Lucene search
K

31 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/01/23 7:9 a.m.45 views

Security Bulletin: IBM Maximo Application Suite uses Remote Integer Buffer Overflow Vulnerability which is vulnerable to CVE-2017-7529

Summary IBM Maximo Application Suite uses Remote Integer Buffer Overflow Vulnerability which is vulnerable to CVE-2017-7529. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2017-7529 DESCRIPTION: Nginx could allow a remote attacker t...

7.5CVSS7.5AI score0.62597EPSS
Exploits6Affected Software1
GithubExploit
GithubExploit
added 2022/07/18 5:14 a.m.45 views

Exploit for Integer Overflow or Wraparound in F5 Nginx

CVE-2017-7529 Nginx versions since 0.5.6 up to and including 1...

7.5CVSS6.9AI score0.62597EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2022/05/31 12:0 a.m.54 views

Nginx Plus > R13 Data Disclosure Vulnerability

According to it's self reported version, the installed version of Nginx Plus is prior to R13 built on Open Source version 1.13.4. It is, therefore, affected by an integer overflow vulnerability in the range filter module. An unauthenticated, remote attacker can exploit this, via a specially craft...

7.5CVSS6.8AI score0.62597EPSS
Exploits6References5
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.35 views

Mageia: Security Advisory (MGASA-2017-0231)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.62597EPSS
Exploits6References4
Apple
Apple
added 2021/09/20 12:0 a.m.523 views

About the security content of Xcode 13

About the security content of Xcode 13 This document describes the security content of Xcode 13. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recen...

9.8CVSS7.5AI score0.81958EPSS
Exploits10References1Affected Software1
Oracle linux
Oracle linux
added 2020/09/24 12:0 a.m.82 views

olcne nginx security update

olcne 1.1.6-1 - support upgrading nginx - Adress CVE-2019-9511 - Adress CVE-2018-16845 - Adress CVE-2017-7529 - support upgrading flannel nginx 1.17.7-2 - Changed nginx home dir to /var/lib/nginx for consistency 1.17.7-1 - Added Oracle Specific Build Files for nginx - Adress CVE-2019-9511 - Adres...

8.2CVSS0.9AI score0.62597EPSS
Exploits7
Hacker One
Hacker One
added 2020/09/12 8:12 p.m.350 views

Brave Software: https://publishers.basicattentiontoken.org/favicon.ico is Vulnerable to CVE-2017-7529

ou can verify the vulnerability by executing attached POC. python CVE20177529.py https://publishers.basicattentiontoken.org/favicon.ico command. All details available at https://nvd.nist.gov/vuln/detail/CVE-2017-7529 https://gist.github.com/thehappydinoa/bc3278aea845b4f578362e9363c51115 Please do...

5CVSS0.2AI score0.62597EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2020/07/02 12:0 a.m.74 views

Palo Alto Networks PAN-OS 7.1.x < 7.1.26 / 8.0.x < 8.1.13 / 8.1.x < 8.1.13 / 9.0.x < 9.0.6 Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is 7.1.x prior to 7.1.26 or 8.0.x prior to 8.1.13 or 8.1.x prior to 8.1.13 or 9.0.x prior to 9.0.6. It is, therefore, affected by a vulnerability. - Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer...

7.5CVSS6.7AI score0.62597EPSS
Exploits6References3
Palo Alto Networks
Palo Alto Networks
added 2020/05/13 4:0 p.m.136 views

PAN-OS: Nginx integer overflow may lead to information leak

Nginx web-server included with PAN-OS is vulnerable to an integer overflow vulnerability that can leak potentially a cache file header if a response was returned from cache. This issue affects: PAN-OS 7.1 versions earlier than 7.1.26; PAN-OS 8.1 versions earlier than 8.1.13; PAN-OS 9.0 versions...

7.5CVSS4.3AI score0.62597EPSS
Exploits6References1
Symantec
Symantec
added 2020/05/06 6:48 p.m.145 views

Nginx Vulnerabilities Jul 2017 - Oct 2019

Summary Symantec SWG products using affected versions of Nginx may be susceptible to multiple Nginx vulnerabilities. A remote attacker can use crafted requests to obtain sensitive information or cause denial of service. An attacker can also obtain sensitive information or cause denial of service ...

7.8CVSS1.8AI score0.82017EPSS
Exploits7Affected Software2
Openbugbounty
Openbugbounty
added 2019/11/29 12:52 a.m.12 views

demogreen.eu Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1025375 Security Researcher metamorfosec Helped patch 1978 vulnerabilities Received 9 Coordinated Disclosure badges Received 32 recommendations , a holder of 9 badges for responsible and coordinated disclosure, found a security vulnerability affecting demogreen.eu website...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2019/11/21 2:43 p.m.7 views

bulledair.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1021350 Security Researcher g0bl1nsec Helped patch 3768 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting bulledair.com website and...

Exploits0
GithubExploit
GithubExploit
added 2019/06/06 2:47 p.m.54 views

Exploit for Integer Overflow or Wraparound in F5 Nginx

CVE-2017-7529-POC Affected Vulnerabilities This vulner...

7.5CVSS6.8AI score0.62597EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2018/03/27 12:0 a.m.49 views

openSUSE Security Update : nginx (openSUSE-2018-316)

This update for nginx to version 1.13.9 fixes the following issues : - CVE-2017-7529: nginx: Integer overflow in nginx range filter module allowed memory disclosure bsc1048265 This update also contains all updates and improvements in 1.13.9 upstream release. %NASLMINLEVEL 70300 C Tenable Network...

7.5CVSS6.7AI score0.62597EPSS
Exploits6References4
Tenable Nessus
Tenable Nessus
added 2017/12/18 12:0 a.m.446 views

nginx < 1.13.3 Integer Overflow Vulnerability

This plugin has been deprecated since it duplicates plugin ID 118151 C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2020/04/27. Deprecated by sambarcgipathdisclosure.nasl. include'compat.inc'; if description scriptid105359; scriptversion"1.14";...

7.5CVSS0.6AI score0.62597EPSS
Exploits6References4
Tenable Nessus
Tenable Nessus
added 2017/09/15 12:0 a.m.78 views

Amazon Linux AMI : nginx (ALAS-2017-894)

A flaw within the processing of ranged HTTP requests has been discovered in the range filter module of nginx. A remote attacker could possibly exploit this flaw to disclose parts of the cache file header, or, if used in combination with third party modules, disclose potentially sensitive memory b...

7.5CVSS6.7AI score0.62597EPSS
Exploits6References2
Amazon
Amazon
added 2017/09/13 12:0 a.m.60 views

Low: nginx

Issue Overview: A flaw within the processing of ranged HTTP requests has been discovered in the range filter module of nginx. A remote attacker could possibly exploit this flaw to disclose parts of the cache file header, or, if used in combination with third party modules, disclose potentially...

7.5CVSS7.3AI score0.62597EPSS
Exploits6
OSV
OSV
added 2017/09/07 2:38 p.m.20 views

SUSE-SU-2017:2387-1 Security update for nginx-1.0

This update for NGINX fixes the following issues: Security issue fixed: - CVE-2017-7529: Integer overflow in nginx range filter module leading to memory disclosure. bsc1048265...

7.5CVSS7.5AI score0.62597EPSS
Exploits6References3
RedHat Linux
RedHat Linux
added 2017/08/28 9:59 p.m.91 views

Low: Red Hat Security Advisory: rh-nginx110-nginx security update

An update for rh-nginx110-nginx is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS6.7AI score0.62597EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2017/08/24 12:0 a.m.54 views

Fedora 26 : 1:nginx (2017-aecd25b8a9)

This update includes nginx 1.12.1, fixing CVE-2017-7529, and adds the httpauthrequest module. See http://mailman.nginx.org/pipermail/nginx-announce/2017/000200.html for more information on CVE-2017-7529. Note that Tenable Network Security has extracted the preceding description block directly fro...

7.5CVSS6.7AI score0.62597EPSS
Exploits6References3
Rows per page
Query Builder