Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.10 views

Azure Linux 3.0 Security Update: js-jquery (CVE-2019-20149)

The version of js-jquery installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-20149 advisory. - ctorName in index.js in kind-of v6.0.2 allows external user input to overwrite certain internal attribute...

7.5CVSS6.9AI score0.02278EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/09/12 12:0 a.m.22 views

CBL Mariner 2.0 Security Update: js-jquery (CVE-2019-20149)

The version of js-jquery installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2019-20149 advisory. - ctorName in index.js in kind-of v6.0.2 allows external user input to overwrite certain internal attribute...

7.5CVSS6.9AI score0.02278EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2024/09/03 12:26 p.m.30 views

CVE-2019-20149 affecting package js-jquery for versions less than 3.5.0-4

CVE-2019-20149 affecting package js-jquery for versions less than 3.5.0-4. A patched version of the package is available...

7.5CVSS6.9AI score0.02278EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/08/15 10:17 a.m.36 views

CVE-2019-20149 affecting package js-jquery for versions less than 3.5.0-4

CVE-2019-20149 affecting package js-jquery for versions less than 3.5.0-4. A patched version of the package is available...

7.5CVSS6.9AI score0.02278EPSS
Exploits1
Circl
Circl
added 2024/03/18 3:46 p.m.7 views

CVE-2019-20149

creationtimestamp| type| source ---|---|--- 2024-03-18 15:46:29+00:00| seen| https://t.me/ctinow/210666 2026-02-20 13:38:22+00:00| seen| https://www.acn.gov.it/portale/w/aggiornamenti-di-sicurezza-prodotti-atlassian...

7.5CVSS8AI score0.02278EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/08/01 2:54 p.m.59 views

Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities

Summary IBM Cloud Pak for Security includes components with known vulnerabilities. These have been updated in the latest release and vulnerabilities have been addressed. Please follow the instructions in the Remediation/Fixes section below to update to the latest version of Cloud Pak for Security...

9.8CVSS9.6AI score0.06031EPSS
Exploits5Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/27 10:51 p.m.102 views

Security Bulletin: Medium/low severity vulnerabilities in libraries used by IBM Spectrum Discover (libraries of libraries)

Summary Vulnerabilities in libraries used by libraries in IBM Spectrum Discover allow to a remote attackers by conduct of methodes like phishing attacks,brute force attack or execution of arbitrary code to get sensitive information, denial service condition, and other problems. Vulnerability...

9.8CVSS7.6AI score0.0598EPSS
Exploits29Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/15 7:3 a.m.44 views

Security Bulletin: Open Source Security issues for NPS console.

Summary Fixed Open Source issues for listed CVEs for NPS console. Vulnerability Details CVEID: CVE-2018-19838 DESCRIPTION: LibSass is vulnerable to a denial of service, caused by a stack-based buffer overflow in the IMPLEMENTASTOPERATORS expansion in ast.cpp. By persuading a victim to open a...

9.8CVSS1AI score0.05213EPSS
Exploits13Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/08 6:37 a.m.64 views

Security Bulletin: OSS security Scan issues for Concerto installer.

Summary Fixed in IBM Netezza for Cloud Pak for Data 11.1.1.0 Vulnerability Details CVEID: CVE-2018-19838 DESCRIPTION: LibSass is vulnerable to a denial of service, caused by a stack-based buffer overflow in the IMPLEMENTASTOPERATORS expansion in ast.cpp. By persuading a victim to open a...

9.8CVSS1.2AI score0.05213EPSS
Exploits13Affected Software1
OSV
OSV
added 2019/12/30 7:15 p.m.9 views

AZL-44298 CVE-2019-20149 affecting package js-jquery for versions less than 3.5.0-4

ctorName in index.js in kind-of v6.0.2 allows external user input to overwrite certain internal attributes via a conflicting name, as demonstrated by 'constructor': 'name':'Symbol'. Hence, a crafted payload can overwrite this builtin attribute to manipulate the type detection result...

7.5CVSS7.2AI score0.02278EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/12/30 6:25 p.m.23 views

CVE-2019-20149

ctorName in index.js in kind-of v6.0.2 allows external user input to overwrite certain internal attributes via a conflicting name, as demonstrated by 'constructor': 'name':'Symbol'. Hence, a crafted payload can overwrite this builtin attribute to manipulate the type detection result...

7.3AI score0.02278EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2019/12/30 6:25 p.m.28 views

CVE-2019-20149

ctorName in index.js in kind-of v6.0.2 allows external user input to overwrite certain internal attributes via a conflicting name, as demonstrated by 'constructor': 'name':'Symbol'. Hence, a crafted payload can overwrite this builtin attribute to manipulate the type detection result...

7.5CVSS7AI score0.02278EPSS
Exploits1
Rows per page
Query Builder