Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2018/12/24 12:0 a.m.36 views

openSUSE Security Update : tryton (openSUSE-2018-1588)

This update for tryton to version 4.2.19 fixes the following issues : Security issue fixed : - CVE-2018-19443: Fixed an information leakage by attemping to initiate an unencrypted connection, which would fail eventually, but might leak session information of the user boo1117105 This update also...

5.9CVSS5.8AI score0.00856EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/12/24 12:0 a.m.22 views

openSUSE Security Update : tryton (openSUSE-2018-1587)

This update for tryton to version 4.2.19 fixes the following issues boo1107771 : Security issue fixed : - CVE-2018-19443: Fixed an information leakage by attemping to initiate an unencrypted connection, which would fail eventually, but might leak session information of the user boo1117105 This...

5.9CVSS5.8AI score0.00856EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2018/12/23 12:0 a.m.15 views

openSUSE: Security Advisory for tryton (openSUSE-SU-2018:4242-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.9CVSS5.7AI score0.00856EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/12/23 12:0 a.m.18 views

openSUSE: Security Advisory for tryton (openSUSE-SU-2018:4248-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.9CVSS5.7AI score0.00856EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/12/22 6:14 p.m.104 views

Security update for tryton (moderate)

This update for tryton to version 4.2.19 fixes the following issues boo1107771: Security issue fixed: - CVE-2018-19443: Fixed an information leakage by attemping to initiate an unencrypted connection, which would fail eventually, but might leak session information of the user boo1117105 This upda...

4.3CVSS1.9AI score0.00856EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/12/22 6:11 p.m.86 views

Security update for tryton (moderate)

This update for tryton to version 4.2.19 fixes the following issues: Security issue fixed: - CVE-2018-19443: Fixed an information leakage by attemping to initiate an unencrypted connection, which would fail eventually, but might leak session information of the user boo1117105 This update also...

4.3CVSS1.9AI score0.00856EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/11/22 7:0 p.m.28 views

CVE-2018-19443

The client in Tryton 5.x before 5.0.1 tries to make a connection to the bus in cleartext instead of encrypted under certain circumstances in bus.py and jsonrpc.py. This connection attempt fails, but it contains in the header the current session of the user. This session could then be stolen by a...

5.5AI score0.00856EPSS
Exploits0References2
CVE
CVE
added 2018/11/22 7:0 p.m.62 views

CVE-2018-19443

CVE-2018-19443 affects Tryton: the client in Tryton 5.x before 5.0.1 can initiate a cleartext bus connection under certain conditions; the header may carry the user session, enabling MITM session leakage. Connected sources confirm the issue and indicate security updates across distributions (e.g....

5.9CVSS5.4AI score0.00856EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder