Lucene search
K

7652 matches found

OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2021:0835-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.1AI score0.06563EPSS
Exploits3References8
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2018:4063-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.2AI score0.04075EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2017:1445-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.3CVSS7.2AI score0.03311EPSS
Exploits2References4
Prion
Prion
added 2021/04/16 4:15 p.m.19 views

Stack overflow

IBM Spectrum Protect Server 7.1 and 8.1 is subject to a stack-based buffer overflow caused by improper bounds checking during the parsing of commands. By issuing such a command with an improper parameter, an authorized administrator could overflow a buffer and cause the server to crash. IBM X-For...

2.1CVSS5AI score0.00258EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/04/16 3:40 p.m.16 views

CVE-2021-20491

IBM Spectrum Protect Server 7.1 and 8.1 is subject to a stack-based buffer overflow caused by improper bounds checking during the parsing of commands. By issuing such a command with an improper parameter, an authorized administrator could overflow a buffer and cause the server to crash. IBM X-For...

4.4CVSS5.1AI score0.00258EPSS
Exploits0References2
CNVD
CNVD
added 2021/04/16 12:0 a.m.10 views

SAP NetWeaver Application Server for Java Access Control Error Vulnerability

SAP Netweaver is the German SAP SAP company's set of service-oriented integration of the application platform, the platform mainly for SAP applications to provide a development environment. The platform mainly for SAP applications to provide a development and runtime environment.SAP NetWeaver...

6.5CVSS6.5AI score0.00635EPSS
Exploits0References1
OSV
OSV
added 2021/04/14 8:4 p.m.17 views

GO-2021-0097 Panic due to out-of-bounds read in github.com/dhowden/tag

Due to improper bounds checking, a number of methods can trigger a panic due to attempted out-of-bounds reads. If the package is used to parse user supplied input, this may be used as a vector for a denial of service attack...

6.5CVSS6.2AI score0.0112EPSS
Exploits4References4
OSV
OSV
added 2021/04/14 8:4 p.m.21 views

GO-2021-0057 Panic due to improper input validation in github.com/buger/jsonparser

Due to improper bounds checking, maliciously crafted JSON objects can cause an out-of-bounds panic. If parsing user input, this may be used as a denial of service vector...

7.8CVSS7.2AI score0.02291EPSS
Exploits1References3
OSV
OSV
added 2021/04/14 8:4 p.m.21 views

GO-2021-0059 Panic due to improper input validation in Get in github.com/tidwall/gjson

Due to improper bounds checking, maliciously crafted JSON objects can cause an out-of-bounds panic. If parsing user input, this may be used as a denial of service vector...

7.5CVSS7.3AI score0.01662EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2021/04/13 3:42 p.m.138 views

Improper Certificate Validation in Puppet

Previously, Puppet operated on the model that a node with a valid certificate was entitled to all information in the system and that a compromised certificate allowed access to everything in the infrastructure. When a node's catalog falls back to the default node, the catalog can be retrieved for...

6.5CVSS6.5AI score0.00823EPSS
Exploits0References4Affected Software1
Snyk
Snyk
added 2021/04/13 3:42 p.m.5 views

Improper Input Validation

Overview puppet is an automated configuration management tool. Affected versions of this package are vulnerable to Improper Input Validation. Puppet operated on a model that a node with a valid certificate was entitled to all information in the system and that a compromised certificate allowed...

6.5CVSS6.6AI score0.00823EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/04/13 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2021-1715)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.06563EPSS
Exploits4References2
RubySec
RubySec
added 2021/04/13 12:0 a.m.22 views

Improper Certificate Validation in Puppet

Previously, Puppet operated on a model that a node with a valid certificate was entitled to all information in the system and that a compromised certificate allowed access to everything in the infrastructure. When a node's catalog falls back to the default node, the catalog can be retrieved for a...

6.5CVSS1.3AI score0.00823EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2021/04/08 12:0 a.m.6 views

Cisco Webex Meetings HTML Injection Vulnerability

Cisco Webex Meetings provides affordable enterprise virtual meeting solutions. An HTML injection vulnerability exists in certain pages of Cisco Webex Meetings. The vulnerability stems from improper checking of parameter values on the affected pages. An attacker could exploit the vulnerability by...

4.7CVSS6.6AI score0.00925EPSS
Exploits0References1
CNVD
CNVD
added 2021/04/08 12:0 a.m.8 views

CloudBees Micro Focus Application Automation Tools Plugin Improper Permission Checking Vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . An improper privilege checkin...

6.5CVSS6.6AI score0.01183EPSS
Exploits0References1
NVD
NVD
added 2021/04/02 7:15 p.m.13 views

CVE-2021-1753

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to arbitrary code execution...

7.8CVSS0.00922EPSS
Exploits0References2
Prion
Prion
added 2021/04/02 7:15 p.m.16 views

Cross site scripting

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to arbitrary code execution...

6.8CVSS7.6AI score0.00922EPSS
Exploits0References2Affected Software4
NVD
NVD
added 2021/04/02 6:15 p.m.17 views

CVE-2021-1792

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution...

8.8CVSS0.01947EPSS
Exploits0References4
OSV
OSV
added 2021/04/02 6:15 p.m.0 views

CVE-2021-1792

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A remote attacker may be able to cause arbitrary code execution...

8.8CVSS7.5AI score0.01947EPSS
Exploits0References4
NVD
NVD
added 2021/04/02 6:15 p.m.15 views

CVE-2021-1776

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted font file may lead to arbitra...

7.8CVSS0.0107EPSS
Exploits0References4
Rows per page
Query Builder