Lucene search
+L

29 matches found

CVE
CVE
added 2023/12/07 12:0 a.m.65 views

CVE-2023-46307

Summary: CVE-2023-46307 affects etcd-browser (build 87ae63d75260). The vulnerability is in server.js and enables a directory traversal by supplying a /../../../ path in the URL in a remote-connection context, allowing retrieval of local operating system files on the remote system. Impact: potenti...

7.5CVSS7.8AI score0.01311EPSS
Exploits0References4Affected Software1
vulnersOsv
vulnersOsv
added 2023/10/20 12:31 p.m.4 views

com.github.wmixvideo:nfe (>=3.1.40 <=4.0.41), com.github.zuinnote:hadoopoffice-flinkts_2.11 (=1.7.0) +239 more potentially affected by CVE-2023-44483 via org.apache.santuario:xmlsec (>=3.0.0 <=3.0.2)

org.apache.santuario:xmlsec MAVEN version =3.0.0, =3.1.40, =2022.5.1, =2022.5.1, =2022.5.1, =2022.5.1, =2022.5.1, =2.1.0, =2.0.0, =2.0.0, =2.0.0, =2.4.0 and more Source cves: CVE-2023-44483 Source advisory: OSV:GHSA-XFRJ-6VVC-3XM2...

6.5CVSS6.7AI score0.01212EPSS
Exploits0
OSV
OSV
added 2023/08/08 10:15 a.m.7 views

CVE-2023-38679

A vulnerability has been identified in Tecnomatix Plant Simulation V2201 All versions V2201.0008, Tecnomatix Plant Simulation V2302 All versions V2302.0002. The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. Thi...

7.8CVSS7.4AI score0.00222EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:42 a.m.3 views

SUSE CVE-2017-11509

An authenticated remote attacker can execute arbitrary code in Firebird SQL Server versions 2.5.7 and 3.0.2 by executing a malformed SQL statement...

8.8CVSS8.2AI score0.06224EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/07/28 12:0 a.m.14 views

Veritas NetBackup 安全漏洞

Veritas NetBackup is a storage service from Veritas, Inc. that is used to provide backup and recovery capabilities for enterprise environments. The software supports ransomware detection and backup protection of environmental data such as metadata and virtual environments. A security vulnerabilit...

9.6CVSS6.7AI score0.0058EPSS
Exploits0References2
OSV
OSV
added 2022/05/24 5:21 p.m.4 views

GHSA-43M6-WVC8-2M7J Mattermost Server's Session ID and Session Token are potentially compromised

An issue was discovered in Mattermost Server before 3.0.2. The purposes of a session ID and a Session Token were mishandled...

6.5CVSS7AI score0.00722EPSS
Exploits0References4
OSV
OSV
added 2019/06/17 8:15 p.m.4 views

ALPINE-CVE-2019-8322

An issue was discovered in RubyGems 2.6 and later through 3.0.2. The gem owner command outputs the contents of the API response directly to stdout. Therefore, if the response is crafted, escape sequence injection may occur...

7.5CVSS7.5AI score0.03372EPSS
Exploits0References1
OSV
OSV
added 2019/02/07 6:3 p.m.7 views

GHSA-QRMC-FJ45-QFC2 Prototype Pollution in extend

Versions of extend prior to 3.0.2 for 3.x and 2.0.2 for 2.x are vulnerable to Prototype Pollution. The extend function allows attackers to modify the prototype of Object causing the addition or modification of an existing property that will exist on all objects. Recommendation If you're using...

9.8CVSS7.2AI score0.0305EPSS
Exploits1References6
OSV
OSV
added 2017/06/09 4:29 p.m.6 views

CVE-2017-2179

Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.2 and earlier allows remote code execution via unspecified vectors, a different vulnerability than CVE-2017-2181 and CVE-2017-2182...

8.8CVSS6.3AI score0.02325EPSS
Exploits0References1
Rows per page
Query Builder