Lucene search
K

24 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/08/05 8:0 p.m.44 views

Security Bulletin: IBM Storage Ceph is vulnerable to Cross-site Scripting in Ceph (CVE-2018-20677, CVE-2018-20676, CVE-2019-8331, CVE-2018-14042, CVE-2018-14040, CVE-2016-10735)

Summary Bootstrap is used by IBM Storage Ceph as part of Ceph Storage. This bulletin identifies the steps to take to address the vulnerability in IBM Storage Ceph. CVE-2018-20677, CVE-2018-20676, CVE-2019-8331, CVE-2018-14042, CVE-2018-14040, CVE-2016-10735. Vulnerability Details...

6.1CVSS6.3AI score0.1686EPSS
Exploits5Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.46 views

RHEL 8 : bootstrap (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - bootstrap: XSS in the tooltip or popover data-template attribute CVE-2019-8331 - In Bootstrap 3.x before...

6.9AI score0.1686EPSS
Exploits6References6
IBM Security Bulletins
IBM Security Bulletins
added 2024/01/18 9:0 p.m.40 views

Security Bulletin: IBM Storage Ceph is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross Site Scripting') in Bootstrap (CVE-2018-20677)

Summary Bootstrap is used by IBM Storage Ceph as a CSS framework. CVE-2018-20677 This bulletin identifies the steps to take to address the vulnerability in Bootstrap. Vulnerability Details CVEID: CVE-2018-20677 DESCRIPTION: Bootstrap is vulnerable to cross-site scripting, caused by improper...

6.1CVSS6.6AI score0.03984EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/10/12 12:0 a.m.90 views

RHEL 9 : Red Hat Ceph Storage 6.1 (RHSA-2023:5693)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:5693 advisory. Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system...

9.8CVSS6.4AI score0.04293EPSS
Exploits3References64
Tenable Nessus
Tenable Nessus
added 2021/08/11 12:0 a.m.43 views

openSUSE 15 Security Update : php7 (openSUSE-SU-2021:1130-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1130-1 advisory. - Tenable.sc leverages third-party software to help provide underlying functionality. Multiple third-party components were found to contain...

9.8CVSS7.2AI score0.9947EPSS
Exploits94References7
Tenable Nessus
Tenable Nessus
added 2021/07/31 12:0 a.m.85 views

openSUSE 15 Security Update : php7 (openSUSE-SU-2021:2575-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:2575-1 advisory. - Tenable.sc leverages third-party software to help provide underlying functionality. Multiple third-party components were found to contain...

9.8CVSS7.1AI score0.9947EPSS
Exploits94References4
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/25 5:34 p.m.61 views

Security Bulletin: IBM License Key Server Administration and Reporting Tool is impacted by multiple vulnerabilities in jQuery, Bootstrap and AngularJS

Summary Multiple vulnerabilities have been found in jQuery, Bootstrap and AngularJS libraries that are used by IBM License Key Server LKS Administration and Reporting Tool ART. Mitigations have been identified and a fix has been published. Vulnerability Details CVEID: CVE-2019-14863 DESCRIPTION:...

7.1CVSS0.4AI score0.99019EPSS
Exploits16Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.61 views

CentOS 8 : idm:DL1 and idm:client (CESA-2020:4670)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:4670 advisory. - jquery: Cross-site scripting via cross-domain ajax requests CVE-2015-9251 - bootstrap: XSS in the data-target attribute CVE-2016-10735 - bootstrap:...

6.9CVSS7AI score0.99019EPSS
Exploits16References11
Tenable Nessus
Tenable Nessus
added 2020/12/18 12:0 a.m.56 views

RHEL 7 : python-XStatic-Bootstrap-SCSS (RHSA-2020:5571)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5571 advisory. python-XStatic-Bootstrap-SCSS is the Bootstrap-SCSS JavaScript library packaged for setuptools / pip. Security Fixes: XSS in the data-target...

6.1CVSS6.6AI score0.1686EPSS
Exploits4References13
RedHat Linux
RedHat Linux
added 2020/12/16 1:53 p.m.69 views

Moderate: Red Hat Security Advisory: python-XStatic-Bootstrap-SCSS security update

An update for python-XStatic-Bootstrap-SCSS is now available for Red Hat OpenStack Platform 13 Queens. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

6.1CVSS6.5AI score0.1686EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2020/11/04 1:31 a.m.267 views

Moderate: Red Hat Security Advisory: idm:DL1 and idm:client security, bug fix, and enhancement update

An update for the idm:DL1 and idm:client modules is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

6.9CVSS7.1AI score0.99019EPSS
Exploits16References62
Tenable Nessus
Tenable Nessus
added 2020/11/04 12:0 a.m.74 views

RHEL 8 : idm:DL1 and idm:client (RHSA-2020:4670)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4670 advisory. Red Hat Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and...

6.9CVSS6.8AI score0.99019EPSS
Exploits16References74
OSV
OSV
added 2020/11/03 12:25 p.m.48 views

ALSA-2020:4670 Moderate: idm:DL1 and idm:client security, bug fix, and enhancement update

AlmaLinux Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. The following packages have been upgraded to a later upstream version: ipa 4.8.7, softhsm 2.6.0, opendnssec 2.1.6...

6.9CVSS8.2AI score0.99019EPSS
Exploits16References11
Tenable Nessus
Tenable Nessus
added 2020/10/28 12:0 a.m.47 views

Amazon Linux 2 : ipa (ALAS-2020-1519)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1519 advisory. jQuery before 3.0.0 is vulnerable to Cross-site Scripting XSS attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed...

6.9CVSS6.5AI score0.99019EPSS
Exploits17References21
Tenable Nessus
Tenable Nessus
added 2020/10/21 12:0 a.m.49 views

Scientific Linux Security Update : ipa on SL7.x x86_64 (20201001)

Security Fixes : - js-jquery: Cross-site scripting via cross-domain ajax requests CVE-2015-9251 - bootstrap: XSS in the data-target attribute CVE-2016-10735 - bootstrap: Cross-site Scripting XSS in the collapse data-parent attribute CVE-2018-14040 - bootstrap: Cross-site Scripting XSS in the...

6.9CVSS7.3AI score0.99019EPSS
Exploits16References11
Cent OS
Cent OS
added 2020/10/20 6:15 p.m.201 views

ipa, python2 security update

CentOS Errata and Security Advisory CESA-2020:3936 An update for ipa is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

6.9CVSS7.4AI score0.99019EPSS
Exploits16References7
Tenable Nessus
Tenable Nessus
added 2020/10/20 12:0 a.m.114 views

CentOS 7 : ipa (RHSA-2020:3936)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3936 advisory. - jQuery before 3.0.0 is vulnerable to Cross-site Scripting XSS attacks when a cross-domain Ajax request is performed without the dataType option,...

6.9CVSS6.7AI score0.99019EPSS
Exploits17References11
RedHat Linux
RedHat Linux
added 2020/01/16 4:2 p.m.89 views

Moderate: Red Hat Security Advisory: Red Hat Decision Manager 7.6.0 Security Update

An update is now available for Red Hat Decision Manager. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in...

6.5CVSS6.5AI score0.0404EPSS
Exploits2References7
RedHat Linux
RedHat Linux
added 2020/01/16 4:2 p.m.107 views

Moderate: Red Hat Security Advisory: Red Hat Process Automation Manager 7.6.0 Security Update

An update is now available for Red Hat Process Automation Manager. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

6.5CVSS6.5AI score0.0404EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2019/10/15 12:0 a.m.63 views

RHEL 7 : Virtualization Manager (RHSA-2019:3023)

An update for ovirt-engine-ui-extensions is now available for Red Hat Virtualization Engine 4.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

6.1CVSS7.4AI score0.87218EPSS
Exploits7References11
Rows per page
Query Builder