Lucene search
K

7041 matches found

Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.32 views

RHEL 9 : libtiff (RHSA-2023:0302)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0302 advisory. The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: LibTiff: DoS from...

6.5CVSS6.7AI score0.01255EPSS
Exploits7References15
OSV
OSV
added 2023/01/20 6:19 p.m.33 views

CVE-2023-22458 Integer overflow in multiple Redis commands can lead to denial-of-service

Redis is an in-memory database that persists on disk. Authenticated users can issue a HRANDFIELD or ZRANDMEMBER command with specially crafted arguments to trigger a denial-of-service by crashing Redis with an assertion failure. This problem affects Redis versions 6.2 or newer up to but not...

5.5CVSS5.4AI score0.69355EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2023/01/20 6:19 p.m.25 views

CVE-2023-22458

Redis is an in-memory database that persists on disk. Authenticated users can issue a HRANDFIELD or ZRANDMEMBER command with specially crafted arguments to trigger a denial-of-service by crashing Redis with an assertion failure. This problem affects Redis versions 6.2 or newer up to but not...

5.5CVSS5.5AI score0.69355EPSS
Exploits0
Malwarebytes
Malwarebytes
added 2023/01/17 7:0 a.m.91 views

Update now! Proof of concept code to be released for Zoho ManageEngine vulnerability

Users of multiple Zoho ManageEngine products are under urgent advice to install the patch issued October 27, 2022. The advice is urgent because on January 13, 2023 the Horizon3 Attack Team tweeted that Proof of Concept PoC code and a deep-dive blog will be released within a week. Mitigation A lon...

9.6AI score0.9994EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2023/01/13 12:0 a.m.29 views

AlmaLinux 8 : libtiff (ALSA-2023:0095)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:0095 advisory. - Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff...

6.5CVSS6.4AI score0.01255EPSS
Exploits7References11
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/12 9:59 p.m.40 views

Security Bulletin: A jwt-go vulnerability affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data (CVE-2020-26160)

Summary A vulnerability in jwt-go affects IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data. Please see below for steps to address this issue. Vulnerability Details CVEID:CVE-2020-26160 DESCRIPTION: jwt-go could allow a remote attacker to bypass security restrictions, caused by a ty...

7.5CVSS7.2AI score0.0214EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2023/01/12 9:27 a.m.4 views

libtiff: Assertion fail in rotateImage() function at tiffcrop.c

A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage at tiffcrop.c:8621 that can cause program crash when reading a crafted input...

6.5CVSS5.7AI score0.00905EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2023/01/12 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-1163)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6AI score0.00311EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/01/12 12:0 a.m.36 views

Oracle Linux 8 : libtiff (ELSA-2023-0095)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-0095 advisory. - Resolves: CVE-2022-2519 CVE-2022-2520 CVE-2022-2521 CVE-2022-2953 - Fix CVE-2022-2867 2118857 - Fix CVE-2022-2868 2118882 - Fix CVE-2022-2869 2118878...

6.5CVSS6.7AI score0.01255EPSS
Exploits7References11
Tenable Nessus
Tenable Nessus
added 2023/01/12 12:0 a.m.34 views

RHEL 8 : libtiff (RHSA-2023:0095)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:0095 advisory. The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: LibTiff: DoS from...

6.5CVSS6.7AI score0.01255EPSS
Exploits7References21
Tenable Nessus
Tenable Nessus
added 2023/01/11 12:0 a.m.20 views

EulerOS Virtualization 2.9.0 : dhcp (EulerOS-SA-2023-1218)

According to the versions of the dhcp package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported...

7.5CVSS6.8AI score0.11296EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/01/09 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-1003)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.6AI score
Exploits0References2
OpenVAS
OpenVAS
added 2023/01/09 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2023-1028)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.6AI score
Exploits0References2
OpenVAS
OpenVAS
added 2023/01/03 12:0 a.m.23 views

ISC BIND DoS Vulnerability (CVE-2016-1286) - Windows

ISC BIND is prone to a denial of service DoS vulnerability. Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

8.6CVSS8.4AI score0.621EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/01/03 12:0 a.m.18 views

ISC BIND DoS Vulnerability (CVE-2016-1285) - Windows

ISC BIND is prone to a denial of service DoS vulnerability. Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

6.8CVSS7.4AI score0.59143EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/01/03 12:0 a.m.27 views

ISC BIND DoS Vulnerability (CVE-2012-5689) - Linux

ISC BIND is prone to a denial of service DoS vulnerability. Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

7.1CVSS6.3AI score0.12036EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/01/01 12:0 a.m.5 views

PT-2025-54082

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc3+ 1 Description A flaw exists in the Linux kernel's btrfs subsystem related to the order of operations when handling page extent mapping during file relocation. Specifically, the set page extent mapped...

4.3CVSS5.9AI score0.00174EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/01 12:0 a.m.8 views

PT-2025-37688

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's btrfs subsystem related to the handling of subpages during file expansion. Specifically, the issue occurs in the btrfs cont expand function where set...

5.5CVSS5.9AI score0.00134EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/12/22 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2022-2814)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6AI score0.00311EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/12/22 12:0 a.m.36 views

Fedora 36 : galera / mariadb (2022-cf88f807f9)

The remote Fedora 36 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2022-cf88f807f9 advisory. MariaDB 10.5.18 & Galera 26.4.13 Release notes: https://mariadb.com/kb/en/mdb-10-5-18-rn/ Tenable has extracted the preceding description block...

7.5CVSS7.4AI score0.02082EPSS
Exploits5References7
Rows per page
Query Builder