Lucene search
+L

184 matches found

CVE
CVE
added 2023/06/22 7:14 p.m.59 views

CVE-2023-2989

CVE-2023-2989 affects Fortra Globalscape EFT administration server prior to 8.1.0.16, due to an out-of-bounds memory read that can permit authentication bypass. Public details describe a blind read flaw in the EFT admin protocol, enabling a logged-in attacker to impersonate another user under cer...

9.1CVSS9.4AI score0.00967EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/22 7:14 p.m.18 views

CVE-2023-2989 Fortra Globalscape Administration Server Out of Bounds Memory Read

Fortra Globalscape EFT versions before 8.1.0.16 suffer from an out of bounds memory read in their administration server, which can allow an attacker to crash the service or bypass authentication if successfully exploited...

7.1AI score0.00967EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/06/22 7:14 p.m.31 views

CVE-2023-2989 Fortra Globalscape Administration Server Out of Bounds Memory Read

Fortra Globalscape EFT versions before 8.1.0.16 suffer from an out of bounds memory read in their administration server, which can allow an attacker to crash the service or bypass authentication if successfully exploited...

9.5AI score0.00967EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 10:31 p.m.37 views

Security Bulletin: Remote Escalation of Privilege Vulnerability in DB2 Administration Server (CVE-2012-0711)

Abstract Vulnerability in IBM DB2 Administrator Server could allow an escalation of privilege attack. Content VULNERABILITY DETAILS CVE ID: CVE-2012-0711 DESCRIPTION: The IBM DB2 products listed below contain a security vulnerability in the DB2 Administration Server DAS which would allow an...

7.5CVSS6.7AI score0.04627EPSS
Exploits0Affected Software2
NVD
NVD
added 2021/12/07 9:15 p.m.17 views

CVE-2021-34543

The web administration server in Solar-Log 500 before 2.8.2 Build 52 does not require authentication, which allows remote attackers to gain administrative privileges by connecting to the server. As a result, the attacker can modify configuration files and change the system status. Fixed with...

7.5CVSS0.02934EPSS
Exploits1References3
0day.today
0day.today
added 2021/06/11 12:0 a.m.32 views

Solar-Log 500 2.8.2 - Incorrect Access Control Vulnerability

Exploit Title: Solar-Log 500 2.8.2 - Incorrect Access Control Google Dork: In Shodan search engine, the filter is ""Server: email protected"" Exploit Author: Luca.Chiou Vendor Homepage: https://www.solar-log.com/en/ Software Link: Firmware for Solar-Log...

0.8AI score
Exploits0
Veracode
Veracode
added 2020/04/10 12:23 a.m.20 views

Privilege Escalation

redhat-ds-admin is vulnerable to privilege escalation. The vulnerability exists as it was discovered that the Red Hat Administration Server did to properly restrict access to CGI scripts. An unauthenticated remote user with access to the TCP port used by the Administration Server could access...

7.5CVSS1.6AI score0.02012EPSS
Exploits0References11Affected Software1
Veracode
Veracode
added 2020/04/10 12:23 a.m.30 views

Arbitrary Command Execution

redhat-ds-admin is vulnerable to arbitrary command execution. The vulnerability exists as a shell command injection flaw was discovered in the Red Hat Administration Server replication monitor CGI script used by Red Hat Directory Server 8.0. An attacker with access to the replication monitor web...

9CVSS2.4AI score0.1402EPSS
Exploits1References15Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/12/19 12:0 a.m.31 views

Debian DLA-2041-1 : debian-edu-config security update

It was discovered that debian-edu-config, the package containing the configuration files and scripts for Debian Edu Skolelinux, contained an insecure configuration for kadmin, the Kerberos administration server. The insecure configuration allowed every user to change other users' passwords, thus...

7.8CVSS7.1AI score0.00503EPSS
Exploits1References3
Cvelist
Cvelist
added 2018/11/07 12:0 a.m.24 views

CVE-2018-12415 TIBCO Enterprise Message Service Vulnerable to CSRF Attacks

The Central Administration server emsca component of TIBCO Software Inc.'s TIBCO Enterprise Message Service, TIBCO Enterprise Message Service - Community Edition, and TIBCO Enterprise Message Service - Developer Edition contains a vulnerability which may allow an attacker to perform cross-site...

7.5CVSS8.8AI score0.00871EPSS
Exploits0References3
OSV
OSV
added 2018/11/06 11:29 p.m.6 views

CVE-2018-12415

The Central Administration server emsca component of TIBCO Software Inc.'s TIBCO Enterprise Message Service, TIBCO Enterprise Message Service - Community Edition, and TIBCO Enterprise Message Service - Developer Edition contains a vulnerability which may allow an attacker to perform cross-site...

8.8CVSS5.7AI score0.00871EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 10:32 p.m.32 views

Security Bulletin: Multiple vulnerabilities in IBM Cloud Orchestrator, IBM Cloud Orchestrator Enterprise, and products shipped with IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise

Summary Multiple vulnerabilities have been identified in IBM Cloud Orchestrator, IBM Cloud Orchestrator Enterprise, and in supporting products shipped with IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise. Vulnerability Details This security bulletin covers multiple vulnerabilities in...

10CVSS0.9AI score0.9986EPSS
Exploits11Affected Software1
CNVD
CNVD
added 2017/08/29 12:0 a.m.4 views

Red Hat 389 Administration Server Elevation of Privilege Vulnerability

Red Hat 389 Administration Server is an enterprise-class Linux directory server from Red Hat. The server fully supports the LDAPv3 specification and features scalability, multi-master replication, and more. A security vulnerability exists in Red Hat 389 Administration Server versions prior to...

4.6CVSS4.8AI score0.00413EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2017/08/28 7:29 p.m.24 views

CVE-2015-0233

Multiple insecure Temporary File vulnerabilities in 389 Administration Server before 1.1.38...

4.6CVSS5.9AI score0.00413EPSS
Exploits0References2
Prion
Prion
added 2017/08/28 7:29 p.m.23 views

Design/Logic Flaw

Multiple insecure Temporary File vulnerabilities in 389 Administration Server before 1.1.38...

4.6CVSS7.2AI score0.00413EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2017/08/28 7:29 p.m.26 views

UBUNTU-CVE-2015-0233

Multiple insecure Temporary File vulnerabilities in 389 Administration Server before 1.1.38...

4.2CVSS5.8AI score0.00413EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/08/28 7:0 p.m.25 views

CVE-2015-0233

Multiple insecure Temporary File vulnerabilities in 389 Administration Server before 1.1.38...

4.6AI score0.00413EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2017/08/28 7:0 p.m.53 views

CVE-2015-0233

Removed by vendor...

4.6CVSS4.8AI score0.00413EPSS
Exploits0
CVE
CVE
added 2017/08/28 7:0 p.m.60 views

CVE-2015-0233

CVE-2015-0233 affects the 389 Administration Server prior to version 1.1.38. The issue is described as multiple insecure temporary file vulnerabilities in the server. Impact is limited to confidentiality, integrity, and availability (per CVSS), with local attack vector and the need for high privi...

4.6CVSS4.6AI score0.00413EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/05/04 12:0 a.m.17 views

Kaa IoT Administration Server Detection

Binary data kaaiotdetect.nbin...

7.3AI score
Exploits0References1
Rows per page
Query Builder