Lucene search
+L

348 matches found

Fedora
Fedora
added 2024/06/05 1:41 a.m.24 views

[SECURITY] Fedora 40 Update: qt5-qtgraphicaleffects-5.15.14-1.fc40

The Qt Graphical Effects module provides a set of QML types for adding visually impressive and configurable effects to user interfaces. Effects are visual items that can be added to Qt Quick user interface as UI components...

9.8CVSS6.4AI score0.0097EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/05/29 12:0 a.m.35 views

Oracle Linux 8 : krb5 (ELSA-2024-3268)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3268 advisory. 1.18.2-27.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.18.2-27 - Fix memory leak in GSSAPI interface Resolves: RHEL-27250 - Fix...

7.5CVSS7AI score0.01128EPSS
Exploits2References3
Fedora
Fedora
added 2024/05/03 1:36 a.m.36 views

[SECURITY] Fedora 38 Update: grub2-2.06-118.fc38

The GRand Unified Bootloader GRUB is a highly configurable and customizable bootloader with modular architecture. It supports a rich variety of kernel formats, file systems, computer architectures and hardware devices...

7.8CVSS7.3AI score0.00536EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2024/03/14 12:0 a.m.9 views

PT-2024-20105

Name of the Vulnerable Software and Affected Versions vantage6 affected versions not specified Description The vantage6 server has no restrictions on CORS settings, which should be configurable to set allowed origins. The impact is limited because v6 does not use session cookies. Recommendations ...

6.5CVSS5.9AI score0.00311EPSS
Exploits0References13
CNNVD
CNNVD
added 2024/03/06 12:0 a.m.7 views

go-zero Security Vulnerabilities

go-zero is a web and RPC framework open sourced by the go-zero team. A security vulnerability exists in go-zero versions prior to 1.4.4 that stems from allowing a user to specify filters with configurable parameters, leading to malicious domain bypass...

9.1CVSS6.7AI score0.00774EPSS
Exploits2References3
Chainguard
Chainguard
added 2024/01/02 6:30 a.m.24 views

GHSA-JCHW-25XP-JWWC vulnerabilities

Vulnerabilities for packages: kibana, opensearch-dashboards-fips, lerna, opensearch-dashboards, configurable-http-proxy, kubeflow-pipelines, kubeflow-centraldashboard...

5.3AI score
Exploits0
Wolfi
Wolfi
added 2024/01/02 6:30 a.m.48 views

GHSA-JCHW-25XP-JWWC vulnerabilities

Vulnerabilities for packages: kubeflow-pipelines, lerna, kubeflow-centraldashboard, configurable-http-proxy...

5.3AI score
Exploits0
Chainguard
Chainguard
added 2024/01/02 5:15 a.m.51 views

CVE-2023-26159 vulnerabilities

Vulnerabilities for packages: kibana, opensearch-dashboards-fips, lerna, opensearch-dashboards, configurable-http-proxy, kubeflow-pipelines, kubeflow-centraldashboard...

7.3CVSS6.5AI score0.00797EPSS
Exploits1
Wolfi
Wolfi
added 2024/01/02 5:15 a.m.62 views

CVE-2023-26159 vulnerabilities

Vulnerabilities for packages: kubeflow-pipelines, lerna, kubeflow-centraldashboard, configurable-http-proxy...

7.3CVSS6.5AI score0.00797EPSS
Exploits1
Prion
Prion
added 2023/12/15 7:15 p.m.19 views

Remote code execution

XWiki Platform is a generic wiki platform. Starting in 2.3 and prior to versions 14.10.15, 15.5.2, and 15.7-rc-1, there is a reflected XSS or also direct remote code execution vulnerability in the code for displaying configurable admin sections. The code that can be passed through a URL parameter...

6.8CVSS7.2AI score0.00657EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2023/10/25 6:17 p.m.22 views

CVE-2023-45220

The Android Client application, when enrolled with the define method 1the user manually inserts the server ip address, use HTTP protocol to retrieve sensitive information ip address and credentials to connect to a remote MQTT broker entity instead of HTTPS and this feature is not configurable by...

8.8CVSS8.4AI score0.00393EPSS
Exploits0References1
Prion
Prion
added 2023/10/25 6:17 p.m.22 views

Design/Logic Flaw

The Android Client application, when enrolled with the define method 1the user manually inserts the server ip address, use HTTP protocol to retrieve sensitive information ip address and credentials to connect to a remote MQTT broker entity instead of HTTPS and this feature is not configurable by...

5.8CVSS8.2AI score0.00393EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/25 2:15 p.m.32 views

CVE-2023-45220

The Android Client application, when enrolled with the define method 1the user manually inserts the server ip address, use HTTP protocol to retrieve sensitive information ip address and credentials to connect to a remote MQTT broker entity instead of HTTPS and this feature is not configurable by...

8.8CVSS8.6AI score0.00393EPSS
Exploits0References1
NVD
NVD
added 2023/10/18 10:15 p.m.37 views

CVE-2023-45812

The Apollo Router is a configurable, high-performance graph router written in Rust to run a federated supergraph that uses Apollo Federation. Affected versions are subject to a Denial-of-Service DoS type vulnerability which causes the Router to panic and terminate when a multi-part response is...

7.5CVSS7.5AI score0.00726EPSS
Exploits0References2
Fedora
Fedora
added 2023/10/04 3:51 p.m.21 views

[SECURITY] Fedora 38 Update: drupal7-7.98-1.fc38

Equipped with a powerful blend of features, Drupal is a Content Management System written in PHP that can support a variety of websites ranging from personal weblogs to large community-driven websites. Drupal is highly configurable, skinnable, and secure...

7AI score
Exploits0
Fedora
Fedora
added 2023/10/04 3:49 p.m.11 views

[SECURITY] Fedora 37 Update: drupal7-7.98-1.fc37

Equipped with a powerful blend of features, Drupal is a Content Management System written in PHP that can support a variety of websites ranging from personal weblogs to large community-driven websites. Drupal is highly configurable, skinnable, and secure...

7AI score
Exploits0
Fedora
Fedora
added 2023/09/13 1:35 a.m.35 views

[SECURITY] Fedora 37 Update: libeconf-0.5.2-1.fc37

libeconf is a highly flexible and configurable library to parse and manage key=3Dvalue configuration files. It reads configuration file snippets from different directories and builds the final configuration file from it...

6.5CVSS7AI score0.00636EPSS
Exploits0
NVD
NVD
added 2023/07/10 4:15 p.m.17 views

CVE-2023-28995

Cross-Site Request Forgery CSRF vulnerability in Keith Solomon Configurable Tag Cloud CTC plugin = 5.2 versions...

8.8CVSS6.5AI score0.00312EPSS
Exploits0References1
OSV
OSV
added 2023/07/10 4:15 p.m.8 views

CVE-2023-28995

Cross-Site Request Forgery CSRF vulnerability in Keith Solomon Configurable Tag Cloud CTC plugin = 5.2 versions...

8.8CVSS5.8AI score0.00312EPSS
Exploits0References1
Prion
Prion
added 2023/07/10 4:15 p.m.16 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Keith Solomon Configurable Tag Cloud CTC plugin = 5.2 versions...

6.8CVSS8.7AI score0.00312EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder