Lucene search
+L

77 matches found

OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2019:2736-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.0461EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/10/23 12:0 a.m.43 views

SUSE SLED15 / SLES15 Security Update : ceph, ceph-iscsi, ses-manual_en (SUSE-SU-2019:2736-1)

This update for ceph, ceph-iscsi and ses-manualen fixes the following issues : Security issues fixed : CVE-2019-10222: Fixed RGW crash caused by unauthenticated clients. bsc1145093 Non-security issues-fixed: ceph-volume: prints errors to stdout with --format json bsc1132767 mgr/dashboard: Changin...

7.5CVSS7.3AI score0.0461EPSS
Exploits0References25
Vulnrichment
Vulnrichment
added 2019/09/25 8:16 p.m.6 views

CVE-2019-12664 Cisco IOS XE Software ISDN Data Leak Vulnerability

A vulnerability in the Dialer interface feature for ISDN connections in Cisco IOS XE Software for Cisco 4000 Series Integrated Services Routers ISRs could allow an unauthenticated, adjacent attacker to pass IPv4 traffic through an ISDN channel prior to successful PPP authentication. The...

4.7CVSS7.5AI score0.01425EPSS
Exploits0References1
Cisco
Cisco
added 2019/09/25 4:0 p.m.84 views

Cisco IOS XE Software ISDN Data Leak Vulnerability

A vulnerability in the Dialer interface feature for ISDN connections in Cisco IOS XE Software for Cisco 4000 Series Integrated Services Routers ISRs could allow an unauthenticated, adjacent attacker to pass IPv4 traffic through an ISDN channel prior to successful PPP authentication. The...

4.7CVSS6.5AI score0.01425EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/05/07 12:0 a.m.5 views

The vulnerability of the chap_server_compute_md5() function in the ISCSI protocol implementation for Linux operating systems allows a attacker to cause a service failure or gain access to protected information.

The vulnerability of the chapservercomputemd5 function in the ISCSI kernel implementation of Linux operating systems is related to improper checking of memory access boundaries, which leads to reading beyond the buffer. Exploiting this vulnerability can allow a malicious actor to cause service...

8.3CVSS7AI score0.08743EPSS
Exploits0References17Affected Software4
OSV
OSV
added 2016/10/03 9:59 p.m.7 views

CVE-2016-8276

Buffer overflow in the Point-to-Point Protocol over Ethernet PPPoE module in Huawei USG2100, USG2200, USG5100, and USG5500 unified security gateways with software before V300R001C10SPC600, when CHAP authentication is configured on the server, allows remote attackers to cause a denial of service...

9.8CVSS6.1AI score0.05613EPSS
Exploits0References2
CVE
CVE
added 2016/10/03 9:0 p.m.48 views

CVE-2016-8276

CVE-2016-8276 concerns Huawei USG2100/USG2200/USG5100/USG5500 unified security gateways. A buffer overflow in the PPPoE module occurs when CHAP authentication is configured on the server, allowing remote attackers to cause a server restart or execute arbitrary code via crafted packets during auth...

9.8CVSS9.8AI score0.05613EPSS
Exploits0References2Affected Software4
Huawei
Huawei
added 2016/09/14 12:0 a.m.24 views

Security Advisory - Buffer Overflow Vulnerability in Huawei USG Products

The Point-to-Point Protocol over Ethernet PPPoE module of the USG has a buffer overflow vulnerability. When Challenge Handshake Authentication Protocol CHAP authentication is configured on the server, an attacker may send abnormal attack packets to the server during authentication to cause buffer...

9.8CVSS10AI score0.05613EPSS
Exploits0Affected Software4
Tenable Nessus
Tenable Nessus
added 2015/08/04 12:0 a.m.23 views

Scientific Linux Security Update : freeradius on SL6.x i386/x86_64 (20150722)

A stack-based buffer overflow was found in the way the FreeRADIUS rlmpap module handled long password hashes. An attacker able to make radiusd process a malformed password hash could cause the daemon to crash. CVE-2014-2015 The freeradius packages have been upgraded to upstream version 2.2.6, whi...

7.5CVSS8.5AI score0.03912EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/07/28 12:0 a.m.28 views

CentOS 6 : freeradius (CESA-2015:1287)

Updated freeradius packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which giv...

7.5CVSS8.7AI score0.03912EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/07/23 12:0 a.m.24 views

RedHat Update for freeradius RHSA-2015:1287-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.6AI score0.03912EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/07/23 12:0 a.m.33 views

RHEL 6 : freeradius (RHSA-2015:1287)

Updated freeradius packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which giv...

7.5CVSS8.7AI score0.03912EPSS
Exploits1References4
NVD
NVD
added 2014/09/05 2:55 p.m.19 views

CVE-2014-5036

The Storage Controller SC component in Eucalyptus 3.4.2 through 4.0.x before 4.0.1, when Dell Equallogic SAN is used, logs the CHAP user credentials, which allows local users to obtain sensitive information by reading the logs...

1.9CVSS5.7AI score0.00325EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2014/09/05 2:55 p.m.24 views

CVE-2014-5036

The Storage Controller SC component in Eucalyptus 3.4.2 through 4.0.x before 4.0.1, when Dell Equallogic SAN is used, logs the CHAP user credentials, which allows local users to obtain sensitive information by reading the logs...

1.9CVSS5.9AI score0.00325EPSS
Exploits0References4
Prion
Prion
added 2014/09/05 2:55 p.m.22 views

Information disclosure

The Storage Controller SC component in Eucalyptus 3.4.2 through 4.0.x before 4.0.1, when Dell Equallogic SAN is used, logs the CHAP user credentials, which allows local users to obtain sensitive information by reading the logs...

1.9CVSS6.2AI score0.00325EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/09/05 2:0 p.m.25 views

CVE-2014-5036

The Storage Controller SC component in Eucalyptus 3.4.2 through 4.0.x before 4.0.1, when Dell Equallogic SAN is used, logs the CHAP user credentials, which allows local users to obtain sensitive information by reading the logs...

5.7AI score0.00325EPSS
Exploits0References3
CVE
CVE
added 2014/09/05 2:0 p.m.49 views

CVE-2014-5036

The CVE-2014-5036 entry applies to Eucalyptus Storage Controller (SC) in versions 3.4.2–4.0.x prior to 4.0.1 when used with Dell EqualLogic SAN. The underlying issue is that CHAP user credentials are logged, enabling local users to read logs and obtain sensitive information, causing partial confi...

1.9CVSS5.9AI score0.00325EPSS
Exploits0References3Affected Software1
Kitploit
Kitploit
added 2014/04/29 2:10 p.m.31 views

oclHashcat v1.20 - Worlds fastest password cracker

oclHashcat is a GPGPU-based multi-hash cracker using a brute-force attack implemented as mask attack, combinator attack, dictionary attack, hybrid attack, mask attack, and rule-based attack. This GPU cracker is a fusioned version of oclHashcat-plus and oclHashcat-lite. GPU Driver requirements: NV...

7.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/03/31 12:0 a.m.41 views

Microsoft Internet Authentication Service MS-CHAP Security Bypass (MS09-071) - Ver2 (CVE-2009-3677)

An elevation of privilege vulnerability has been reported in the Internet Authentication Service. Internet Authentication Service IAS is the Microsoft implementation of a Remote Authentication Dial-in User Service RADIUS server and proxy. As a RADIUS server, IAS performs centralized connection...

10CVSS7AI score0.2182EPSS
Exploits1
Exploit DB
Exploit DB
added 2013/12/02 12:0 a.m.30 views

D-Link DIR-Series Routers - '/model/__show_info.php' Local File Disclosure

source: https://www.securityfocus.com/bid/64043/info Multiple D-Link DIR series routers are prone to a local file-disclosure vulnerability because it fails to adequately validate user-supplied input. Exploiting this vulnerability would allow an attacker to obtain potentially sensitive information...

7.4AI score
Exploits0
Rows per page
Query Builder