Lucene search
K

1434 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:7 p.m.3 views

CVE-2026-31864

JumpServer is an open source bastion host and an operation and maintenance security audit system. a Server-Side Template Injection SSTI vulnerability exists in JumpServer's Applet and VirtualApp upload functionality. This vulnerability can only be exploited by users with administrative privileges...

6.8CVSS6.2AI score0.00347EPSS
Exploits0References1
NVD
NVD
added 2026/03/13 7:54 p.m.6 views

CVE-2026-31864

JumpServer is an open source bastion host and an operation and maintenance security audit system. a Server-Side Template Injection SSTI vulnerability exists in JumpServer's Applet and VirtualApp upload functionality. This vulnerability can only be exploited by users with administrative privileges...

6.8CVSS0.00347EPSS
Exploits0References2
OSV
OSV
added 2026/03/13 7:22 p.m.7 views

CVE-2026-31864 JumpServer has a Server-Side Template Injection Leading to RCE via YAML Rendering

JumpServer is an open source bastion host and an operation and maintenance security audit system. a Server-Side Template Injection SSTI vulnerability exists in JumpServer's Applet and VirtualApp upload functionality. This vulnerability can only be exploited by users with administrative privileges...

6.8CVSS6.2AI score0.00347EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/13 7:22 p.m.31 views

CVE-2026-31864 JumpServer has a Server-Side Template Injection Leading to RCE via YAML Rendering

JumpServer is an open source bastion host and an operation and maintenance security audit system. a Server-Side Template Injection SSTI vulnerability exists in JumpServer's Applet and VirtualApp upload functionality. This vulnerability can only be exploited by users with administrative privileges...

6.8CVSS0.00347EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/13 7:22 p.m.4 views

EUVD-2026-12085

JumpServer is an open source bastion host and an operation and maintenance security audit system. a Server-Side Template Injection SSTI vulnerability exists in JumpServer's Applet and VirtualApp upload functionality. This vulnerability can only be exploited by users with administrative privileges...

6.8CVSS6.2AI score0.00347EPSS
Exploits0References2
CVE
CVE
added 2026/03/13 7:22 p.m.18 views

CVE-2026-31864

JumpServer is affected by a Server-Side Template Injection (SSTI) in the Applet and VirtualApp upload flow. The manifest.yml is rendered with Jinja2 without sandboxing when processing user-uploaded ZIP packages, allowing template injection. Exploitation requires administrative privileges (Applica...

6.8CVSS6.2AI score0.00347EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/03/13 12:0 a.m.7 views

JumpServer 安全漏洞

JumpServer is an open-source bastion host provided by JumpServer Technology Co., Ltd. in Hangzhou, China. JumpServer has a security vulnerability, which stems from the insecure use of Jinja2 templates during the Applet and VirtualApp upload functions. This vulnerability could allow attackers with...

6.8CVSS6AI score0.00347EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/13 12:0 a.m.5 views

PT-2026-25363

JumpServer is an open source bastion host and an operation and maintenance security audit system. a Server-Side Template Injection SSTI vulnerability exists in JumpServer's Applet and VirtualApp upload functionality. This vulnerability can only be exploited by users with administrative privileges...

6.8CVSS6.2AI score0.00347EPSS
Exploits0References3
OSV
OSV
added 2026/03/07 12:0 a.m.4 views

OPENSUSE-SU-2026:10295-1 NetworkManager-applet-strongswan-1.6.4-1.1 on GA media

These are all security issues fixed in the NetworkManager-applet-strongswan-1.6.4-1.1 package on the GA media of openSUSE Tumbleweed...

3.3CVSS5.8AI score0.00162EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 7 : NetworkManager-1.4.0-12.el7, libnl3-3.2.28-2.el7, network-manager-applet-1.4.0-2.0.1.el7.AXS7, NetworkManager-libreswan-1.2.4-1.el7 (AXSA:2016-1170:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-1170:01 advisory. NetworkManager NetworkManager is a system service that manages network interfaces and connections based on user or automatic configuration. It supports...

6.2CVSS6.3AI score0.00264EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2026/01/16 12:0 a.m.3 views

NetworkManager-applet-l2tp-1.52.0-1.1 on GA media (moderate)

NetworkManager-applet-l2tp-1.52.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10051-1 Rating: moderate Cross-References: CVE-2025-9615 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

3.3CVSS7.2AI score0.00162EPSS
Exploits0
OSV
OSV
added 2026/01/15 12:0 a.m.3 views

OPENSUSE-SU-2026:10051-1 NetworkManager-applet-l2tp-1.52.0-1.1 on GA media

These are all security issues fixed in the NetworkManager-applet-l2tp-1.52.0-1.1 package on the GA media of openSUSE Tumbleweed...

3.3CVSS5.8AI score0.00162EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:57 a.m.7 views

CVE-2020-12787

Microchip Atmel ATSAMA5 products in Secure Mode allow an attacker to bypass existing security mechanisms related to applet handling...

7.5CVSS7AI score0.01227EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:43 a.m.8 views

CVE-1999-0142

The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts...

7.5CVSS7.1AI score0.01547EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-1274

Malware in sbrugna...

6.4CVSS6.4AI score0.14327EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2002-1309

Malware in sbrugna...

5CVSS6.4AI score0.13858EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2011-2034

Malware in sbrugna...

9.3CVSS6.2AI score0.10684EPSS
Exploits2References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-2227

Malware in sbrugna...

10CVSS6.4AI score0.05787EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-1999-0142

Malware in sbrugna...

7.5CVSS6.4AI score0.01547EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-2167

Malware in sbrugna...

5.5CVSS6.9AI score0.00306EPSS
Exploits1References5
Rows per page
Query Builder