CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Debian CVE•added 2020/11/24 11:0 p.m.•23 views

CVE-2020-26237

8.7CVSS8.9AI score0.01296EPSS

Exploits0

Github Security Blog•added 2020/11/24 10:58 p.m.•72 views

Prototype Pollution in highlight.js

Impact Affected versions of this package are vulnerable to Prototype Pollution. A malicious HTML code block can be crafted that will result in prototype pollution of the base object's prototype during highlighting. If you allow users to insert custom HTML code blocks into your page/app via parsin...

8.7CVSS1.7AI score0.01296EPSS

Exploits0References8Affected Software1

CNVD•added 2020/11/24 12:0 a.m.•2 views

Task Center has an unauthorized access vulnerability

Task Center is a management system. An unauthorized access vulnerability exists in Task Center. An attacker could exploit this vulnerability to obtain sensitive information...

6.7AI score

Exploits0

Tenable Nessus•added 2020/11/24 12:0 a.m.•38 views

RHEL 7 : microcode_ctl (RHSA-2020:5181)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:5181 advisory. The microcodectl packages provide microcode updates for Intel. Security Fixes: hw: Information disclosure issue in Intel SGX via RAPL...

Tenable Nessus•added 2020/11/24 12:0 a.m.•50 views

RHEL 7 : microcode_ctl (RHSA-2020:5183)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:5183 advisory. The microcodectl packages provide microcode updates for Intel. Security Fixes: hw: Information disclosure issue in Intel SGX via RAPL...

Tenable Nessus•added 2020/11/24 12:0 a.m.•45 views

RHEL 7 : microcode_ctl (RHSA-2020:5182)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:5182 advisory. The microcodectl packages provide microcode updates for Intel. Security Fixes: hw: Information disclosure issue in Intel SGX via RAPL...

Tenable Nessus•added 2020/11/24 12:0 a.m.•40 views

RHEL 8 : microcode_ctl (RHSA-2020:5186)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:5186 advisory. The microcodectl packages provide microcode updates for Intel. Security Fixes: hw: Information disclosure issue in Intel SGX via RAPL...

Tenable Nessus•added 2020/11/24 12:0 a.m.•27 views

RHEL 7 : microcode_ctl (RHSA-2020:5190)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:5190 advisory. The microcodectl packages provide microcode updates for Intel. Security Fixes: hw: Information disclosure issue in Intel SGX via RAPL...

Tenable Nessus•added 2020/11/24 12:0 a.m.•29 views

RHEL 7 : microcode_ctl (RHSA-2020:5188)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:5188 advisory. The microcodectl packages provide microcode updates for Intel. Security Fixes: hw: Information disclosure issue in Intel SGX via RAPL...

Tenable Nessus•added 2020/11/24 12:0 a.m.•47 views

RHEL 8 : microcode_ctl (RHSA-2020:5185)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:5185 advisory. The microcodectl packages provide microcode updates for Intel. Security Fixes: hw: Information disclosure issue in Intel SGX via RAPL...

Exploit DB•added 2020/11/24 12:0 a.m.•751 views

OpenCart 3.0.3.6 - 'subject' Stored Cross-Site Scripting

Exploit Title: OpenCart 3.0.3.6 - 'subject' Stored Cross-Site Scripting Date: 24-11-2020 Exploit Author: Hemant Patidar HemantSolo Vendor Homepage: https://www.opencart.com/ Software Link: https://www.opencart.com/index.php?route=cms/download Version: 3.0.3.6 Tested on: Windows 10/Kali Linux CVE:...

4.8CVSS5.5AI score0.0169EPSS

Exploits2

RedHat Linux•added 2020/11/23 7:27 p.m.•71 views

Moderate: Red Hat Security Advisory: microcode_ctl security, bug fix, and enhancement update

An update for microcodectl is now available for Red at Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

5.5CVSS6.3AI score0.0051EPSS

Exploits0References4

RedHat Linux•added 2020/11/23 7:27 p.m.•3 views

hw: Vector Register Leakage-Active

A flaw was found in the Intel Advanced Vector Extensions AVX implementation, where a local authenticated attacker with the ability to execute AVX instructions can gather the AVX register state from previous AVX executions. This vulnerability allows information disclosure of the AVX register state...

RedHat Linux•added 2020/11/23 6:58 p.m.•3 views

hw: Vector Register Leakage-Active

RedHat Linux•added 2020/11/23 6:58 p.m.•75 views

Moderate: Red Hat Security Advisory: microcode_ctl security, bug fix and enhancement update

An update for microcodectl is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

5.5CVSS6.3AI score0.0051EPSS

Exploits0References4

RedHat Linux•added 2020/11/23 6:57 p.m.•3 views

hw: Vector Register Leakage-Active

RedHat Linux•added 2020/11/23 6:1 p.m.•2 views

hw: Vector Register Leakage-Active