finep.gov.br Cross Site Scripting vulnerability OBB-2759249

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| finep.gov.br ---|--- Open Bug Bounty...

SUSE SLED15 / SLES15 Security Update : fwupd (SUSE-SU-2022:2322-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:2322-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...

al-ns1.ap.gov.br Cross Site Scripting vulnerability OBB-2740091

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| al-ns1.ap.gov.br ---|--- Open Bug Bount...

uczelnie.edu.pl Open Redirect vulnerability OBB-2733948

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| uczelnie.edu.pl ---|--- Open Bug Bounty...

CVE-2022-1882

A use-after-free flaw was found in the Linux kernel’s pipes functionality in how a user performs manipulations with the pipe postonenotification after freepipeinfo that is already called. This flaw allows a local user to crash or potentially escalate their privileges on the system...

All Vulnerabilities for issm.rj.gov.br Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| issm.rj.gov.br ---|--- Open Bug Bounty...

Jenkins Bugzilla Plugin stores credentials in plain text

Jenkins Bugzilla Plugin stores credentials unencrypted in its global configuration file hudson.plugins.bugzilla.BugzillaProjectProperty.xml on the Jenkins controller. These credentials can be viewed by users with access to the Jenkins controller file system...

Moderate: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.4.4 security updates and bug fixes

Red Hat Advanced Cluster Management for Kubernetes 2.4.4 General Availability release images. This update provides security fixes, bug fixes, and updates container images. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System...

abelardoluz.sc.gov.br Cross Site Scripting vulnerability OBB-2587265

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| abelardoluz.sc.gov.br ---|--- Open Bug...

CVE-2022-27239

In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges...

nbc.gov.bt Cross Site Scripting vulnerability OBB-2556392

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| nbc.gov.bt ---|--- Open Bug Bounty...

abelardoluz.sc.gov.br Cross Site Scripting vulnerability OBB-2537941

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| abelardoluz.sc.gov.br ---|--- Open Bug...

All Vulnerabilities for dashboard.dotrmrt3.gov.ph Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| dashboard.dotrmrt3.gov.ph ---|--- Open...

CVE-2022-1304

An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem...

All Vulnerabilities for paulofrontin.pr.gov.br Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| paulofrontin.pr.gov.br ---|--- Open Bug...

SUSE SLED15 / SLES15 Security Update : libsolv, libzypp, zypper (SUSE-SU-2022:1157-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:1157-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...

All Vulnerabilities for eca.europa.eu Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| eca.europa.eu ---|--- Open Bug Bounty...

All Vulnerabilities for vacina.natal.rn.gov.br Patched via Open Bug Bounty

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| vacina.natal.rn.gov.br ---|--- Open Bug...

nbc.gov.bt Cross Site Scripting vulnerability OBB-2490447

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Affected Website:| nbc.gov.bt ---|--- Open Bug Bounty...

SUSE SLES15 Security Update : libsolv, libzypp, zypper (SUSE-SU-2022:1130-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:1130-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...