Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 7 : pki-core-10.5.18-12.el7 (AXSA:2021-1610:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1610:01 advisory. pki-core: Unprivileged users can renew any certificate CVE-2021-20179 pki-core: XSS in the certificate search results CVE-2020-25715 pki-core:...

8.1CVSS8.2AI score0.01289EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2025/10/24 12:0 a.m.2 views

SUSE SLES12: libfreebl3 / libfreebl3-32bit / libsoftokn3 / libsoftokn3-32bit / etc (SUSE-SU-2025:3759-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:3759-1 advisory. - Move NSS DB password hash away from SHA-1 Update to NSS 3.112.2: Prevent leaks during pkcs12 decoding. SECASN1Decode should ensure it has read as man...

9.8CVSS5.8AI score0.00424EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/24 12:0 a.m.4 views

SUSE SLES15: libfreebl3 / libfreebl3-32bit / libsoftokn3 / libsoftokn3-32bit / etc (SUSE-SU-2025:3760-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:3760-1 advisory. - Move NSS DB password hash away from SHA-1. Update to NSS 3.112.2: Prevent leaks during pkcs12 decoding. SECASN1Decode should ensure it has...

9.8CVSS5.8AI score0.00424EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/10/23 2:1 p.m.3 views

Security update for mozilla-nss

This update for mozilla-nss fixes the following issues: Move NSS DB password hash away from SHA-1. Update to NSS 3.112.2: Prevent leaks during pkcs12 decoding. SECASN1Decode should ensure it has read as many bytes as each length field indicates Update to NSS 3.112.1: restore support for finding...

8.8CVSS7AI score0.00424EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-4484

Malware in sbrugna...

4CVSS6.2AI score0.01192EPSS
Exploits0References7
Kitploit
Kitploit
added 2025/04/09 12:30 p.m.41 views

Lobo Guará - Cyber Threat Intelligence Platform

Lobo Guará is a platform aimed at cybersecurity professionals, with various features focused on Cyber Threat Intelligence CTI. It offers tools that make it easier to identify threats, monitor data leaks, analyze suspicious domains and URLs, and much more. Features 1. SSL Certificate Search Allows...

6.9AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2021/04/20 9:54 a.m.3 views

pki-core: XSS in the certificate search results

A flaw was found in pki-core. A specially crafted POST request can be used to reflect a DOM-based cross-site scripting XSS attack to inject code into the search query form which can get automatically executed. The highest threat from this vulnerability is to data integrity...

6.1CVSS6.3AI score0.01142EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/03/23 4:57 p.m.4 views

pki-core: XSS in the certificate search results

A flaw was found in pki-core. A specially crafted POST request can be used to reflect a DOM-based cross-site scripting XSS attack to inject code into the search query form which can get automatically executed. The highest threat from this vulnerability is to data integrity...

6.1CVSS6.3AI score0.01142EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2021/03/23 12:0 a.m.32 views

RHEL 7 : pki-core (RHSA-2021:0975)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0975 advisory. The Public Key Infrastructure PKI Core contains fundamental packages required by Red Hat Certificate System. Security Fixes: pki-core:...

8.1CVSS6.6AI score0.01289EPSS
Exploits1References14
RedHat Linux
RedHat Linux
added 2021/03/16 1:53 p.m.5 views

pki-core: XSS in the certificate search results

A flaw was found in pki-core. A specially crafted POST request can be used to reflect a DOM-based cross-site scripting XSS attack to inject code into the search query form which can get automatically executed. The highest threat from this vulnerability is to data integrity...

6.1CVSS6.3AI score0.01142EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/03/15 1:37 p.m.4 views

pki-core: XSS in the certificate search results

A flaw was found in pki-core. A specially crafted POST request can be used to reflect a DOM-based cross-site scripting XSS attack to inject code into the search query form which can get automatically executed. The highest threat from this vulnerability is to data integrity...

6.1CVSS6.3AI score0.01142EPSS
Exploits1References4
CNVD
CNVD
added 2020/11/14 12:0 a.m.5 views

SQL Injection Vulnerability in the Certificate Search Function of waychar Enrollment System

Waychar Registration System is a free race registration system. A SQL injection vulnerability exists in the certificate lookup function of the waychar registration system, which can be exploited by an attacker to obtain sensitive information from the database...

7.6AI score
Exploits0
RedHat Linux
RedHat Linux
added 2020/11/04 1:39 a.m.5 views

pki-core: XSS in the certificate search results

A flaw was found in pki-core. A specially crafted POST request can be used to reflect a DOM-based cross-site scripting XSS attack to inject code into the search query form which can get automatically executed. The highest threat from this vulnerability is to data integrity...

6.1CVSS6.3AI score0.01142EPSS
Exploits1References4
NVD
NVD
added 2013/01/04 10:55 p.m.21 views

CVE-2012-4556

The token processing system pki-tps in Red Hat Certificate System RHCS before 8.1.3 allows remote attackers to cause a denial of service Apache httpd web server child process restart via certain unspecified empty search fields in a user certificate search query...

4CVSS6.6AI score0.01192EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2007/01/17 12:0 a.m.33 views

Fedora Core 5 : fetchmail-6.3.6-1.fc5 (2007-041)

Sat Jan 6 2007 Miloslav Trmac - 6.3.6-1 - Update to fetchmail-6.3.6 CVE-2006-5867, CVE-2006-5974 - Wed Nov 1 2006 Miloslav Trmac - 6.3.5-1 - Update to fetchmail-6.3.5 - Fix some rpmlint warnings - Sun Sep 24 2006 Miloslav Trmac - 6.3.4-2 - Don't increase the certificate search path on each poll...

7.8CVSS5.4AI score0.04255EPSS
Exploits0References3
Rows per page
Query Builder