Lucene search
K

30 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2018-14040

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute. CVE-2018-14040 Note that Nessus relies on the presence of the package as...

6.1CVSS6.7AI score0.04135EPSS
Exploits1References3
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.27 views

CVE-2018-14040 affecting package boost 1.66.0-4

CVE-2018-14040 affecting package boost 1.66.0-4. This CVE either no longer is or was never applicable...

6.1CVSS7.4AI score0.04135EPSS
Exploits1
Circl
Circl
added 2024/08/28 8:5 p.m.6 views

CVE-2018-14040

creationtimestamp| type| source ---|---|--- 2024-08-28 20:05:46+00:00| seen| Telegram/PUYvFWleGvhvTPv3ZlC0zRSIrEJDRVSL7e-LmiKULxekvI 2024-09-12 10:16:41+00:00| seen| Telegram/KQJ2fokDRUpEEMEdtilLJpNYW94QEwCQWFCqP7BH6XiY 2024-11-22 19:21:06+00:00| seen|...

6.1CVSS6.7AI score0.04135EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/05 8:0 p.m.44 views

Security Bulletin: IBM Storage Ceph is vulnerable to Cross-site Scripting in Ceph (CVE-2018-20677, CVE-2018-20676, CVE-2019-8331, CVE-2018-14042, CVE-2018-14040, CVE-2016-10735)

Summary Bootstrap is used by IBM Storage Ceph as part of Ceph Storage. This bulletin identifies the steps to take to address the vulnerability in IBM Storage Ceph. CVE-2018-20677, CVE-2018-20676, CVE-2019-8331, CVE-2018-14042, CVE-2018-14040, CVE-2016-10735. Vulnerability Details...

6.1CVSS6.3AI score0.1686EPSS
Exploits5Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.46 views

RHEL 8 : bootstrap (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bootstrap: XSS in the tooltip or popover data-template attribute CVE-2019-8331 - In Bootstrap 3.x before...

6.9AI score0.1686EPSS
Exploits6References6
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.33 views

RHEL 7 : bootstrap (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bootstrap: Cross-site Scripting XSS in the data-container property of tooltip CVE-2018-14042 - In Bootstr...

6.2AI score0.04135EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2023/03/01 9:45 p.m.39 views

Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.2 security update on RHEL 8

New Red Hat Single Sign-On 7.6.2 packages are now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.8AI score0.99615EPSS
Exploits41References32
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.367 views

K48382137: Bootstrap vulnerability CVE-2018-14040

Security Advisory Description In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute. CVE-2018-14040 Impact An attacker may exploit this vulnerability to perform a cross-site scripting XSS attack. Security Advisory Status F5 Product Development has assigned ID 767373...

6.1CVSS6.6AI score0.04135EPSS
Exploits1Affected Software15
CBLMariner
CBLMariner
added 2022/10/21 8:43 p.m.22 views

CVE-2018-14040 affecting package reaper for versions less than 3.1.1-1

CVE-2018-14040 affecting package reaper for versions less than 3.1.1-1. A patched version of the package is available...

6.1CVSS6.7AI score0.04135EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/13 1:7 a.m.3 views

com.slyak:slyak-web-bootstrap (>=1.0.3.RELEASE <=1.0.4.RELEASE), de.smartsquare.squit:de.smartsquare.squit.gradle.plugin (>=2.0.0 <=2.2.0) +23 more potentially affected by CVE-2018-14040 via org.webjars:bootstrap (>=4.0.0 <=4.1.1)

org.webjars:bootstrap MAVEN version =4.0.0, =1.0.3.RELEASE, =2.0.0, =2.1.0, =2.0.0, =5.3.0, =5.3.0, =5.3.0, =5.3.0, =5.3.3 - org.orienteer:orienteer-architect =1.4 - org.orienteer:orienteer-birt =1.4 - org.orienteer:orienteer-bpm =1.4 - org.orienteer:orienteer-camel =1.4 -...

6.1CVSS6.6AI score0.04135EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/13 1:7 a.m.5 views

au.com.intelix:rs-core-js_2.11 (=0.1.3.1), au.com.mountain-pass:hyperstate (>=1 <=9) +493 more potentially affected by CVE-2018-14040 via org.webjars:bootstrap (>=2.3.0 <=3.3.7)

org.webjars:bootstrap MAVEN version =2.3.0, =1, =1, =20.3.0, =24.2.0, =20.3.0, =2.23.5, =2.23.5, =23.1.0, =2.23.0, =2.23.5, =2.23.5, =2.23.5, =20.2.0 - ca.denisab85:telegram-restapi =0.0.1 and more Source cves: CVE-2018-14040 Source advisory: OSV:GHSA-3WQF-4X89-9G79...

6.1CVSS6.6AI score0.04135EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/13 1:7 a.m.4 views

@7ninjas/scss-mixins (=1.0.0-alpha3), @afiniti/design-system (>=0.0.1 <=0.0.8) +247 more potentially affected by CVE-2018-14040 via bootstrap (>=4.0.0 <=4.1.1)

bootstrap NPM version =4.0.0, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =1.1.0, =1.0.0, =0.0.16, =0.0.1, =1.0.0, =2.0.0-alpha, =2.3.2, =1.0.0, =1.0.3 - @evoxmusic/angular =0.7.5 and more Source cves: CVE-2018-14040 Source advisory: OSV:GHSA-3WQF-4X89-9G79...

6.1CVSS6.6AI score0.04135EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2021/11/18 12:0 a.m.276 views

F5 Networks BIG-IP : Bootstrap vulnerability (K48382137)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.0. It is, therefore, affected by a vulnerability as referenced in the K48382137 advisory. - In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute. CVE-2018-14040 Note that Nessus has not...

6.1CVSS6.8AI score0.04135EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/10/27 12:0 a.m.58 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : ipa Multiple Vulnerabilities (NS-SA-2021-0171)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has ipa packages installed that are affected by multiple vulnerabilities: - jQuery before 3.0.0 is vulnerable to Cross-site Scripting XSS attacks when a cross-domain Ajax request is performed without the dataType option, causin...

6.9CVSS6.6AI score0.99019EPSS
Exploits17References21
Tenable Nessus
Tenable Nessus
added 2021/08/11 12:0 a.m.43 views

openSUSE 15 Security Update : php7 (openSUSE-SU-2021:1130-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1130-1 advisory. - Tenable.sc leverages third-party software to help provide underlying functionality. Multiple third-party components were found to contain...

9.8CVSS7.2AI score0.9947EPSS
Exploits94References7
Tenable Nessus
Tenable Nessus
added 2021/07/31 12:0 a.m.85 views

openSUSE 15 Security Update : php7 (openSUSE-SU-2021:2575-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:2575-1 advisory. - Tenable.sc leverages third-party software to help provide underlying functionality. Multiple third-party components were found to contain...

9.8CVSS7.1AI score0.9947EPSS
Exploits94References4
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.130 views

CentOS 8 : pki-core:10.6 and pki-deps:10.6 (CESA-2020:4847)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4847 advisory. - jquery: Cross-site scripting via cross-domain ajax requests CVE-2015-9251 - bootstrap: XSS in the data-target attribute CVE-2016-10735 - bootstrap:...

9.8CVSS7.5AI score0.9927EPSS
Exploits65References14
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.61 views

CentOS 8 : idm:DL1 and idm:client (CESA-2020:4670)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4670 advisory. - jquery: Cross-site scripting via cross-domain ajax requests CVE-2015-9251 - bootstrap: XSS in the data-target attribute CVE-2016-10735 - bootstrap:...

6.9CVSS7AI score0.99019EPSS
Exploits16References11
RedHat Linux
RedHat Linux
added 2020/11/04 1:31 a.m.267 views

Moderate: Red Hat Security Advisory: idm:DL1 and idm:client security, bug fix, and enhancement update

An update for the idm:DL1 and idm:client modules is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

6.9CVSS7.1AI score0.99019EPSS
Exploits16References62
Tenable Nessus
Tenable Nessus
added 2020/11/04 12:0 a.m.74 views

RHEL 8 : idm:DL1 and idm:client (RHSA-2020:4670)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4670 advisory. Red Hat Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and...

6.9CVSS6.8AI score0.99019EPSS
Exploits16References74
Rows per page
Query Builder