Lucene search
K

13 matches found

CVE
CVE
added 2026/05/27 2:13 p.m.22 views

CVE-2026-48924

The CVE-2026-48924 entry concerns Jenkins Bitbucket OAuth Plugin affected in versions 0.17 and earlier. The root cause is insufficient validation of the redirect URL after login, which enables phishing attacks by deceiving users during OAuth flow. The impact is phishing risk; no exploitation deta...

4.3CVSS5.8AI score0.00216EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/01/23 10:2 a.m.3 views

OPENSUSE-SU-2026:20105-1 Security update for sbctl

This update for sbctl fixes the following issues: Changes in sbctl: - Upgrade the embedded golang.org/x/net to 0.46.0 Fixes: bsc1251399, CVE-2025-47911: various algorithms with quadratic complexity when parsing HTML documents Fixes: bsc1251609, CVE-2025-58190: excessive memory consumption by...

5.3CVSS7AI score0.00502EPSS
Exploits1References6
OSV
OSV
added 2025/12/09 1:16 a.m.4 views

DEBIAN-CVE-2013-10031

Plack-Middleware-Session versions before 0.17 may be vulnerable to HMAC comparison timing attacks...

7.5CVSS5.2AI score0.00245EPSS
Exploits0References1
OSV
OSV
added 2025/03/05 12:0 p.m.12 views

RUSTSEC-2025-0010 Versions of *ring* prior to 0.17 are unmaintained.

ring 0.16.20 was released over 4 years ago and isn't maintained, tested, etc. Additionally, the project's general policy is to only patch the latest release, which is 0.17.12 now. It will be difficult for anybody to backport future fixes to versions earlier than 0.17.10 due to license changes...

7.1AI score
Exploits0References3
CNNVD
CNNVD
added 2023/07/14 12:0 a.m.4 views

Debian rsh-client 命令注入漏洞

Debian rsh-client is a command application for the Debian community in the United States. A security vulnerability previously existed in Debian rsh-client version 0.17-24, which stemmed from netkit-rcp allowing command injection via filename...

9.8CVSS8.4AI score0.01763EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2020/09/09 6:9 a.m.35 views

CVE-1999-0612 affecting package finger 0.17-4

CVE-1999-0612 affecting package finger 0.17-4. A patched version of the package is available...

7.5AI score0.6744EPSS
Exploits0
CNVD
CNVD
added 2019/02/14 12:0 a.m.1 views

NetKit Privilege Permission and Access Control Vulnerabilities

NetKit is a network environment simulation system. A security vulnerability exists in the rcp.c file of the rcp client in NetKit 0.17 and earlier versions. An attacker can exploit the vulnerability to bypass access with the help of . or an empty filename to bypass access restrictions...

5.9CVSS6.8AI score0.02067EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.4 views

The vulnerability of the Gentoo Linux operating system allows a malicious intruder to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the netkit-telnetd package up to version 0.17-r3 inclusive in the Gentoo Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

10CVSS5.4AI score0.37896EPSS
Exploits1References3Affected Software1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.27 views

Debian Security Advisory DSA 556-2 (netkit-telnet)

The remote host is missing an update to netkit-telnet announced via advisory DSA 556-2. OpenVAS Vulnerability Test $Id: deb5562.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 556-2 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

5CVSS0.4AI score0.02599EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.17 views

Debian Security Advisory DSA 556-1 (netkit-telnet)

The remote host is missing an update to netkit-telnet announced via advisory DSA 556-1. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

5CVSS6.4AI score0.02599EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2005/03/29 12:0 a.m.30 views

Debian DSA-697-1 : netkit-telnet - buffer overflow

Gael Delalleau discovered a buffer overflow in the handling of the LINEMODE suboptions in telnet clients. This can lead to the execution of arbitrary code when connected to a malicious server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

7.5CVSS8.8AI score0.08635EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2004/06/03 12:0 a.m.9 views

PT-2004-1077 · Openssh +3 · Openssh +4

Name of the Vulnerable Software and Affected Versions: OpenSSH versions prior to 3.4p1 rsh-server-0.17 rsh-0.17 Description: The issue is related to a directory traversal vulnerability in the scp component of OpenSSH, which can be exploited by remote malicious servers to overwrite arbitrary files...

10CVSS7.7AI score0.99506EPSS
Exploits207References370
OSV
OSV
added 1997/07/01 4:0 a.m.5 views

AZL-6421 CVE-1999-0150 affecting package finger for versions less than 0.17-4

The Perl fingerd program allows arbitrary command execution from remote users...

7.5CVSS6.1AI score0.03953EPSS
Exploits0References1
Rows per page
Query Builder