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/07/04 12:0 a.m.4 views

The vulnerability of the Intel Data Center Manager SDK, related to access control deficiencies, allows a perpetrator to disclose protected information.

The vulnerability of the Intel Data Center Manager SDK development tools is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to disclose sensitive information that is protected by these tools...

5.5CVSS5.4AI score0.00408EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/07/04 12:0 a.m.3 views

The vulnerability of the installation mechanism for the software development tools for Intel Data Center Manager SDK allows a perpetrator to disclose protected information due to security flaws in the mechanism.

The vulnerability of the mechanism for installing the software set for developing Intel Data Center Manager SDK is related to security flaws in this mechanism. Exploiting this vulnerability could allow attackers to disclose sensitive information that is protected by this system...

5.5CVSS5.4AI score0.00455EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/07/04 12:0 a.m.4 views

The vulnerability in the Intel Data Center Manager SDK toolset, related to key management errors, allows a hacker to disclose sensitive information that is protected by the software.

The vulnerability of the Intel Data Center Manager SDK development tools is related to key management errors. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by these tools...

7.1CVSS5.4AI score0.00455EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/07/04 12:0 a.m.5 views

The vulnerability of the Intel Data Center Manager SDK software development tools, related to access control deficiencies, allows a perpetrator to disclose protected information.

The vulnerability of the Intel Data Center Manager SDK development tools is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to disclose sensitive information that is protected by these tools...

3.3CVSS5.4AI score0.00408EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/07/04 12:0 a.m.4 views

The vulnerability of the installation mechanism for the software development tools for Intel Data Center Manager SDK allows unauthorized access, enabling attackers to enhance their privileges.

The vulnerability of the installation mechanism for the software development tools for Intel Data Center Manager SDK is related to errors in processing input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

6.2CVSS5.5AI score0.00468EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/07/04 12:0 a.m.4 views

The vulnerability of the Intel Data Center Manager SDK software development tools, related to access control deficiencies, allows attackers to enhance their privileges.

The vulnerability of the Intel Data Center Manager SDK development tools is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to enhance their privileges...

5.3CVSS5.5AI score0.00461EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2019/06/28 12:0 a.m.3 views

Foxit PDF SDK ActiveX Buffer Overflow Vulnerability (CNVD-2019-21947)

Foxit PDF SDK ActiveX is China's Foxit Foxit company's a PDF software development kit, but also a visual programming components. The product provides PDF display and annotation features. A security vulnerability exists in Foxit PDF SDK ActiveX 5.5.0 and earlier versions. A remote attacker can...

7.8CVSS7.1AI score0.02241EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2019/06/18 5:22 p.m.53 views

Moderate: Red Hat Security Advisory: java-11-openjdk security update

An update for java-11-openjdk is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS6.7AI score0.37618EPSS
Exploits0References3
Veracode
Veracode
added 2019/05/02 5:41 a.m.29 views

Sandbox Restrictions Bypass

IBM Java SE version 6 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit. This update fixes several vulnerabilities in the IBM Java Runtime Environment and the IBM Java Software Development Kit. Further information about these flaws can be found on the IBM Java...

9.8CVSS5.3AI score0.9986EPSS
Exploits1References20Affected Software1
Veracode
Veracode
added 2019/05/02 5:40 a.m.33 views

Sandbox Restrictions Bypass

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Multiple flaws were discovered in the 2D, CORBA, JMX, Libraries and RMI components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Ja...

9.8CVSS4.6AI score0.9986EPSS
Exploits1References30Affected Software4
Veracode
Veracode
added 2019/05/02 5:40 a.m.44 views

Sandbox Restrictions Bypass

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Multiple flaws were discovered in the 2D, CORBA, JMX, Libraries and RMI components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Ja...

9.8CVSS4.6AI score0.9986EPSS
Exploits1References31Affected Software4
Rows per page
Query Builder