Lucene search
K

4 matches found

CVE
CVE
added 2025/11/13 4:27 p.m.15 views

CVE-2025-20346

CVE-2025-20346 describes a Cisco Catalyst Center RBAC vulnerability: an authenticated, remote attacker with at least Observer/read-only access can alter policy configurations that should be Administrator‑only. Affected product is Cisco Catalyst Center; exploitation involves logging in and modifyi...

4.3CVSS6.6AI score0.00239EPSS
Exploits0References1Affected Software1
Veracode
Veracode
added 2024/11/11 1:47 p.m.6 views

Improper Authentication

Kyverno is vulnerable to Improper Authentication. The vulnerability is due to the ability to override a ClusterPolicy such as "disallow-privileged-containers" by creating a PolicyException in any namespace. This design flaw allows users with privileges in non-Kyverno namespaces to create...

8.7CVSS6.5AI score0.00553EPSS
Exploits1References2Affected Software1
Microsoft KB
Microsoft KB
added 2023/03/28 12:0 a.m.6 views

March 28, 2023—KB5023774 (OS Build 22000.1761) Preview

March 28, 2023—KB5023774 OS Build 22000.1761 Preview NEW 3/28/23 IMPORTANT Starting in April 2023, optional, non-security preview updates will release on the fourth Tuesday of the month. For more information, see Windows monthly updates explained. For information about Windows update terminology,...

7.4AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:35 a.m.6 views

SUSE CVE-2017-1000395

Jenkins 2.73.1 and earlier, 2.83 and earlier provides information about Jenkins user accounts which is generally available to anyone with Overall/Read permissions via the /user/username/api remote API. This included e.g. Jenkins users' email addresses if the Mailer Plugin is installed. The remote...

4.3CVSS4.9AI score0.01335EPSS
Exploits0References3
Rows per page
Query Builder