12 matches found
RHEL 8 : gjs (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - angular: XSS vulnerability CVE-2021-4231 - Hawk is an HTTP authentication scheme providing mechanisms for...
RHEL 9 : gjs (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - json5: Prototype Pollution in JSON5 via Parse Method CVE-2022-46175 Note that Nessus has not tested for this issue...
RHEL 8 : gjs (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - json5: Prototype Pollution in JSON5 via Parse Method CVE-2022-46175 Note that Nessus has not tested for this issue...
Moderate: Red Hat Security Advisory: Red Hat Ceph Storage 6.1 security and bug fix update
New packages for Red Hat Ceph Storage 6.1 are now available on Red Hat Enterprise Linux. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
RHEL 9 : Red Hat Ceph Storage 6.1 (RHSA-2023:3623)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3623 advisory. Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines the most stable version of the Ceph storage system...
Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.
Summary Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak. Angular is part of the .NET RHEL infrastructure CVE-2021-4231. Apache UIMA is used by IBM Robotic Process Automation as part of Watson NLP CVE-2022-32287. SnakeYaml is used by IBM Robotic Process...
@altenull/foret-ng (=1.0.0-0), @apipass/buttons (>=0.1.1 <=0.1.1-beta.10) +370 more potentially affected by CVE-2021-4231 via @angular/core (>=0.0.0-0 <=10.2.4)
@angular/core NPM version =0.0.0-0, =0.1.1, =0.1.1, =0.1.1, =0.1.1, =0.1.1, =0.0.0, =0.0.0, =0.0.0, =0.0.0, =0.0.2 - @clemanto/ng2-smart-table =1.7.3 and more Source cves: CVE-2021-4231 Source advisory: OSV:GHSA-C75V-2VQ8-878F...
CVE-2021-4231
creationtimestamp| type| source ---|---|--- 2022-05-26 18:14:10+00:00| seen| https://t.me/cibsecurity/43381...
CVE-2021-4231 vulnerabilities
Vulnerabilities for packages: solr...
CVE-2021-4231 vulnerabilities
Vulnerabilities for packages: solr...
CVE-2021-4231 Angular Comment cross site scripting
A vulnerability was found in Angular up to 11.0.4/11.1.0-next.2. It has been classified as problematic. Affected is the handling of comments. The manipulation leads to cross site scripting. It is possible to launch the attack remotely but it might require an authentication first. Upgrading to...
CVE-2021-4231
The CVE-2021-4231 entry corresponds to an Angular XSS vulnerability in the Angular versions up to 11.0.4 and 11.1.0-next.2, specifically affecting the handling of comments, where input could be crafted to execute script in a victim’s browser when rendering. The upstream patch fixes this by upgrad...