Lucene search
K

76 matches found

Debian
Debian
added 2022/08/30 4:22 p.m.48 views

[SECURITY] [DLA 3087-1] webkit2gtk security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3087-1 [email protected] https://www.debian.org/lts/security/ Anton Gladky August 30, 2022 https://wiki.debian.org/LTS -...

8.8CVSS9.5AI score0.09785EPSS
Exploits0
Debian
Debian
added 2022/08/16 9:53 p.m.40 views

[SECURITY] [DSA 5210-1] webkit2gtk security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5210-1 [email protected] https://www.debian.org/security/ Alberto Garcia August 16, 2022 https://www.debian.org/security/faq -...

8.8CVSS8.8AI score0.06463EPSS
Exploits0
NVD
NVD
added 2022/06/24 9:15 p.m.27 views

CVE-2022-34053

The DR-Web-Engine package in PyPI v0.2.0b0 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges...

9.8CVSS0.01896EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/06/24 9:15 p.m.3 views

CVE-2022-34053

The DR-Web-Engine package in PyPI v0.2.0b0 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges...

9.8CVSS6.3AI score0.01896EPSS
Exploits1References4
OSV
OSV
added 2022/06/24 9:15 p.m.3 views

CVE-2022-34053

The DR-Web-Engine package in PyPI v0.2.0b0 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges...

9.8CVSS6.2AI score0.01896EPSS
Exploits1References3
Prion
Prion
added 2022/06/24 9:15 p.m.14 views

Design/Logic Flaw

The DR-Web-Engine package in PyPI v0.2.0b0 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges...

7.5CVSS9.7AI score0.01896EPSS
Exploits1References3Affected Software1
PyPA
PyPA
added 2022/06/24 9:15 p.m.4 views

PYSEC-2022-43132

The DR-Web-Engine package in PyPI v0.2.0b0 was discovered to contain a code execution backdoor via the request package. This vulnerability allows attackers to access sensitive user information and digital currency keys, as well as escalate privileges...

9.8CVSS8AI score0.01896EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2022/06/24 8:39 p.m.92 views

CVE-2022-34053

CVE-2022-34053 concerns the DR-Web-Engine package for PyPI, v0.2.0b0, featuring a code execution backdoor via the request package. The root cause is a backdoor enabling an attacker to access sensitive user information and digital currency keys and to escalate privileges. Documented sources (NVD, ...

9.8CVSS9.7AI score0.01896EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2022/06/24 12:0 a.m.3 views

DR-Web-Engine 安全漏洞

DR-Web-Engine is built on python based on the lxml package and uses JSON as the query structure. A security vulnerability exists in DR-Web-Engine. An attacker could exploit the vulnerability to access sensitive user information and digital currency keys, as well as elevate privileges...

9.8CVSS8.4AI score0.01896EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/05/16 12:0 a.m.3 views

PT-2022-7558 · Unknown +6 · Wpe Webkit +6

Name of the Vulnerable Software and Affected Versions: WPE WebKit versions prior to 2.36.4 WebKitGTK versions prior to 2.36.4 Description: The issue is related to errors in resource release, allowing a remote attacker to impact data integrity. It involves a logic problem in handling concurrent...

8.8CVSS5.4AI score0.01259EPSS
Exploits0References52
ATTACKERKB
ATTACKERKB
added 2022/05/04 11:0 p.m.5 views

CVE-2022-20764

Multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow a remote attacker to cause a denial of service DoS condition, view sensitive data on an affected device, or redirect users to an attacker-controlled destinatio...

8.1CVSS7.3AI score0.00962EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/05/04 11:0 p.m.5 views

CVE-2022-20794

Multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow a remote attacker to cause a denial of service DoS condition, view sensitive data on an affected device, or redirect users to an attacker-controlled destinatio...

6.5CVSS5.9AI score0.00698EPSS
Exploits0References2
OSV
OSV
added 2022/05/04 5:15 p.m.3 views

CVE-2022-20794

Multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow a remote attacker to cause a denial of service DoS condition, view sensitive data on an affected device, or redirect users to an attacker-controlled destinatio...

4.7CVSS5.9AI score0.00698EPSS
Exploits0References1
NVD
NVD
added 2022/05/04 5:15 p.m.19 views

CVE-2022-20794

Multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow a remote attacker to cause a denial of service DoS condition, view sensitive data on an affected device, or redirect users to an attacker-controlled destinatio...

6.5CVSS0.00698EPSS
Exploits0References1
OSV
OSV
added 2022/05/04 5:15 p.m.4 views

CVE-2022-20764

Multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow a remote attacker to cause a denial of service DoS condition, view sensitive data on an affected device, or redirect users to an attacker-controlled destinatio...

8.1CVSS5.9AI score0.00962EPSS
Exploits0References1
Prion
Prion
added 2022/05/04 5:15 p.m.13 views

Design/Logic Flaw

Multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow a remote attacker to cause a denial of service DoS condition, view sensitive data on an affected device, or redirect users to an attacker-controlled destinatio...

4.3CVSS5.2AI score0.00698EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2022/05/04 5:15 p.m.16 views

Design/Logic Flaw

Multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow a remote attacker to cause a denial of service DoS condition, view sensitive data on an affected device, or redirect users to an attacker-controlled destinatio...

5.5CVSS7.9AI score0.00962EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2022/05/04 5:6 p.m.126 views

CVE-2022-20794

CVE-2022-20794 covers multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint (CE) Software and Cisco RoomOS Software. The issues could allow a remote attacker to cause a DoS, view sensitive data on the affected device, or redirect users to an attacker-controlled d...

6.5CVSS5.3AI score0.00698EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2022/05/04 5:6 p.m.11 views

CVE-2022-20794 Cisco TelePresence Collaboration Endpoint and RoomOS Software Vulnerabilities

Multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow a remote attacker to cause a denial of service DoS condition, view sensitive data on an affected device, or redirect users to an attacker-controlled destinatio...

6.5CVSS7.1AI score0.00698EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/04 5:6 p.m.25 views

CVE-2022-20794 Cisco TelePresence Collaboration Endpoint and RoomOS Software Vulnerabilities

Multiple vulnerabilities in the web engine of Cisco TelePresence Collaboration Endpoint CE Software and Cisco RoomOS Software could allow a remote attacker to cause a denial of service DoS condition, view sensitive data on an affected device, or redirect users to an attacker-controlled destinatio...

6.5CVSS6.8AI score0.00698EPSS
Exploits0References1
Rows per page
Query Builder