Lucene search
K

62 matches found

OpenVAS
OpenVAS
added 2022/12/30 12:0 a.m.28 views

Debian: Security Advisory (DSA-5307-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.01858EPSS
Exploits0References4
OSV
OSV
added 2022/10/25 6:15 p.m.4 views

CVE-2022-36453

A vulnerability in the MiCollab Client API of Mitel MiCollab 9.1.3 through 9.5.0.101 could allow an authenticated attacker to modify their profile parameters due to improper authorization controls. A successful exploit could allow the authenticated attacker to control another extension number...

8.8CVSS5.8AI score0.00571EPSS
Exploits0References2
Prion
Prion
added 2022/10/25 6:15 p.m.19 views

Authorization

A vulnerability in the MiCollab Client API of Mitel MiCollab through 9.5.0.101 could allow an authenticated attacker to modify their profile parameters due to improper authorization controls. A successful exploit could allow the authenticated attacker to impersonate another user's name...

4CVSS6.3AI score0.00478EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/25 12:0 a.m.6 views

CVE-2022-36454

A vulnerability in the MiCollab Client API of Mitel MiCollab through 9.5.0.101 could allow an authenticated attacker to modify their profile parameters due to improper authorization controls. A successful exploit could allow the authenticated attacker to impersonate another user's name...

6.3AI score0.00478EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/10/25 12:0 a.m.11 views

CVE-2022-36453

A vulnerability in the MiCollab Client API of Mitel MiCollab 9.1.3 through 9.5.0.101 could allow an authenticated attacker to modify their profile parameters due to improper authorization controls. A successful exploit could allow the authenticated attacker to control another extension number...

8.5AI score0.00571EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/10/25 12:0 a.m.4 views

Mitel MiCollab 安全漏洞

Mitel MiCollab is a mobile application that provides voice, video, messaging, audio conferencing and team collaboration for employees from Mitel Canada. A security vulnerability exists in Mitel MiCollab version 9.5.0.101 and prior versions, which stems from an incorrect authorization control in t...

6.5CVSS6.5AI score0.00478EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/10/25 12:0 a.m.30 views

CVE-2022-36454

A vulnerability in the MiCollab Client API of Mitel MiCollab through 9.5.0.101 could allow an authenticated attacker to modify their profile parameters due to improper authorization controls. A successful exploit could allow the authenticated attacker to impersonate another user's name...

6.5AI score0.00478EPSS
Exploits0References2
Prion
Prion
added 2022/07/17 9:15 p.m.16 views

Input validation

Pexip Infinity 27.x before 27.3 has Improper Input Validation. The client API allows remote attackers to trigger a software abort via a gateway call into Teams...

5CVSS7.5AI score0.0101EPSS
Exploits0References1Affected Software1
OSSF Malicious Packages
OSSF Malicious Packages
added 2022/06/20 8:18 p.m.4 views

Malicious code in fitbit-connect-client-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 08efae8d0db8e2e4172e8acf35605a70436f1b61b61df70ccd478b1eb14052f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2022/06/20 8:18 p.m.31 views

MAL-2022-756 Malicious code in @xvideos/client-api (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e4451e20161f4c1a7380cb7af0a16c798b0a7f7d4297e58a34b5cf0d14a3b8ea Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
vulnersOsv
vulnersOsv
added 2022/05/13 1:8 a.m.6 views

at.salzburgresearch.nodekeeper:nodekeeper-java (>=1.0 <=1.2), com.baidu.beidou:navi-rpc (=1.1.0) +85 more potentially affected by CVE-2017-5637 via org.apache.zookeeper:zookeeper (>=3.4.0 <=3.4.1)

org.apache.zookeeper:zookeeper MAVEN version =3.4.0, =1.0, =1.0.0.RELEASE, =1.0.0.RELEASE, =1.0.0.RELEASE, =0.13, =0.13, =0.13, =0.16, =0.13, =0.15, =0.13, =0.15, =0.17 and more Source cves: CVE-2017-5637 Source advisory: OSV:GHSA-7CWJ-J333-X7F7...

7.5CVSS7.1AI score0.73654EPSS
Exploits0
GithubExploit
GithubExploit
added 2022/05/01 1:19 p.m.206 views

Exploit for CVE-2022-26809

CVE-2022-26809 This repo just simply research for the CVE, f...

10CVSS9.9AI score0.91316EPSS
Exploits14
Tenable Nessus
Tenable Nessus
added 2022/02/03 12:0 a.m.34 views

Jenkins Enterprise and Operations Center < 2.303.30.0.4 / 2.319.2.9 RCE (CloudBees Security Advisory 2022-01-28)

The version of Jenkins Enterprise or Jenkins Operations Center running on the remote web server is 2.303.x prior to 2.303.30.0.4, or 2.x prior to 2.319.2.9. It is, therefore, affected by a remote code execution vulnerability in the Kubernetes Client API. An authenticated, local attacker can explo...

6.7CVSS7.8AI score0.00309EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2022/02/01 11:19 a.m.12 views

Security Bulletin: Security vulnerabilities have been identified in the Tivoli Storage Manager (IBM Spectrum Protect) Client that affect multiple Tivoli Storage Manager (IBM Spectrum Protect) products

Summary The Tivoli Storage Manger IBM Spectrum Protect Client/API is used as a component of Tivoli Storage FlashCopy Manager IBM Spectrum Protect Snapshot for Windows, Tivoli Storage Manager IBM Spectrum Protect HSM for Windows, Tivoli Storage Manager IBM Spectrum Protect for Databases, Tivoli...

1.2AI score
Exploits0Affected Software10
IBM Security Bulletins
IBM Security Bulletins
added 2022/02/01 11:19 a.m.13 views

Security Bulletin: Security vulnerabilities have been identified in the IBM Spectrum Protect (formerly Tivoli Storage Manager) Client that affect multiple IBM Spectrum Protect (formerly Tivoli Storage Manager) products

Summary The IBM Spectrum Protect formerly Tivoli Storage Manager Client/API is used as a component of IBM Spectrum Protect Snapshot formerly Tivoli Storage FlashCopy Manager for Windows, IBM Spectrum Protect formerly Tivoli Storage Manager for Databases, IBM Spectrum Protect formerly Tivoli Stora...

1.2AI score
Exploits0Affected Software8
RedHat Linux
RedHat Linux
added 2021/09/21 10:13 a.m.4 views

mysql: C API unspecified vulnerability (CPU Jan 2021)

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client...

7.1CVSS7.3AI score0.03028EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/02/02 12:0 a.m.3 views

The vulnerability of the C API component of the MySQL Database Management System client, which allows a hacker to gain unauthorized access to protected information.

The vulnerability of the C API component of the MySQL Database Management System client is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information using the MySQL protocol...

4.3CVSS6.3AI score0.02272EPSS
Exploits0References3Affected Software2
RedHat Linux
RedHat Linux
added 2020/12/22 9:25 a.m.3 views

mysql: C API unspecified vulnerability (CPU Jan 2020)

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise...

5.9CVSS6.8AI score0.03485EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/10/05 3:18 p.m.8 views

mysql: C API unspecified vulnerability (CPU Jan 2020)

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.46 and prior, 5.7.28 and prior and 8.0.18 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise...

5.9CVSS6.8AI score0.03485EPSS
Exploits0References5
Prion
Prion
added 2020/09/24 2:15 a.m.15 views

Cross site request forgery (csrf)

The client API authentication mechanism in Pexip Infinity before 10 allows remote attackers to gain privileges via a crafted request...

7.5CVSS7.6AI score0.01464EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder