Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2023/10/16 12:0 a.m.32 views

Ubuntu 16.04 ESM / 18.04 ESM : aria2 vulnerability (USN-4869-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has a package installed that is affected by a vulnerability as referenced in the USN-4869-1 advisory. It was discovered that aria2 could accidentally leak authentication data. An attacker could possibly use this to gain access to sensitive information...

7.8CVSS7.4AI score0.00351EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:17 a.m.6 views

SUSE CVE-2019-3500

aria2c in aria2 1.33.1, when --log is used, can store an HTTP Basic Authentication username and password in a file, which might allow local users to obtain sensitive information by reading this file...

7.8CVSS7.2AI score0.00351EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2021/08/11 12:0 a.m.16 views

openSUSE: Security Advisory for aria2 (openSUSE-SU-2021:1125-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.7AI score0.00351EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/08/11 12:0 a.m.25 views

openSUSE 15 Security Update : aria2 (openSUSE-SU-2021:1125-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:1125-1 advisory. - aria2c in aria2 1.33.1, when --log is used, can store an HTTP Basic Authentication username and password in a file, which might allow local users ...

7.8CVSS7.2AI score0.00351EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2019/04/29 12:0 a.m.20 views

Fedora Update for aria2 FEDORA-2019-8b8c774b84

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.7AI score0.00351EPSS
Exploits1References2
OSV
OSV
added 2019/04/04 2:56 p.m.3 views

OPENSUSE-SU-2019:0050-1 Security update for aria2

This update for aria2 fixes the following security issue: - CVE-2019-3500: Metadata and potential password leaks via --log= boo1120488...

7.8CVSS7.7AI score0.00351EPSS
Exploits1References3
Debian
Debian
added 2019/01/22 7:43 a.m.265 views

[SECURITY] [DLA 1636-1] aria2 security update

Package : aria2 Version : 1.18.8-1+deb8u1 CVE ID : CVE-2019-3500 Debian Bug : 918058 It was discovered that aria2 the lightweight command-line download utility can store passed user credentials in a log file when using the --log option. This might allow local users to obtain sensitive information...

7.8CVSS7.3AI score0.00351EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2019/01/14 12:0 a.m.46 views

openSUSE Security Update : aria2 (openSUSE-2019-50)

This update for aria2 fixes the following security issue : - CVE-2019-3500: Metadata and potential password leaks via --log= boo1120488 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

7.8CVSS7.8AI score0.00351EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2019/01/14 12:0 a.m.22 views

openSUSE: Security Advisory for aria2 (openSUSE-SU-2019:0050-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.7AI score0.00351EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2019/01/13 12:0 a.m.202 views

Security update for aria2 (moderate)

openSUSE Security Update: Security update for aria2 Announcement ID: openSUSE-SU-2019:0050-1 Rating: moderate References: 1120488 Cross-References: CVE-2019-3500 Affected Products: openSUSE Leap 42.3 openSUSE Leap 15.0 openSUSE Backports SLE-15 An update that fixes one vulnerability is now...

7.8CVSS7.7AI score0.00351EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/01/02 7:0 a.m.27 views

CVE-2019-3500

aria2c in aria2 1.33.1, when --log is used, can store an HTTP Basic Authentication username and password in a file, which might allow local users to obtain sensitive information by reading this file...

7.3AI score0.00351EPSS
Exploits1References7
CVE
CVE
added 2019/01/02 7:0 a.m.246 views

CVE-2019-3500

CVE-2019-3500 affects the download utility aria2 : when using --log, credentials (HTTP Basic username/password) can be written to a local log file, potentially exposing them to local users. The issue is tied to how aria2 handles logging rather than network flow, with vendor advisories and patch l...

7.8CVSS7.1AI score0.00351EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder