Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-6824

Malware in sbrugna...

10CVSS6.1AI score0.01566EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-7291

Malware in sbrugna...

7.5CVSS6.3AI score0.02544EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2009-3846

Malware in sbrugna...

5CVSS6AI score0.03107EPSS
Exploits1References37
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-0838

Malware in sbrugna...

4.3CVSS7.8AI score0.01544EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-13634

Malware in sbrugna...

8.8CVSS8.8AI score0.01008EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-6390

Malware in sbrugna...

9.3CVSS8AI score0.01066EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-7804

Malware in sbrugna...

10CVSS6.4AI score0.02338EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/31 9:50 p.m.96 views

Security Bulletin: IBM Copy Services Manager is vulnerable to remote attack vulnerabilities due to IBM WebSphere Application Server Liberty multiple vulnerabilities.

Summary IBM Copy Services Manager is vulnerable to the listed attack vectors in the bundled depencency IBM Websphere Application Server Liberty. IBM Websphere Application Server Liberty is used by IBM Copy Services Manager to serve application content. The following vulnerabilities have been...

9.8CVSS1.6AI score0.42326EPSS
Exploits5Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/28 7:58 p.m.44 views

Security Bulletin: IBM Engineering Lifecycle Management products are vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44832, CVE-2021-45046, ) and denial of service due to Apache Log4j (CVE-2021-45105)

Summary There are Remote Attack Vulnerabilities in Apache Log4j CVE-2021-45105, CVE-2021-45046, CVE-2021-44832 which is used by the IBM Engineering Lifecycle Management products for logging . The fix includes upgrade to Apache log4j v2.17.1. Vulnerability Details CVEID:CVE-2021-44832 DESCRIPTION:...

10CVSS7.9AI score0.99999EPSS
Exploits354Affected Software9
Hacker One
Hacker One
added 2021/03/09 3:24 a.m.43 views

U.S. Dept Of Defense: HTTP Request Smuggling

hello dear support I have found HTTP Request Smuggling on www.████████ Issue description ============== HTTP request smuggling vulnerabilities arise when websites route HTTP requests through webservers with inconsistent HTTP parsing. By supplying a request that gets interpreted as being different...

7.4AI score
Exploits0
Cent OS
Cent OS
added 2020/11/06 10:1 p.m.1396 views

nspr, nss security update

CentOS Errata and Security Advisory CESA-2020:4076 An update for nss, nss-softokn, nss-util, and nspr is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, whi...

10CVSS6.7AI score0.03552EPSS
Exploits1References7
OSV
OSV
added 2017/07/03 4:29 p.m.5 views

CVE-2017-5943

Request Tracker RT 4.x before 4.0.25, 4.2.x before 4.2.14, and 4.4.x before 4.4.2 allows remote attackers to obtain sensitive information about cross-site request forgery CSRF verification tokens via a crafted URL...

8.8CVSS8.5AI score
Exploits0References3
OSV
OSV
added 2016/11/22 11:12 a.m.12 views

SUSE-SU-2016:2872-1 Security update for bash

This update for bash fixes the following issues: - CVE-2016-7543: Local attackers could have executed arbitrary commands via specially crafted SHELLOPTS+PS4 variables bsc1001299 - CVE-2016-0634: Malicious hostnames could have allowed arbitrary command execution when $HOSTNAME was expanded in the...

10CVSS8.2AI score0.99621EPSS
Exploits36References10
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.7 views

Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information

The multiple vulnerabilities in the kernel-image-2.6.8-2-64-smp operating system of the Debian GNU/Linux distribution may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...

10CVSS5.4AI score0.05357EPSS
Exploits20References61Affected Software1
RedHat Linux
RedHat Linux
added 2010/01/14 4:32 p.m.3 views

OpenJDK MessageDigest.isEqual introduces timing attack vulnerabilities (6863503)

The MessageDigest.isEqual function in Java Runtime Environment JRE in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to spoof HMAC-based digital signatures, and possibl...

5CVSS5.9AI score0.03107EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2009/11/30 12:0 a.m.38 views

openSUSE Security Update : java-1_6_0-openjdk (java-1_6_0-openjdk-1613)

New icedtea update to fix : - ICCProfile file existence detection information leak; CVE-2009-3728: CVSS v2 Base Score: 5.0 - BMP parsing DoS with UNC ICC links; CVE-2009-3885: CVSS v2 Base Score: 5.0 - resurrected classloaders can still have children; CVE-2009-3881: CVSS v2 Base Score: 7.5 -...

9.3CVSS6.8AI score0.65461EPSS
Exploits13References17
Prion
Prion
added 2009/11/05 4:30 p.m.19 views

Authentication flaw

The MessageDigest.isEqual function in Java Runtime Environment JRE in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to spoof HMAC-based digital signatures, and possibl...

5CVSS6.5AI score0.03107EPSS
Exploits1References25Affected Software3
UbuntuCve
UbuntuCve
added 2009/11/05 12:0 a.m.39 views

CVE-2009-3875

The MessageDigest.isEqual function in Java Runtime Environment JRE in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.127, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to spoof HMAC-based digital signatures, and possibl...

5CVSS5.9AI score0.03107EPSS
Exploits1References4
OSV
OSV
added 2007/06/28 6:30 p.m.15 views

CVE-2007-3472

Integer overflow in gdImageCreateTrueColor function in the GD Graphics Library libgd before 2.0.35 allows user-assisted remote attackers to have unspecified attack vectors and impact...

6.8AI score
Exploits0References37
Cvelist
Cvelist
added 2002/10/29 5:0 a.m.25 views

CVE-2002-0386

The administration module for Oracle Web Cache in Oracle9iAS 9i Application Suite 9.0.2 allows remote attackers to cause a denial of service crash via 1 an HTTP GET request containing a ".." dot dot sequence, or 2 a malformed HTTP GET request with a chunked Transfer-Encoding with missing data...

8.9AI score0.21977EPSS
Exploits1References4
Rows per page
Query Builder