Lucene search
K

6 matches found

CNNVD
CNNVD
added 2025/01/30 12:0 a.m.4 views

VMware Aria Operations for Logs 安全漏洞

VMware Aria Operations for Logs is a centralized log management solution from VMware. The product supports features such as log organization and log analysis. A security vulnerability exists in VMware Aria Operations for Logs. An attacker can exploit this vulnerability to inject malicious scripts...

5.2CVSS9.2AI score0.00385EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/10/20 12:0 a.m.11 views

VMware Aria Operations for Logs Security Vulnerability

VMware Aria Operations for Logs is a centralized log management solution from VMware. The product supports features such as log organization and log analysis. A security vulnerability exists in VMware Aria Operations for Logs, which stems from an authentication bypass vulnerability...

9.8CVSS7AI score0.44667EPSS
Exploits1References2
CISA
CISA
added 2022/05/17 12:0 a.m.14 views

Weak Security Controls and Practices Routinely Exploited for Initial Access

The cybersecurity authorities of the United States, Canada, New Zealand, the Netherlands, and the United Kingdom have issued a joint Cybersecurity Advisory CSA on 10 routinely exploited weak security controls, poor configurations, and bad practices that allow malicious actors to compromise...

1.7AI score
Exploits0References2
CNNVD
CNNVD
added 2021/10/13 12:0 a.m.5 views

Vmware VMware vRealize Log Insight 注入漏洞

VMware vRealize Log Insight is a centralized log management solution from Vmware, Inc. VMware vRealize Log Insight is vulnerable to a CSV injection vulnerability that allows an authenticated attacker to embed untrusted data through CSV tables...

4.3CVSS5.6AI score0.00553EPSS
Exploits0References6
CNVD
CNVD
added 2021/08/03 12:0 a.m.19 views

Graylog permission permission and access control issue vulnerability (CNVD-2021-61088)

Graylog is a centralized log management solution from Graylog, Inc. The product supports capturing, storing, and analyzing logs in real-time, among other things. graylog suffers from a permission permission and access control issue vulnerability that stems from a session ID leak in audit logs pri...

9.8CVSS3.7AI score0.01286EPSS
Exploits0References1
Exploit DB
Exploit DB
added 2020/08/28 12:0 a.m.610 views

Nagios Log Server 2.1.6 - Persistent Cross-Site Scripting

Exploit Title: Nagios Log Server 2.1.6 - Persistent Cross-Site Scripting Date: 2020-08-07 Vendor Homepage: https://www.nagios.com/products/nagios-log-server/ Vendor Changelog: https://www.nagios.com/downloads/nagios-log-server/change-log/ Exploit Author: Jinson Varghese Behanan @JinsonCyberSec...

5.4CVSS5.6AI score0.14414EPSS
Exploits3
Rows per page
Query Builder