CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

9 matches found

NVD•added 2019/12/05 12:15 a.m.•16 views

CVE-2019-19521

libc in OpenBSD 6.6 allows authentication bypass via the -schallenge username, as demonstrated by smtpd, ldapd, or radiusd. This is related to gen/authsubr.c and gen/authenticate.c in libc and login/login.c and xenocara/app/xenodm/greeter/verify.c...

9.8CVSS9.6AI score0.00398EPSS

Exploits2References7

Prion•added 2019/12/05 12:15 a.m.•34 views

Authentication flaw

libc in OpenBSD 6.6 allows authentication bypass via the -schallenge username, as demonstrated by smtpd, ldapd, or radiusd. This is related to gen/authsubr.c and gen/authenticate.c in libc and login/login.c and xenocara/app/xenodm/greeter/verify.c...

7.5CVSS9.4AI score0.00398EPSS

Exploits2References7Affected Software1

NVD•added 2014/04/23 3:55 p.m.•15 views

CVE-2014-2855

The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...

7.8CVSS6.2AI score0.17189EPSS

Exploits1References11

OSV•added 2014/04/23 3:55 p.m.•1 views

DEBIAN-CVE-2014-2855

The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...

7.8CVSS6.7AI score0.17189EPSS

Exploits1References1

CVE•added 2014/04/23 2:0 p.m.•58 views

CVE-2014-2855

CVE-2014-2855 affects rsync up to version 3.1.0. The vulnerability resides in check_secret() in authenticate.c, where a username not present in the secrets file can trigger an infinite loop and CPU denial of service. Multiple advisories confirm the issue and reference the affected rsync, with pat...

7.8CVSS6.3AI score0.17189EPSS

Exploits1References11Affected Software1

Cvelist•added 2014/04/23 2:0 p.m.•18 views

CVE-2014-2855

The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...

6.1AI score0.17189EPSS

Exploits1References11

Debian CVE•added 2014/04/23 2:0 p.m.•15 views

CVE-2014-2855

The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...

7.8CVSS6.1AI score0.17189EPSS

OSV•added 2014/04/17 12:0 a.m.•0 views

UBUNTU-CVE-2014-2855

The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...

7.8CVSS5.8AI score0.17189EPSS

Exploits1References3

UbuntuCve•added 2014/04/17 12:0 a.m.•15 views

CVE-2014-2855

The checksecret function in authenticate.c in rsync 3.1.0 and earlier allows remote attackers to cause a denial of service infinite loop and CPU consumption via a user name which does not exist in the secrets file...

7.8CVSS5.9AI score0.17189EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by