6 matches found
PT-2024-24080 · Unknown +1 · Opencomputers +2
Name of the Vulnerable Software and Affected Versions: OpenComputers versions prior to 1.8.4 GregTech: New Horizons modpack versions prior to 1.10.10-GTNH Description: The issue allows a user to get a Computer thread stuck in the Lua VM, which eventually blocks the Server thread, requiring the...
GHSA-J38C-25FJ-MR84 Stored XSS in Apache Airflow
An issue was found in Apache Airflow versions 1.10.10 and below. A stored XSS vulnerability was discovered in the Chart pages of the the "classic" UI...
Apache Airflow Command Injection Vulnerability
Apache Airflow is the United States Apache Apache Software Foundation's set of open source platform for creating, managing and monitoring workflow. The platform is scalable and dynamic monitoring and other characteristics. A command injection vulnerability exists in Apache Airflow 1.10.10 and...
Puppet Agent Global Writable Module Vulnerability
Puppet is a set of Puppet Labs configuration management tools based on the client/server C/S architecture.Puppet Agent is one of the agents. A security vulnerability exists in Puppet Agent versions prior to 5.3.4 and prior to 1.10.10. An attacker could exploit this vulnerability to assign global...
wireshark: SES dissector crash (wnpa-sec-2014-18)
The dissectspdu function in epan/dissectors/packet-ses.c in the SES dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not initialize a certain ID value, which allows remote attackers to cause a denial of service application crash via a crafted packet...
wireshark: MEGACO dissector infinite loop (wnpa-sec-2014-13)
The tvbrawtextadd function in epan/dissectors/packet-megaco.c in the MEGACO dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of service infinite loop via an empty line...