Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/27 12:0 a.m.22 views

RHEL 7 : CloudForms 4.6.8 (RHSA-2019:0315)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:0315 advisory. Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments...

6.1CVSS6.4AI score0.02212EPSS
Exploits1References15
RedHat Linux
RedHat Linux
added 2019/02/12 1:59 p.m.85 views

Moderate: Red Hat Security Advisory: CloudForms 4.6.8 security, bug fix and enhancement update

An update is now available for CloudForms Management Engine 5.9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

6.1CVSS6.6AI score0.02212EPSS
Exploits1References12
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.31 views

Fedora 28 : 1:rubygem-sinatra (2018-3f61c5cf7c)

Fix XSS in the 400 Bad Request page CVE-2018-11627, rhbz1585218. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

6.1CVSS6.2AI score0.02212EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/08/02 12:0 a.m.29 views

FreeBSD : sinatra -- XSS vulnerability (ca05d9da-ac1d-4113-8a05-ffe9cd0d6160)

Sinatra blog : Sinatra had a critical vulnerability since v2.0.0. The purpose of this release is to fix CVE-2018-11627. The vulnerability is that XSS can be executed by using illegal parameters. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

6.1CVSS6.3AI score0.02212EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2018/06/25 12:0 a.m.38 views

Fedora 27 : 1:rubygem-sinatra (2018-0b17e1e529)

Fix XSS in the 400 Bad Request page CVE-2018-11627, rhbz1585218. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

6.1CVSS6.2AI score0.02212EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2018/06/09 12:0 a.m.46 views

sinatra -- XSS vulnerability

Sinatra blog: Sinatra had a critical vulnerability since v2.0.0. The purpose of this release is to fix CVE-2018-11627. The vulnerability is that XSS can be executed by using illegal parameters...

6.1CVSS4.1AI score0.02212EPSS
Exploits1References2
CVE
CVE
added 2018/05/31 7:0 p.m.264 views

CVE-2018-11627

CVE-2018-11627 affects the Sinatra Ruby gem (pre-2.0.2) with an XSS in the 400 Bad Request page triggered by a params parser exception. Fedora/RH advisories (e.g., RHSA-2019:0212, RHSA-2019:0315) document fixes and package updates for rubygem-sinatra across affected Fedora/RHEL releases; OpenVAS/...

6.1CVSS5.8AI score0.02212EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder