Lucene search
K

13 matches found

OpenVAS
OpenVAS
added 2023/02/08 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-5847-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.4AI score0.02285EPSS
Exploits3References2
OSV
OSV
added 2022/11/11 11:4 a.m.3 views

OESA-2022-2048 nodejs-grunt security update

Grunt is the JavaScript task runner. Why use a task runner? In one word: automation. The less work you have to do when performing repetitive tasks like minification, compilation, unit testing, linting, etc, the easier your job becomes. After you've configured it, a task runner can do most of that...

7.1CVSS7.3AI score0.02285EPSS
Exploits1References2
vulnersOsv
vulnersOsv
added 2021/05/06 6:27 p.m.4 views

3d-preview (>=1.0.0 <=1.0.1), 3dviewercomponent (=1.0.0) +2601 more potentially affected by CVE-2020-7729 via grunt (>=0.2.14 <=1.2.1)

grunt NPM version =0.2.14, =1.0.0, =0.0.2, =1.0.1, =1.0.0, =0.0.1, =1.0.0-alpha1, =0.1.0, =0.4.0, =0.0.9, =0.0.6, =0.12.0-edge9, =0.0.5, =0.0.2, =1.0.1 and more Source cves: CVE-2020-7729 Source advisory: OSV:GHSA-M5PJ-VJJF-4M3H...

7.1CVSS7.1AI score0.02285EPSS
Exploits1
OpenVAS
OpenVAS
added 2020/10/21 12:0 a.m.17 views

Ubuntu: Security Advisory (USN-4595-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.4AI score0.02285EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2020/10/20 8:49 p.m.74 views

USN-4595-1: Grunt vulnerability

It was discovered that Grunt did not properly load yaml files. An attacker could possibly use this to execute arbitrary code. CVE-2020-7729...

7.1CVSS7.8AI score0.02285EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/10/20 12:0 a.m.31 views

Ubuntu 18.04 LTS : Grunt vulnerability (USN-4595-1)

The remote Ubuntu 18.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-4595-1 advisory. It was discovered that Grunt did not properly load yaml files. An attacker could possibly use this to execute arbitrary code. CVE-2020-7729 Tenable has extracted...

7.1CVSS7.8AI score0.02285EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/09/10 12:0 a.m.17 views

Debian: Security Advisory (DLA-2368-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.1AI score0.02285EPSS
Exploits1References3
NVD
NVD
added 2020/09/03 9:15 a.m.13 views

CVE-2020-7729

The package grunt before 1.3.0 are vulnerable to Arbitrary Code Execution due to the default usage of the function load instead of its secure replacement safeLoad of the package js-yaml inside grunt.file.readYAML...

7.1CVSS7.1AI score0.02285EPSS
Exploits1References6
OSV
OSV
added 2020/09/03 9:15 a.m.5 views

AZL-44379 CVE-2020-7729 affecting package js-jquery 3.5.0-4

The package grunt before 1.3.0 are vulnerable to Arbitrary Code Execution due to the default usage of the function load instead of its secure replacement safeLoad of the package js-yaml inside grunt.file.readYAML...

7.1CVSS7.2AI score0.02285EPSS
Exploits1References1
OSV
OSV
added 2020/09/03 9:15 a.m.2 views

DEBIAN-CVE-2020-7729

The package grunt before 1.3.0 are vulnerable to Arbitrary Code Execution due to the default usage of the function load instead of its secure replacement safeLoad of the package js-yaml inside grunt.file.readYAML...

7.1CVSS7.4AI score0.02285EPSS
Exploits1References1
CVE
CVE
added 2020/09/03 9:0 a.m.102 views

CVE-2020-7729

Summary: CVE-2020-7729 affects the grunt package due to insecure YAML loading via js-yaml in grunt.file.readYAML, allowing arbitrary code execution. The issue is triggered by using load() instead of safeLoad(). The vulnerability is discussed across multiple sources, including npm advisory, Ubuntu...

7.1CVSS6.9AI score0.02285EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2020/09/03 9:0 a.m.38 views

CVE-2020-7729 Arbitrary Code Execution

The package grunt before 1.3.0 are vulnerable to Arbitrary Code Execution due to the default usage of the function load instead of its secure replacement safeLoad of the package js-yaml inside grunt.file.readYAML...

7.1CVSS7.1AI score0.02285EPSS
Exploits1References6
Debian CVE
Debian CVE
added 2020/09/03 9:0 a.m.28 views

CVE-2020-7729

The package grunt before 1.3.0 are vulnerable to Arbitrary Code Execution due to the default usage of the function load instead of its secure replacement safeLoad of the package js-yaml inside grunt.file.readYAML...

7.1CVSS7.5AI score0.02285EPSS
Exploits1
Rows per page
Query Builder