56 matches found
EUVD-2007-5587
Malware in sbrugna...
EUVD-2014-8208
Malware in sbrugna...
EUVD-2008-0505
Malware in sbrugna...
EUVD-2006-4670
Malware in sbrugna...
EUVD-2023-43799
Malicious code in bioql PyPI...
CVE-2023-3113
An unauthenticated XML external entity injection XXE vulnerability exists in LXCA's Common Information Model CIM server that could result in read-only access to specific files...
CVE-2023-3113
An unauthenticated XML external entity injection XXE vulnerability exists in LXCA's Common Information Model CIM server that could result in read-only access to specific files...
CVE-2023-3113
An unauthenticated XML external entity injection XXE vulnerability exists in LXCA's Common Information Model CIM server that could result in read-only access to specific files...
PT-2023-23166 · Lenovo · Lxca
Name of the Vulnerable Software and Affected Versions: LXCA affected versions not specified Description: An unauthenticated XML external entity injection XXE vulnerability exists in LXCA's Common Information Model CIM server that could result in read-only access to specific files. Recommendations...
Inadequate Logging
tog-pegasus does not log authentication attempts. Failed authentication attempts against the OpenPegasus CIM server were not logged to the system log as documented in README.RedHat.Security. An attacker could use this flaw to perform password guessing attacks against a user account without leavin...
[SECURITY] Fedora 27 Update: sblim-sfcb-1.4.9-9.fc27
Small Footprint CIM Broker sfcb is a CIM server conforming to the CIM Operations over HTTP protocol. It is robust, with low resource consumption and therefore specifically suited for embedded and resource constrained environments. sfcb supports providers written against the Common Manageability...
[SECURITY] Fedora 26 Update: sblim-sfcb-1.4.9-7.fc26
Small Footprint CIM Broker sfcb is a CIM server conforming to the CIM Operations over HTTP protocol. It is robust, with low resource consumption and therefore specifically suited for embedded and resource constrained environments. sfcb supports providers written against the Common Manageability...
[SECURITY] Fedora 21 Update: sblim-sfcb-1.4.8-5.fc21
Small Footprint CIM Broker sfcb is a CIM server conforming to the CIM Operations over HTTP protocol. It is robust, with low resource consumption and therefore specifically suited for embedded and resource constrained environments. sfcb supports providers written against the Common Manageability...
[SECURITY] Fedora 22 Update: sblim-sfcb-1.4.9-2.fc22
Small Footprint CIM Broker sfcb is a CIM server conforming to the CIM Operations over HTTP protocol. It is robust, with low resource consumption and therefore specifically suited for embedded and resource constrained environments. sfcb supports providers written against the Common Manageability...
[SECURITY] Fedora 23 Update: sblim-sfcb-1.4.9-4.fc23
Small Footprint CIM Broker sfcb is a CIM server conforming to the CIM Operations over HTTP protocol. It is robust, with low resource consumption and therefore specifically suited for embedded and resource constrained environments. sfcb supports providers written against the Common Manageability...
VMware Security Updates for vCenter Server (VMSA-2014-0012)
The VMware vCenter Server installed on the remote host is version 5.0 prior to Update 3c, 5.1 prior to Update 3, or 5.5 prior to Update 2. It is, therefore, affected by multiple vulnerabilities in third party libraries : - Due to improper certificate validation when connecting to a CIM server on ...
CVE-2014-8371
VMware vCenter Server Appliance vCSA 5.5 before Update 2, 5.1 before Update 3, and 5.0 before Update 3c does not properly validate certificates when connecting to a CIM Server on an ESXi host, which allows man-in-the-middle attackers to spoof CIM servers via a crafted certificate...
Code injection
VMware vCenter Server Appliance vCSA 5.5 before Update 2, 5.1 before Update 3, and 5.0 before Update 3c does not properly validate certificates when connecting to a CIM Server on an ESXi host, which allows man-in-the-middle attackers to spoof CIM servers via a crafted certificate...
CVE-2014-8371
VMware vCenter Server Appliance vCSA 5.5 before Update 2, 5.1 before Update 3, and 5.0 before Update 3c does not properly validate certificates when connecting to a CIM Server on an ESXi host, which allows man-in-the-middle attackers to spoof CIM servers via a crafted certificate...
CVE-2014-8371
CVE-2014-8371 affects VMware vCenter Server and vCSA when connecting to an ESXi CIM server; root cause is improper certificate validation that enables MITM spoofing of CIM services. Affected versions: vCSA 5.5 before Update 2, vCenter Server 5.1 before Update 3, and 5.0 before Update 3c. Remediat...