Lucene search
K

21 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:50 a.m.9 views

CVE-2022-27220

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. Affected application is missing general HTTP security headers in the web server configured on port 6220. This could aid attackers by making the servers more prone to clickjacking, channel downgrade attacks...

4.3CVSS6.9AI score0.00631EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-31728

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00631EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-31729

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00631EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:36 p.m.5 views

CVE-2022-27219

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. Affected application is missing general HTTP security headers in the web server configured on port 443. This could aid attackers by making the servers more prone to clickjacking, channel downgrade attacks a...

4.3CVSS6.9AI score0.00631EPSS
Exploits0References1
NVD
NVD
added 2022/06/14 10:15 a.m.17 views

CVE-2022-27219

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. Affected application is missing general HTTP security headers in the web server configured on port 443. This could aid attackers by making the servers more prone to clickjacking, channel downgrade attacks a...

4.3CVSS0.00631EPSS
Exploits0References1
OSV
OSV
added 2022/06/14 10:15 a.m.2 views

CVE-2022-27220

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. Affected application is missing general HTTP security headers in the web server configured on port 6220. This could aid attackers by making the servers more prone to clickjacking, channel downgrade attacks...

4.3CVSS5.7AI score0.00631EPSS
Exploits0References1
NVD
NVD
added 2022/06/14 10:15 a.m.17 views

CVE-2022-27220

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. Affected application is missing general HTTP security headers in the web server configured on port 6220. This could aid attackers by making the servers more prone to clickjacking, channel downgrade attacks...

4.3CVSS0.00631EPSS
Exploits0References1
Prion
Prion
added 2022/06/14 10:15 a.m.24 views

Code injection

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. Affected application is missing general HTTP security headers in the web server configured on port 6220. This could aid attackers by making the servers more prone to clickjacking, channel downgrade attacks...

4.3CVSS4.4AI score0.00631EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/06/14 10:15 a.m.19 views

Code injection

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. Affected application is missing general HTTP security headers in the web server configured on port 443. This could aid attackers by making the servers more prone to clickjacking, channel downgrade attacks a...

4.3CVSS4.4AI score0.00631EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/06/14 9:21 a.m.25 views

CVE-2022-27220

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. Affected application is missing general HTTP security headers in the web server configured on port 6220. This could aid attackers by making the servers more prone to clickjacking, channel downgrade attacks...

4.8AI score0.00631EPSS
Exploits0References1
CVE
CVE
added 2022/06/14 9:21 a.m.70 views

CVE-2022-27219

Siemens SINEMA Remote Connect Server (all versions

4.3CVSS4.5AI score0.00631EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/06/14 9:21 a.m.34 views

CVE-2022-27219

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.0 SP2. Affected application is missing general HTTP security headers in the web server configured on port 443. This could aid attackers by making the servers more prone to clickjacking, channel downgrade attacks a...

4.8AI score0.00631EPSS
Exploits0References1
ICS
ICS
added 2022/06/14 12:0 a.m.42 views

Siemens SINEMA Remote Connect Server

1. EXECUTIVE SUMMARY CVSS v3 4.2 ATTENTION: Exploitable remotely Vendor: Siemens Equipment: SINEMA Remote Connect Server Vulnerabilities: Improperly Implemented Security Check for Standard 2. RISK EVALUATION The affected application is missing general HTTP security headers in the web servers...

4.3CVSS5.2AI score0.00631EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2020/08/18 4:25 p.m.2 views

keycloak: security headers missing on REST endpoints

A flaw was found in Keycloak’s Admin Console, where it is missing HTTP security headers in HTTP responses. This issue is not a direct vulnerability and may not lead to a security issue, but increases the chances of allowing attackers to exploit other security flaws. Examples of these possible...

5.8CVSS5.8AI score0.00764EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2020/04/15 9:9 p.m.75 views

Improper Restriction of Rendered UI Layers or Frames in Keycloak

A vulnerability was found in all versions of Keycloak where, the pages on the Admin Console area of the application are completely missing general HTTP security headers in HTTP-responses. This does not directly lead to a security issue, yet it might aid attackers in their efforts to exploit other...

5.8CVSS1.2AI score0.00764EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2020/04/08 9:16 p.m.35 views

CVE-2020-1728

A flaw was found in Keycloak’s Admin Console, where it is missing HTTP security headers in HTTP responses. This issue is not a direct vulnerability and may not lead to a security issue, but increases the chances of allowing attackers to exploit other security flaws. Examples of these possible...

5.8CVSS2AI score0.00764EPSS
Exploits0References3
NVD
NVD
added 2020/04/06 2:15 p.m.50 views

CVE-2020-1728

A vulnerability was found in all versions of Keycloak where, the pages on the Admin Console area of the application are completely missing general HTTP security headers in HTTP-responses. This does not directly lead to a security issue, yet it might aid attackers in their efforts to exploit other...

5.8CVSS6AI score0.00764EPSS
Exploits0References1
OSV
OSV
added 2020/04/06 2:15 p.m.32 views

CVE-2020-1728

A vulnerability was found in all versions of Keycloak where, the pages on the Admin Console area of the application are completely missing general HTTP security headers in HTTP-responses. This does not directly lead to a security issue, yet it might aid attackers in their efforts to exploit other...

5.4CVSS6.6AI score0.00764EPSS
Exploits0References1
Prion
Prion
added 2020/04/06 2:15 p.m.28 views

Design/Logic Flaw

A vulnerability was found in all versions of Keycloak where, the pages on the Admin Console area of the application are completely missing general HTTP security headers in HTTP-responses. This does not directly lead to a security issue, yet it might aid attackers in their efforts to exploit other...

5.8CVSS6.2AI score0.00764EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2020/04/06 1:4 p.m.127 views

CVE-2020-1728

CVE-2020-1728 affects Red Hat’s Red Hat Single Sign-On / Keycloak projects. The issue is described as security headers missing on REST endpoints for Keycloak, which could ease client-side attacks like clickjacking or other header-reliant abuse. The connected Red Hat advisories explicitly link thi...

5.8CVSS5.2AI score0.00764EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder