Lucene search
K

13 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-28686

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Dino before 0.2.3, 0.3.x before 0.3.2, and 0.4.x before 0.4.2 allows attackers to modify the personal bookmark store via a crafted message. The attacker can...

7.1CVSS6.5AI score0.00699EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/04/02 12:0 a.m.19 views

Fedora 38 : dino (2023-ea6b94395f)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-ea6b94395f advisory. Maintenance release with fix for CVE-2023-28686 and bug fixes. Tenable has extracted the preceding description block directly from the Fedora security...

7.1CVSS7AI score0.00699EPSS
Exploits0References2
OSV
OSV
added 2023/03/31 12:13 a.m.6 views

MGASA-2023-0122 Updated dino packages fix security vulnerability

When a Dino client receives a specifically crafted message from an unauthorized sender, it would use information from that message to add, update or remove entries in the user’s personal bookmark store without requiring further user interaction. CVE-2023-28686...

7.1CVSS6.5AI score0.00699EPSS
Exploits0References3
Veracode
Veracode
added 2023/03/30 7:23 p.m.21 views

Information Disclosure

dino is vulnerable to Information Disclosure. The attacker can modify the personal bookmark store, change the display of group chats, or force a victim to join a group chat, which can lead to the victim disclosing sensitive information...

7.1CVSS6.5AI score0.00699EPSS
Exploits0References10Affected Software2
Debian
Debian
added 2023/03/27 8:10 p.m.24 views

[SECURITY] [DSA 5379-1] dino-im security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5379-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 27, 2023 https://www.debian.org/security/faq -...

7.1CVSS6.7AI score0.00699EPSS
Exploits0
NVD
NVD
added 2023/03/24 4:15 a.m.15 views

CVE-2023-28686

Dino before 0.2.3, 0.3.x before 0.3.2, and 0.4.x before 0.4.2 allows attackers to modify the personal bookmark store via a crafted message. The attacker can change the display of group chats or force a victim to join a group chat; the victim may then be tricked into disclosing sensitive informati...

7.1CVSS6.7AI score0.00699EPSS
Exploits0References5
OSV
OSV
added 2023/03/24 4:15 a.m.16 views

CVE-2023-28686

Dino before 0.2.3, 0.3.x before 0.3.2, and 0.4.x before 0.4.2 allows attackers to modify the personal bookmark store via a crafted message. The attacker can change the display of group chats or force a victim to join a group chat; the victim may then be tricked into disclosing sensitive informati...

7.1CVSS6.9AI score0.00699EPSS
Exploits0References5
OSV
OSV
added 2023/03/24 4:15 a.m.2 views

DEBIAN-CVE-2023-28686

Dino before 0.2.3, 0.3.x before 0.3.2, and 0.4.x before 0.4.2 allows attackers to modify the personal bookmark store via a crafted message. The attacker can change the display of group chats or force a victim to join a group chat; the victim may then be tricked into disclosing sensitive informati...

7.1CVSS6.9AI score0.00699EPSS
Exploits0References1
OSV
OSV
added 2023/03/24 4:15 a.m.2 views

UBUNTU-CVE-2023-28686

Dino before 0.2.3, 0.3.x before 0.3.2, and 0.4.x before 0.4.2 allows attackers to modify the personal bookmark store via a crafted message. The attacker can change the display of group chats or force a victim to join a group chat; the victim may then be tricked into disclosing sensitive informati...

7.1CVSS7AI score0.00699EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/03/24 12:0 a.m.28 views

CVE-2023-28686

Dino before 0.2.3, 0.3.x before 0.3.2, and 0.4.x before 0.4.2 allows attackers to modify the personal bookmark store via a crafted message. The attacker can change the display of group chats or force a victim to join a group chat; the victim may then be tricked into disclosing sensitive informati...

6.8AI score0.00699EPSS
Exploits0References5
CVE
CVE
added 2023/03/24 12:0 a.m.100 views

CVE-2023-28686

CVE-2023-28686 affects the Dino chat client prior to 0.2.3, 0.3.x before 0.3.2, and 0.4.x before 0.4.2. A crafted message can modify the user’s personal bookmark store, and may alter the display of group chats or force the victim to join a group chat, potentially leading to disclosure of sensitiv...

7.1CVSS6.5AI score0.00699EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2023/03/24 12:0 a.m.4 views

PT-2023-21905 · Dino +2 · Dino +2

Name of the Vulnerable Software and Affected Versions: Dino versions prior to 0.2.3 Dino versions 0.3.x prior to 0.3.2 Dino versions 0.4.x prior to 0.4.2 Description: The issue allows attackers to modify the personal bookmark store via a crafted message. This can lead to changing the display of...

7.1CVSS6.4AI score0.00699EPSS
Exploits0References29
Debian CVE
Debian CVE
added 2023/03/24 12:0 a.m.35 views

CVE-2023-28686

Dino before 0.2.3, 0.3.x before 0.3.2, and 0.4.x before 0.4.2 allows attackers to modify the personal bookmark store via a crafted message. The attacker can change the display of group chats or force a victim to join a group chat; the victim may then be tricked into disclosing sensitive informati...

7.1CVSS6.7AI score0.00699EPSS
Exploits0
Rows per page
Query Builder