Lucene search
K

640 matches found

CVE
CVE
added 2019/09/10 4:27 p.m.88 views

CVE-2019-0356

CVE-2019-0356 affects SAP NetWeaver Process Integration XI Runtime Workbench (MESSAGING) and SAP_XIAF before versions 7.31, 7.40, 7.50. The issue enables an attacker to access information that should be restricted. Some sources attribute the vulnerability to configuration issues. Connected docume...

4.3CVSS4.5AI score0.00704EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2019/07/09 12:0 a.m.3 views

Cloudera Data Science Workbench Code Execution Vulnerability

Cloudera Data Science Workbench CDSW is a suite of data science platforms from Cloudera. The platform provides organizations with fast, easy and secure self-service data science support. A security vulnerability exists in Cloudera CDSW 1.3.0 and prior versions. An attacker could exploit the...

9.8CVSS7AI score0.02399EPSS
Exploits0References1
NVD
NVD
added 2019/07/03 4:15 p.m.17 views

CVE-2018-11215

Remote code execution is possible in Cloudera Data Science Workbench version 1.3.0 and prior releases via unspecified attack vectors...

9.8CVSS9.7AI score0.02399EPSS
Exploits0References1
Prion
Prion
added 2019/07/03 4:15 p.m.17 views

Remote code execution

Remote code execution is possible in Cloudera Data Science Workbench version 1.3.0 and prior releases via unspecified attack vectors...

7.5CVSS9.6AI score0.02399EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/07/03 3:46 p.m.63 views

CVE-2018-11215

CVE-2018-11215 concerns Cloudera Data Science Workbench (CDSW) versions 1.3.0 and earlier. The connected records consistently state a remote code execution vulnerability in CDSW, caused by unspecified attack vectors. The sources do not disclose the exact root cause, affected software components b...

9.8CVSS9.6AI score0.02399EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/07/03 3:46 p.m.15 views

CVE-2018-11215

Remote code execution is possible in Cloudera Data Science Workbench version 1.3.0 and prior releases via unspecified attack vectors...

9.7AI score0.02399EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/24 12:0 a.m.2 views

Cloudera Data Science Workbench Information Disclosure Vulnerability

Cloudera Data Science Workbench CDSW is a suite of data science platforms from Cloudera. The platform provides organizations with fast, easy and secure self-service data science support. An information disclosure vulnerability exists in CDSW versions 1.2.x through 1.4.0. The vulnerability stems...

5.3CVSS6.2AI score0.01195EPSS
Exploits0References1
NVD
NVD
added 2019/06/21 3:15 p.m.19 views

CVE-2018-15665

An issue was discovered in Cloudera Data Science Workbench CDSW 1.2.x through 1.4.0. Unauthenticated users can get a list of user accounts...

5.3CVSS5.3AI score0.01195EPSS
Exploits0References2
Prion
Prion
added 2019/06/21 3:15 p.m.12 views

Design/Logic Flaw

An issue was discovered in Cloudera Data Science Workbench CDSW 1.2.x through 1.4.0. Unauthenticated users can get a list of user accounts...

5CVSS5.3AI score0.01195EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2019/06/21 2:18 p.m.300 views

CVE-2018-15665

CDSW (Cloudera Data Science Workbench) is affected for versions 1.2.x through 1.4.0. The issue allows unauthenticated users to obtain a list of user accounts, constituting an information-disclosure vulnerability. The available connected sources confirm the affected product and vulnerable behavior...

5.3CVSS5.3AI score0.01195EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/06/21 2:18 p.m.20 views

CVE-2018-15665

An issue was discovered in Cloudera Data Science Workbench CDSW 1.2.x through 1.4.0. Unauthenticated users can get a list of user accounts...

5.3AI score0.01195EPSS
Exploits0References2
NVD
NVD
added 2019/06/07 4:29 p.m.22 views

CVE-2018-20091

An SQL injection vulnerability was found in Cloudera Data Science Workbench CDSW 1.4.0 through 1.4.2. This would allow any authenticated user to run arbitrary queries against CDSW's internal database. The database contains user contact information, encrypted CDSW passwords in the case of local...

9.9CVSS9.4AI score0.01009EPSS
Exploits0References2
Prion
Prion
added 2019/06/07 4:29 p.m.22 views

Sql injection

An SQL injection vulnerability was found in Cloudera Data Science Workbench CDSW 1.4.0 through 1.4.2. This would allow any authenticated user to run arbitrary queries against CDSW's internal database. The database contains user contact information, encrypted CDSW passwords in the case of local...

6.5CVSS9.3AI score0.01009EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2019/06/07 3:50 p.m.20 views

CVE-2018-20091

An SQL injection vulnerability was found in Cloudera Data Science Workbench CDSW 1.4.0 through 1.4.2. This would allow any authenticated user to run arbitrary queries against CDSW's internal database. The database contains user contact information, encrypted CDSW passwords in the case of local...

9.4AI score0.01009EPSS
Exploits0References2
OSV
OSV
added 2019/04/23 7:32 p.m.5 views

CVE-2019-2629

Vulnerability in the Oracle Health Sciences Data Management Workbench component of Oracle Health Sciences Applications subcomponent: User Interface. The supported version that is affected is 2.4.8. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

5.4CVSS6.3AI score0.00902EPSS
Exploits0References1
NVD
NVD
added 2019/04/23 7:32 p.m.15 views

CVE-2019-2629

Vulnerability in the Oracle Health Sciences Data Management Workbench component of Oracle Health Sciences Applications subcomponent: User Interface. The supported version that is affected is 2.4.8. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

5.5CVSS4.2AI score0.00902EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/04/23 6:16 p.m.17 views

CVE-2019-2629

Vulnerability in the Oracle Health Sciences Data Management Workbench component of Oracle Health Sciences Applications subcomponent: User Interface. The supported version that is affected is 2.4.8. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

4.9AI score0.00902EPSS
Exploits0References1
CVE
CVE
added 2019/04/23 6:16 p.m.52 views

CVE-2019-2629

The CVE-2019-2629 entry concerns Oracle Health Sciences Data Management Workbench (UI subcomponent) within Oracle Health Sciences Applications, affected in version 2.4.8. The vulnerability allows a low-privileged attacker with network access over HTTP to compromise the system, enabling unauthoriz...

5.5CVSS4.8AI score0.00902EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2019/04/18 12:0 a.m.2 views

Oracle Health Sciences Applications Health Sciences Data Management Workbench Access Control Error Vulnerability

Oracle Health Sciences Applications is a suite of Oracle's clinical development solutions for the healthcare industry, of which Health Sciences Data Management Workbench is a component that provides end-to-end clinical data management capabilities. An access control error vulnerability exists in...

5.5CVSS6.7AI score0.00902EPSS
Exploits0References1
OSV
OSV
added 2019/04/10 9:29 p.m.5 views

CVE-2019-0282

Several web pages in SAP NetWeaver Process Integration Runtime Workbench, fixed in versions 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50; can be accessed without user authentication, which might expose internal data like release information, Java package and Java object names which can be misused by the...

5.3CVSS5.8AI score0.01237EPSS
Exploits0References2
Rows per page
Query Builder