Lucene search
+L

14 matches found

ibm
ibm
added 2026/01/07 6:7 a.m.8 views

Security Bulletin: Kafka client library upgraded to kafka-clients-3.9.1

Summary Kafka client library upgraded to kafka-clients-3.9.1. Vulnerability Details CVEID:CVE-2025-27818 DESCRIPTION: A possible security vulnerability has been identified in Apache Kafka. This requires access to a alterConfig to the cluster resource, or Kafka Connect worker, and the ability to...

8.8CVSS6.9AI score0.62368EPSS
Exploits2Affected Software1
adobe
adobe
added 2025/07/08 12:0 a.m.20 views

APSB25-61 : Security update available for Adobe Connect

Adobe has released a security update for Adobe Connect. This update resolves a critical vulnerability that could lead to arbitrary code execution...

9.6CVSS8.1AI score0.00989EPSS
Exploits0Affected Software1
cve
cve
added 2025/05/13 8:32 p.m.66 views

CVE-2025-43567

Adobe Connect 12.8 and earlier are affected by a reflected XSS vulnerability in vulnerable form fields. The issue allows an attacker to inject malicious JavaScript which can be executed in a victim’s browser, potentially enabling session takeover and raising confidentiality and integrity impact. ...

9.3CVSS7.8AI score0.00406EPSS
Exploits0References1Affected Software1
cnvd
cnvd
added 2024/12/13 12:0 a.m.11 views

Adobe Connect Cross-Site Scripting Vulnerability (CNVD-2025-02098)

Adobe Connect is a software for creating meeting environments from the American company Audobee Adobe. A cross-site scripting vulnerability exists in Adobe Connect version 12.6 and earlier and version 11.4.7 and earlier, which can be exploited by an attacker to inject malicious script into...

6.1CVSS5.9AI score0.00326EPSS
Exploits0References1
cnvd
cnvd
added 2024/12/13 12:0 a.m.28 views

Adobe Connect Input Validation Error Vulnerability (CNVD-2025-02845)

Adobe Connect is a software for creating meeting environments from the American company Audobee Adobe. An input validation error vulnerability exists in Adobe Connect, which stems from the system's failure to appropriately handle target jumps, and can be exploited by an attacker to redirect a use...

6.1CVSS6.6AI score0.00444EPSS
Exploits0References1
cnvd
cnvd
added 2024/12/13 12:0 a.m.19 views

Adobe Connect Cross-Site Scripting Vulnerability (CNVD-2024-48908)

Adobe Connect is a software for creating meeting environments from the American company Audobee Adobe. A cross-site scripting vulnerability exists in Adobe Connect, which can be exploited by an attacker to inject malicious script into vulnerable form fields...

6.1CVSS5.9AI score0.00326EPSS
Exploits0References1
cve
cve
added 2024/12/10 8:42 p.m.73 views

CVE-2024-54037

Adobe Connect is affected by a DOM-based XSS vulnerability in versions 12.6, 11.4.7 and earlier. Exploitation requires user interaction (crafted URL or input) and can lead to arbitrary code execution in the victim’s browser, with potential session takeover and high confidentiality/integrity impac...

8.1CVSS6.9AI score0.00893EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2024/12/10 8:42 p.m.30 views

CVE-2024-49550 Adobe Connect | Cross-site Scripting (Reflected XSS) (CWE-79)

Adobe Connect versions 12.6, 11.4.7 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser...

6.1CVSS0.00507EPSS
Exploits0References1
adobe
adobe
added 2024/12/10 12:0 a.m.36 views

APSB24-99 : Security update available for Adobe Connect

Adobe has released a security update for Adobe Connect. This update resolves critical, important and moderate vulnerabilities. Successful exploitation could lead to arbitrary code execution, privilege escalation and security feature bypass...

8.4AI score
Exploits0Affected Software1
ptsecurity
ptsecurity
added 2023/02/07 12:0 a.m.6 views

PT-2023-19973

Name of the Vulnerable Software and Affected Versions Apache Kafka Connect versions prior to 3.4.0 Apache Kafka versions 2.3.0 through 3.3.x Bitbucket Data Center and Server versions 7.21.0 through 8.12.0 Description A possible security vulnerability has been identified in Apache Kafka Connect AP...

8.8CVSS6.8AI score0.95302EPSS
Exploits8References23
osv
osv
added 2022/11/11 11:4 a.m.3 views

OESA-2022-2062 kafka security update

Apache Kafka is an open-source distributed event streaming platform used by thousands of companies for high-performance data pipelines, streaming analytics, data integration, and mission-critical applications. Security Fixes: When Connect workers in Apache Kafka 2.0.0, 2.0.1, 2.1.0, 2.1.1, 2.2.0,...

7.5CVSS6.9AI score0.03915EPSS
Exploits0References3
hashicorp
hashicorp
added 2021/07/15 11:49 p.m.8 views

Consul’s Envoy TLS Configuration Did Not Validate Destination Service Subject Alternative Names

Summary A vulnerability was identified in Consul and Consul Enterprise “Consul” such that the Envoy proxy configuration for Consul Connect does not mutually verify the destination service identity. This vulnerability, CVE-2021-32574, affects Consul versions 1.3.0 up to 1.10.0, and is fixed in the...

7.5CVSS6.8AI score0.01457EPSS
Exploits0Affected Software1
nessus
nessus
added 2019/01/03 12:0 a.m.14 views

Fedora 28 : kde-connect (2018-0741f1ca08)

Security fix release, Changes since 1.3.1 : - Security fix Don't disable all modern SSH encryption algorithms. - Remote media player info didn't update under some circumstances. - Remove characters from commands UUIDs that aren't legal in URLs. - New notifications now appear on top and not in the...

5.6AI score
Exploits0References2
prion
prion
added 2018/05/19 5:29 p.m.24 views

Authentication flaw

Adobe Connect versions 9.7.5 and earlier have an exploitable Authentication Bypass vulnerability. Successful exploitation could lead to sensitive information disclosure...

5CVSS7.4AI score0.099EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder