Lucene search
K

4 matches found

Prion
Prion
added 2023/08/07 5:15 p.m.24 views

Design/Logic Flaw

The event analysis component in Zoho ManageEngine ADAudit Plus 7.1.1 allows an attacker to bypass audit detection by creating or renaming user accounts with a "$" symbol suffix...

5CVSS7.5AI score0.03205EPSS
Exploits1References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/08/10 12:0 a.m.49 views

GLSA-202208-09 : HashiCorp Consul: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202208-09 HashiCorp Consul: Multiple Vulnerabilities - HashiCorp Consul Enterprise version 1.7.0 up to 1.8.4 includes a namespace replication bug which can be triggered to cause denial of service via infinite Raft writes. Fixed in...

7.5CVSS6.2AI score0.08519EPSS
Exploits0References16
Prion
Prion
added 2020/11/19 12:15 a.m.26 views

Code injection

The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are =12.10, =13.4, =13.5, 13.5.2...

5.5CVSS7.3AI score0.00756EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/11/18 11:57 p.m.27 views

CVE-2020-13359

The Terraform API in GitLab CE/EE 12.10+ exposed the object storage signed URL on the delete operation allowing a malicious project maintainer to overwrite the Terraform state, bypassing audit and other business controls. Affected versions are =12.10, =13.4, =13.5, 13.5.2...

7.6CVSS7.4AI score0.00756EPSS
Exploits0References2
Rows per page
Query Builder