Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.17 views

Debian: Security Advisory (DLA-53-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.03614EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/03/26 12:0 a.m.29 views

Debian DLA-53-1 : apt security update

It was discovered that APT, the high level package manager, does not properly invalidate unauthenticated data CVE-2014-0488, performs incorrect verification of 304 replies CVE-2014-0487 and does not perform the checksum check when the Acquire::GzipIndexes option is used CVE-2014-0489. NOTE: Tenab...

7.5CVSS5.3AI score0.03614EPSS
Exploits0References5
OSV
OSV
added 2014/11/03 10:55 p.m.7 views

CVE-2014-0488

APT before 1.0.9 does not "invalidate repository data" when moving from an unauthenticated to authenticated state, which allows remote attackers to have unspecified impact via crafted repository data...

6.8AI score
Exploits0References5
CVE
CVE
added 2014/11/03 10:0 p.m.71 views

CVE-2014-0488

CVE-2014-0488 concerns APT before 1.0.9, where the package manager does not properly invalidate repository data when transitioning from unauthenticated to authenticated state. This can allow a remote attacker to influence repository data with unspecified impact. The connected advisories consisten...

6.8CVSS6.8AI score0.02084EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/09/17 12:0 a.m.21 views

Debian DSA-3025-1 : apt - security update

It was discovered that APT, the high level package manager, does not properly invalidate unauthenticated data CVE-2014-0488 , performs incorrect verification of 304 replies CVE-2014-0487 , does not perform the checksum check when the Acquire::GzipIndexes option is used CVE-2014-0489 and does not...

7.5CVSS5.2AI score0.03614EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2014/09/17 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-2348-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.03614EPSS
Exploits0References2
Debian
Debian
added 2014/09/16 4:51 p.m.25 views

[SECURITY] [DLA 53-1] apt security update

Package : apt Version : 0.8.10.3+squeeze3 CVE ID : CVE-2014-0487 CVE-2014-0488 CVE-2014-0489 It was discovered that APT, the high level package manager, does not properly invalidate unauthenticated data CVE-2014-0488, performs incorrect verification of 304 replies CVE-2014-0487 and does not perfo...

7.5CVSS6.4AI score0.03614EPSS
Exploits0
Debian
Debian
added 2014/09/16 4:30 p.m.26 views

[SECURITY] [DSA 3025-1] apt security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3025-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso September 16, 2014 http://www.debian.org/security/faq -...

7.5CVSS6.5AI score0.03614EPSS
Exploits0
Debian
Debian
added 2014/09/16 4:30 p.m.26 views

[SECURITY] [DSA 3025-1] apt security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3025-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso September 16, 2014 http://www.debian.org/security/faq -...

7.5CVSS2AI score0.03614EPSS
Exploits0
Ubuntu
Ubuntu
added 2014/09/16 4:20 p.m.49 views

USN-2348-1: APT vulnerabilities

It was discovered that APT did not re-verify downloaded files when the If-Modified-Since wasn't met. CVE-2014-0487 It was discovered that APT did not invalidate repository data when it switched from an unauthenticated to an authenticated state. CVE-2014-0488 It was discovered that the APT...

7.5CVSS5.3AI score0.03614EPSS
Exploits0
OSV
OSV
added 2014/09/16 4:0 p.m.6 views

UBUNTU-CVE-2014-0488

APT before 1.0.9 does not "invalidate repository data" when moving from an unauthenticated to authenticated state, which allows remote attackers to have unspecified impact via crafted repository data...

6.8CVSS5.8AI score0.02084EPSS
Exploits0References3
Rows per page
Query Builder