Lucene search
+L

9 matches found

osv
osv
added 2026/04/01 8:9 a.m.4 views

CVE-2026-4370 Improper TLS Client/Server authentication and certificate verification on Database Cluster

A vulnerability was identified in Juju from version 3.2.0 until 3.6.19 and from version 4.0 until 4.0.4, where the internal Dqlite database cluster fails to perform proper TLS client and server authentication. Specifically, the Juju controller's database endpoint does not validate client...

10CVSS6AI score0.00381EPSS
Exploits1References5
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-8667

Malware in sbrugna...

8.8CVSS8.1AI score0.00403EPSS
Exploits0References18
osv
osv
added 2024/08/13 12:0 a.m.24 views

ALSA-2024:5312 Moderate: krb5 security update

Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending passwords over the network in unencrypted form. It allows clients and servers to authenticate to each other with the help of a trusted third party, the...

9.1CVSS8.5AI score0.01863EPSS
Exploits0References6
osv
osv
added 2020/04/22 5:37 p.m.8 views

SUSE-SU-2020:1072-1 Security update for pacemaker

This update for pacemaker fixes the following issues: - CVE-2018-16877: Fixed an issue with insufficient local IPC client-server authentication on the client's side bsc1131356. - CVE-2018-16878: Fixed a denial of service related to insufficient verification of uncontrolled processes bsc1131353...

8.8CVSS6.1AI score0.00438EPSS
Exploits0References5
mageia
mageia
added 2019/12/19 1:44 p.m.46 views

Updated pacemaker packages fix security vulnerabilities

The updated packages fix security vulnerabilities: A use-after-free flaw was found in pacemaker up to and including version 2.0.1 which could result in certain sensitive information to be leaked via the system logs. CVE-2019-3885 A flaw was found in the way pacemaker's client-server authenticatio...

8.8CVSS2.8AI score0.01962EPSS
Exploits0References6
redhat
redhat
added 2019/05/27 4:1 p.m.6 views

pacemaker: Insufficient local IPC client-server authentication on the client's side can lead to local privesc

A flaw was found in the way pacemaker's client-server authentication was implemented. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation...

8.8CVSS5.7AI score0.00403EPSS
Exploits0References4
redhat
redhat
added 2019/05/27 4:0 p.m.7 views

pacemaker: Insufficient local IPC client-server authentication on the client's side can lead to local privesc

A flaw was found in the way pacemaker's client-server authentication was implemented. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation...

8.8CVSS5.7AI score0.00403EPSS
Exploits0References4
nvd
nvd
added 2019/04/18 6:29 p.m.25 views

CVE-2018-16877

A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation...

8.8CVSS7.7AI score0.00403EPSS
Exploits0References13
cvelist
cvelist
added 2019/04/18 12:0 a.m.38 views

CVE-2018-16877

A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A local attacker could use this flaw, and combine it with other IPC weaknesses, to achieve local privilege escalation...

8.8CVSS7.4AI score0.00403EPSS
Exploits0References13
Rows per page
Query Builder