Lucene search
+L

42 matches found

Prion
Prion
added 2022/08/05 4:15 p.m.29 views

Design/Logic Flaw

An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.6 before 15.0.5, all versions starting from 15.1 before 15.1.4, all versions starting from 15.2 before 15.2.1. A malicious developer could exfiltrate an integration's access token by modifying the integration URL...

5.5CVSS6.2AI score0.01005EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2022/05/11 3:15 p.m.54 views

CVE-2022-1426

An issue has been discovered in GitLab affecting all versions starting from 12.6 before 14.8.6, all versions starting from 14.9 before 14.9.4, all versions starting from 14.10 before 14.10.1. GitLab was not correctly authenticating a user that had some certain amount of information which allowed ...

4.3CVSS6.2AI score0.00866EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2021/10/04 12:0 a.m.3 views

PT-2021-14921 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab EE versions 12.6 and later Description: A potential DOS issue was discovered due to the lack of pagination in the dependencies API. Recommendations: For GitLab EE version 12.6 and later, consider implementing pagination in the...

6.5CVSS6AI score0.00996EPSS
Exploits0References9
ALT Linux
ALT Linux
added 2021/05/24 12:0 a.m.123 views

Security fix for the ALT Linux 9 package postgresql12-1C version 12.6-alt1.M90P.1

12.6-alt1.M90P.1 built May 24, 2021 Alexei Takaseev in task 272061 May 18, 2021 Alexei Takaseev - Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029...

6.5CVSS8AI score0.0199EPSS
Exploits0
ALT Linux
ALT Linux
added 2021/05/17 12:0 a.m.121 views

Security fix for the ALT Linux 10 package postgresql15-1C version 12.6-alt2

May 17, 2021 Alexei Takaseev 12.6-alt2 - Fixes CVE-2021-32027, CVE-2021-32028, CVE-2021-32029...

6.5CVSS7.9AI score0.0199EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.18 views

SUSE: Security Advisory (SUSE-SU-2021:0695-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.4AI score0.01187EPSS
Exploits2References5
Prion
Prion
added 2021/04/02 5:15 p.m.14 views

Race condition

An issue has been discovered in GitLab CE/EE affecting all versions starting with 12.6. Under a special condition it was possible to access data of an internal repository through a public project fork as an anonymous user...

4.3CVSS7.3AI score0.01003EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/04/02 5:15 p.m.4 views

UBUNTU-CVE-2021-22200

An issue has been discovered in GitLab CE/EE affecting all versions starting with 12.6. Under a special condition it was possible to access data of an internal repository through a public project fork as an anonymous user...

7.5CVSS7AI score0.01003EPSS
Exploits0References4
OSV
OSV
added 2021/04/01 2:15 p.m.4 views

DEBIAN-CVE-2021-3393

An information leak was discovered in postgresql in versions before 13.2, before 12.6 and before 11.11. A user having UPDATE permission but not SELECT permission to a particular column could craft queries which, under some circumstances, might disclose values from that column in error messages. A...

4.3CVSS5.5AI score0.01187EPSS
Exploits2References1
OPENSUSE Linux
OPENSUSE Linux
added 2021/03/16 12:0 a.m.39 views

Security update for postgresql12 (moderate)

openSUSE Security Update: Security update for postgresql12 Announcement ID: openSUSE-SU-2021:0423-1 Rating: moderate References: 1179765 1182040 Cross-References: CVE-2021-3393 CVSS scores: CVE-2021-3393 SUSE: 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: openSUSE Leap 15.2 ...

6.2CVSS5AI score0.01187EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2021/03/04 12:0 a.m.29 views

SUSE SLES15 Security Update : postgresql12 (SUSE-SU-2021:0695-1)

This update for postgresql12 fixes the following issues : Upgrade to version 12.6 : Reindexing might be needed after applying this update. CVE-2021-3393, bsc1182040: Fix information leakage in constraint-violation error messages. Note that Tenable Network Security has extracted the preceding...

4.3CVSS6.3AI score0.01187EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2021/02/24 12:0 a.m.16 views

PostgreSQL < 9.5.25, 9.6.x < 9.6.21, 10.x < 10.16, 11.x < 11.11, 12.x < 12.6, 13.x < 13.2 Information Disclosure Vulnerability - Windows

PostgreSQL is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.8AI score0.01466EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/02/24 12:0 a.m.19 views

PostgreSQL < 9.5.25, 9.6.x < 9.6.21, 10.x < 10.16, 11.x < 11.11, 12.x < 12.6, 13.x < 13.2 Information Disclosure Vulnerability - Linux

PostgreSQL is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.8AI score0.01466EPSS
Exploits0References1
OSV
OSV
added 2021/02/22 12:55 p.m.6 views

SUSE-SU-2021:0544-1 Security update for postgresql12

This update for postgresql12 fixes the following issues: Upgrade to version 12.6: - Reindexing might be needed after applying this update. - CVE-2021-3393, bsc1182040: Fix information leakage in constraint-violation error messages...

4.3CVSS6.1AI score0.01187EPSS
Exploits2References4
ALT Linux
ALT Linux
added 2021/02/19 12:0 a.m.87 views

Security fix for the ALT Linux 9 package postgresql12 version 12.6-alt0.M90P.1

12.6-alt0.M90P.1 built Feb. 19, 2021 Alexei Takaseev in task 266186 Feb. 11, 2021 Alexei Takaseev - 12.6 Fixes CVE-2021-3393...

3.5CVSS5.3AI score0.01187EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2020/11/17 12:0 a.m.5 views

PT-2020-13495 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 12.6 through 13.3.8 Description: A potential DOS issue was discovered in GitLab CE/EE. The container registry name check could cause an exponential number of backtracks for certain user-supplied values, resulting in high...

4.3CVSS4.1AI score0.01416EPSS
Exploits0References8
CNVD
CNVD
added 2020/04/30 12:0 a.m.6 views

Unnamed Vulnerability in GitLab (CNVD-2021-19415)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab versions 12.6...

5.3CVSS6.6AI score0.00997EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2019/09/23 6:33 p.m.41 views

Cross-site scripting in Sakai

Sakai through 12.6 allows XSS via a chat user name...

6.1CVSS2.6AI score0.00832EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2019/02/21 8:29 p.m.16 views

Race condition

A vulnerability in the Cisco Discovery Protocol or Link Layer Discovery Protocol LLDP implementation for the Cisco IP Phone 7800 and 8800 Series could allow an unauthenticated, adjacent attacker to cause an affected phone to reload unexpectedly, resulting in a temporary denial of service DoS...

6.1CVSS6.4AI score0.0064EPSS
Exploits0References2Affected Software14
OSV
OSV
added 2019/02/21 8:29 p.m.5 views

CVE-2019-1684

A vulnerability in the Cisco Discovery Protocol or Link Layer Discovery Protocol LLDP implementation for the Cisco IP Phone 7800 and 8800 Series could allow an unauthenticated, adjacent attacker to cause an affected phone to reload unexpectedly, resulting in a temporary denial of service DoS...

6.5CVSS6.6AI score0.0064EPSS
Exploits0References2
Rows per page
Query Builder