Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.7 views

Unity Linux 20.1060e / 20.1070e Security Update: sphinx (UTSA-2026-016628)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016628 advisory. SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL...

7.5CVSS7AI score0.02166EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-21432

Malware in sbrugna...

7.5CVSS7.4AI score0.02166EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2022/03/02 12:0 a.m.16 views

openSUSE: Security Advisory for sphinx (openSUSE-SU-2022:0054-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.6AI score0.02166EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/03/02 12:0 a.m.21 views

openSUSE 15 Security Update : sphinx (openSUSE-SU-2022:0054-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:0054-1 advisory. - SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client ca...

7.5CVSS7.1AI score0.02166EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2022/02/22 12:0 a.m.21 views

openSUSE: Security Advisory for sphinx (openSUSE-SU-2022:0046-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.6AI score0.02166EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2020-0087)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.02042EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2022/01/17 12:0 a.m.35 views

Debian DLA-2882-1 : sphinxsearch - LTS security update

The remote Debian 9 host has a package installed that is affected by a vulnerability as referenced in the dla-2882 advisory. - SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL...

7.5CVSS7.2AI score0.02166EPSS
Exploits2References5
Prion
Prion
added 2022/01/10 2:10 p.m.25 views

Directory traversal

SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal in conjunction with CVE-2019-14511 because the mysql client can be used for CALL SNIPPETS and loadfile operations on a full pathname e.g., a file in the /etc directory. NOTE: this is unrelated to CMUSphinx...

5CVSS7.3AI score0.02166EPSS
Exploits2References3Affected Software2
Mageia
Mageia
added 2020/02/18 2:5 p.m.33 views

Updated sphinx packages fix security vulnerability

Updated sphinx packages fix security vulnerability: A vulnerability was found in Sphinx Technologies Sphinx 3.1.1 by default has no authentication and listens on 0.0.0.0, making it exposed to the internet, unless filtered by a firewall or reconfigured to listen to 127.0.0.1 only CVE-2019-14511...

7.5CVSS1.5AI score0.02042EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/10/07 12:0 a.m.34 views

Fedora 31 : sphinx (2019-1f604fd2f2)

Security fix for CVE-2019-14511 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...

7.5CVSS7.2AI score0.02042EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/09/16 12:0 a.m.28 views

Fedora 30 : sphinx (2019-9231a18768)

Security fix for CVE-2019-14511 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...

7.5CVSS7.2AI score0.02042EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/09/16 12:0 a.m.33 views

Fedora 29 : sphinx (2019-bdadf4c6f5)

Security fix for CVE-2019-14511 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...

7.5CVSS7.2AI score0.02042EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2019/09/15 12:0 a.m.41 views

Fedora Update for sphinx FEDORA-2019-bdadf4c6f5

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.5AI score0.02042EPSS
Exploits1References2
NVD
NVD
added 2019/08/22 1:15 p.m.14 views

CVE-2019-14511

Sphinx Technologies Sphinx 3.1.1 by default has no authentication and listens on 0.0.0.0, making it exposed to the internet unless filtered by a firewall or reconfigured to listen to 127.0.0.1 only...

7.5CVSS7.5AI score0.02042EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2019/08/22 12:26 p.m.47 views

CVE-2019-14511

Sphinx Technologies Sphinx 3.1.1 by default has no authentication and listens on 0.0.0.0, making it exposed to the internet unless filtered by a firewall or reconfigured to listen to 127.0.0.1 only...

7.5CVSS7.6AI score0.02042EPSS
Exploits1
CVE
CVE
added 2019/08/22 12:26 p.m.91 views

CVE-2019-14511

CVE-2019-14511 affects Sphinx Technologies Sphinx up to version 3.1.1. By default, the service has no authentication and listens on 0.0.0.0, exposing it to the Internet unless firewall rules or a reconfiguration restrict it to 127.0.0.1. This creates reliance on network controls for exposure. Rel...

7.5CVSS7.4AI score0.02042EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder