Lucene search
K

14 matches found

Veracode
Veracode
added 2019/05/02 5:39 a.m.17 views

Information Disclosure

The pcs packages provide a command-line tool and a web UI to configure and manage the Pacemaker and Corosync tools. It was found that the pcs daemon did not sign cookies containing session data that were sent to clients connecting via the pcsd web UI. A remote attacker could use this flaw to forg...

6.8CVSS5.9AI score0.02424EPSS
Exploits1References10Affected Software1
OpenVAS
OpenVAS
added 2015/07/07 12:0 a.m.18 views

Fedora Update for pcs FEDORA-2015-8765

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.02424EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/06/19 12:0 a.m.93 views

PCS Daemon (pcsd) Cookie Signing Multiple Vulnerabilities

The remote host is affected by multiple vulnerabilities due to a failure by the PCS daemon pcsd to properly set flags in the 'Set-Cookie' header : - A security bypass vulnerability exists due to a failure to set the 'secure' flag. A remote attacker can exploit this to spoof cookies and bypass...

6.8CVSS5.6AI score0.02424EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.15 views

CentOS Update for pcs CESA-2015:0980 centos7

Check the version of pcs SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882178";...

6.8CVSS5.1AI score0.02424EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/06/09 12:0 a.m.19 views

CentOS Update for pcs CESA-2015:0990 centos6

Check the version of pcs SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882185";...

6.8CVSS5.1AI score0.02424EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/06/05 12:0 a.m.20 views

Fedora 20 : pcs-0.9.115-3.fc20 (2015-8761)

Fix for CVE-2015-1848, CVE-2015-3983 sessions not signed Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...

6.8CVSS5.3AI score0.02424EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2015/06/05 12:0 a.m.22 views

Fedora 21 : pcs-0.9.137-4.fc21 (2015-8788)

Fix for CVE-2015-1848, CVE-2015-3983 sessions not signed Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...

6.8CVSS5.3AI score0.02424EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2015/06/05 12:0 a.m.28 views

Fedora 22 : pcs-0.9.139-4.fc22 (2015-8765)

Fix for CVE-2015-1848, CVE-2015-3983 sessions not signed Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...

6.8CVSS5.3AI score0.02424EPSS
Exploits1References4
CVE
CVE
added 2015/05/14 2:0 p.m.72 views

CVE-2015-1848

The CVE-2015-1848 entry concerns the PCS daemon (pcsd) in PCS 0.9.137 and earlier failing to set the Secure flag on cookies in HTTPS sessions (CVE-2015-1848); CVE-2015-3983 covers the related issue of not setting the HttpOnly flag. Multiple open-source advisories (Fedora/CentOS and related feeds)...

6.8CVSS6.2AI score0.02424EPSS
Exploits1References7Affected Software1
Cent OS
Cent OS
added 2015/05/13 12:53 a.m.59 views

pcs, python security update

CentOS Errata and Security Advisory CESA-2015:0980 Updated pcs packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base...

6.8CVSS5.7AI score0.02424EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2015/05/13 12:0 a.m.26 views

RHEL 7 : pcs (RHSA-2015:0980)

Updated pcs packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

6.8CVSS5.5AI score0.02424EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2015/05/13 12:0 a.m.24 views

CentOS 6 : pcs (CESA-2015:0990)

Updated pcs packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

6.8CVSS5.6AI score0.02424EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2015/05/13 12:0 a.m.27 views

CentOS 7 : pcs (CESA-2015:0980)

Updated pcs packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

6.8CVSS5.5AI score0.02424EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2015/05/12 5:59 p.m.23 views

Important: Red Hat Security Advisory: pcs security and bug fix update

Updated pcs packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

6.8CVSS5.8AI score0.02424EPSS
Exploits1References2
Rows per page
Query Builder