Lucene search
K

5093 matches found

Tenable Nessus
Tenable Nessus
added 2021/03/24 12:0 a.m.30 views

EulerOS 2.0 SP5 : postgresql (EulerOS-SA-2021-1700)

According to the version of the postgresql packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in PostgreSQL versions before 13.1, before 12.5, before 11.10, before 10.15, before 9.6.20 and before 9.5.24. An attacker havi...

8.8CVSS7AI score0.4644EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/03/24 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for postgresql (EulerOS-SA-2021-1700)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.9AI score0.4644EPSS
Exploits0References2
NVD
NVD
added 2021/03/23 5:15 p.m.25 views

CVE-2021-20219

A denial of service vulnerability was found in nttyreceivecharspecial in drivers/tty/ntty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop due to a changing ldata-readhead, and a missing sanity check and cause a threat to the system availabili...

5.5CVSS0.00401EPSS
Exploits0References1
OSV
OSV
added 2021/03/23 5:15 p.m.2 views

ALPINE-CVE-2021-20227

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

5.5CVSS7.7AI score0.00528EPSS
Exploits0References1
NVD
NVD
added 2021/03/23 5:15 p.m.15 views

CVE-2021-20222

A flaw was found in keycloak. The new account console in keycloak can allow malicious code to be executed using the referrer URL. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.5CVSS0.0119EPSS
Exploits0References1
OSV
OSV
added 2021/03/23 5:15 p.m.23 views

CVE-2021-20222

A flaw was found in keycloak. The new account console in keycloak can allow malicious code to be executed using the referrer URL. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.5CVSS6.7AI score
Exploits0References1
Prion
Prion
added 2021/03/23 5:15 p.m.30 views

Denial of service

A denial of service vulnerability was found in nttyreceivecharspecial in drivers/tty/ntty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop due to a changing ldata-readhead, and a missing sanity check and cause a threat to the system availabili...

2.1CVSS5.1AI score0.00401EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2021/03/23 5:15 p.m.23 views

CVE-2021-20219

A denial of service vulnerability was found in nttyreceivecharspecial in drivers/tty/ntty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop due to a changing ldata-readhead, and a missing sanity check and cause a threat to the system availabili...

5.5CVSS6.7AI score0.00401EPSS
Exploits0References3
Prion
Prion
added 2021/03/23 5:15 p.m.22 views

Design/Logic Flaw

A flaw was found in keycloak. The new account console in keycloak can allow malicious code to be executed using the referrer URL. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

5.1CVSS7.4AI score0.0119EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/03/23 5:15 p.m.32 views

Design/Logic Flaw

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

2.1CVSS5.9AI score0.00528EPSS
Exploits0References8Affected Software7
OSV
OSV
added 2021/03/23 5:15 p.m.1 views

UBUNTU-CVE-2021-20219

A denial of service vulnerability was found in nttyreceivecharspecial in drivers/tty/ntty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop due to a changing ldata-readhead, and a missing sanity check and cause a threat to the system availabili...

5.5CVSS6.6AI score0.00401EPSS
Exploits0References4
CVE
CVE
added 2021/03/23 4:36 p.m.113 views

CVE-2021-20222

CVE-2021-20222 affects Keycloak before 13.0.0: cross-site scripting via the new account console referrer URL, enabling malicious code execution. Impacts include confidentiality, integrity, and availability. Remediation: upgrade to Keycloak 13.0.0+ (e.g., 13.0.0-1 per Arch Linux ASA); check vendor...

7.5CVSS7.3AI score0.0119EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/03/23 4:36 p.m.17 views

CVE-2021-20222

A flaw was found in keycloak. The new account console in keycloak can allow malicious code to be executed using the referrer URL. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.7AI score0.0119EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/03/23 4:34 p.m.22 views

CVE-2021-20219

A denial of service vulnerability was found in nttyreceivecharspecial in drivers/tty/ntty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop due to a changing ldata-readhead, and a missing sanity check and cause a threat to the system availabili...

6.7AI score0.00401EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2021/03/23 4:34 p.m.42 views

CVE-2021-20219

A denial of service vulnerability was found in nttyreceivecharspecial in drivers/tty/ntty.c of the Linux kernel. In this flaw a local attacker with a normal user privilege could delay the loop due to a changing ldata-readhead, and a missing sanity check and cause a threat to the system availabili...

5.5CVSS6.2AI score0.00401EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/03/23 2:17 p.m.5 views

bouncycastle: password bypass in OpenBSDBCrypt.checkPassword utility possible

A flaw was found in bouncycastle. The OpenBSDBCrypt.checkPassword utility method compared incorrect data when checking the password allowing incorrect passwords to indicate they were matching with previously hashed ones that were different. The highest threat from this vulnerability is to data...

8.1CVSS6.8AI score0.0714EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/03/23 2:17 p.m.4 views

jboss-remoting: Threads hold up forever in the EJB server by suppressing the ack from an EJB client

A flaw was found in jboss-remoting. A malicious attacker could cause threads to hold up forever in the EJB server by writing a sequence of bytes corresponding to the expected messages of a successful EJB client request, but omitting the ACK messages, or just tamper with jboss-remoting code,...

7.1CVSS5.8AI score0.01089EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2021/03/23 12:0 a.m.3 views

PT-2021-13851 · Red Hat · Keycloak

Name of the Vulnerable Software and Affected Versions: keycloak affected versions not specified Description: A flaw was found in the new account console of keycloak, allowing malicious code to be executed using the referrer URL. The highest threat from this issue is to data confidentiality and...

8.3CVSS7.2AI score0.0119EPSS
Exploits0References8
AlpineLinux
AlpineLinux
added 2021/03/23 12:0 a.m.42 views

CVE-2021-20227

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

5.5CVSS6.1AI score0.00528EPSS
Exploits0
Cvelist
Cvelist
added 2021/03/23 12:0 a.m.24 views

CVE-2021-20227

A flaw was found in SQLite's SELECT query functionality src/select.c. This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerabilit...

6.4AI score0.00528EPSS
Exploits0References8
Rows per page
Query Builder