Lucene search
K

118 matches found

OSV
OSV
added 2017/05/18 7:29 p.m.3 views

CVE-2017-6623

A vulnerability in a script file that is installed as part of the Cisco Policy Suite CPS Software distribution for the CPS appliance could allow an authenticated, local attacker to escalate their privilege level to root. The vulnerability is due to incorrect sudoers permissions on the script file...

7.8CVSS5.8AI score0.0032EPSS
Exploits0References2
CVE
CVE
added 2017/05/18 7:0 p.m.52 views

CVE-2017-6623

CVE-2017-6623 describes a local privilege-escalation in Cisco Policy Suite (CPS) on CPS appliances. The root cause is incorrect sudoers permissions on a script file installed with CPS, enabling an authenticated local user to supply crafted CLI input and execute commands as root, thereby gaining r...

7.8CVSS7.8AI score0.0032EPSS
Exploits0References2Affected Software1
Cisco
Cisco
added 2017/05/17 4:0 p.m.48 views

Cisco Policy Suite Privilege Escalation Vulnerability

A vulnerability in a script file that is installed as part of the Cisco Policy Suite CPS Software distribution for the CPS appliance could allow an authenticated, local attacker to escalate their privilege level to root. The vulnerability is due to incorrect sudoers permissions on the script file...

7.8CVSS7.9AI score0.0032EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2016/12/03 9:44 p.m.10 views

cpsenergy.com XSS vulnerability

Vulnerable URL: https://cpsenergy.com/en/solrsearch.html?q=prompt/XSSPOSED/...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/08/14 1:30 p.m.8 views

cps.unizar.es XSS vulnerability

Vulnerable URL: http://www.cps.unizar.es/ori/students/index.php?page=location" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 27.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check...

6.3AI score
Exploits0
Symantec
Symantec
added 2016/06/07 12:0 a.m.47 views

Apache Struts CVE-2016-1181 Remote Code Execution Vulnerability

Description Apache Struts is prone to a remote code-execution vulnerability. Successfully exploiting this issue may allow an attacker to execute arbitrary code in the context of the affected application. Failed exploit attempts may cause a denial-of-service condition. Apache Struts 1.0 through...

6.8CVSS1AI score0.13122EPSS
Exploits0References1Affected Software28
CVE
CVE
added 2016/03/03 10:0 p.m.34 views

CVE-2016-1357

CVE-2016-1357 affects Cisco Policy Suite (CPS) password-management administration component. The vulnerability allows remote attackers to bypass RBAC and read unspecified data via unknown vectors (Bug ID CSCut85211). Affected CPS versions include 7.0.1.3, 7.0.2, 7.0.2-att, 7.0.3-att, 7.0.4-att, a...

5.3CVSS5.3AI score0.01114EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2016/02/15 11:0 p.m.49 views

CVE-2016-0232

CVE-2016-0232 affects IBM Financial Transaction Manager (FTM) for ACH Services, Check Services and Corporate Payment Services (CPS) in the 3.0.0.x line (and related multi‑platform/ACH/Check/CPS deployments). An authenticated remote attacker could obtain sensitive information by reading README fil...

4.3CVSS4.1AI score0.01126EPSS
Exploits0References7Affected Software1
Openbugbounty
Openbugbounty
added 2015/12/05 1:33 a.m.14 views

helpdesk.cps-datensysteme.de XSS vulnerability

Open Bug Bounty ID: OBB-113127 Description| Value ---|--- Affected Website:| helpdesk.cps-datensysteme.de Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/10/01 12:0 a.m.24 views

RHEL 5 : xinetd (RHSA-2013:1302)

An updated xinetd package that fixes one security issue and two bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

4.3CVSS5.8AI score0.02779EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2013/09/30 8:30 p.m.26 views

Low: Red Hat Security Advisory: xinetd security and bug fix update

An updated xinetd package that fixes one security issue and two bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

4.3CVSS5.9AI score0.02779EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2013/03/01 12:0 a.m.44 views

Scientific Linux Security Update : xinetd on SL6.x i386/x86_64 (20130221)

When xinetd services are configured with the 'TCPMUX' or 'TCPMUXPLUS' type, and the tcpmux-server service is enabled, those services are accessible via port 1. It was found that enabling the tcpmux-server service it is disabled by default allowed every xinetd service, including those that are not...

4.3CVSS5.5AI score0.02779EPSS
Exploits1References2
Cent OS
Cent OS
added 2013/02/27 7:40 p.m.55 views

xinetd security update

CentOS Errata and Security Advisory CESA-2013:0499 An updated xinetd package that fixes one security issue and two bugs is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CV...

4.3CVSS5.9AI score0.02779EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2013/02/22 12:0 a.m.19 views

RedHat Update for xinetd RHSA-2013:0499-02

Check for the Version of xinetd OpenVAS Vulnerability Test RedHat Update for xinetd RHSA-2013:0499-02 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

4.3CVSS6.3AI score0.02779EPSS
Exploits1References2
NVD
NVD
added 2006/05/02 10:2 a.m.20 views

CVE-2006-2141

Cross-site scripting XSS vulnerability in popupimage in Collaborative Portal Server CPS 3.4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the pos argument...

4.3CVSS5.7AI score0.03824EPSS
Exploits1References6
CVE
CVE
added 2006/05/02 10:0 a.m.45 views

CVE-2006-2141

CVE-2006-2141 describes a cross-site scripting (XSS) vulnerability in the popup_image function of Collaborative Portal Server (CPS) up to version 3.4.0 and earlier. The issue allows an attacker to inject arbitrary web script or HTML by supplying a malicious value in the pos parameter. The connect...

4.3CVSS5.7AI score0.03824EPSS
Exploits1References6Affected Software1
securityvulns
securityvulns
added 2006/04/30 12:0 a.m.35 views

CPS <=3.4.0 XSS

CPS =3.4.0 XSS Vuln. discovered by : r0t Date: 30 april 2006 vendorlink:http://www.cps-project.org/ affected versions:3.4.0 and prior orginal avdisory: http://pridels.blogspot.com/2006/04/cps-340-xss.html Vuln. Description: CPS contains a flaw that allows a remote cross site scripting attack. Thi...

0.2AI score
Exploits0
CVE
CVE
added 2005/11/24 11:0 a.m.37 views

CVE-2005-3800

The CVE concerns Macromedia Contribute Publishing Server (CPS) prior to version 1.11 that uses a weak algorithm to encrypt user passwords within connection keys that rely on shared FTP login credentials. The underlying issue enables disclosure of sensitive information by an attacker who can acces...

5CVSS6.8AI score0.01309EPSS
Exploits0References6
Rows per page
Query Builder