Lucene search
+L

6 matches found

Tenable Nessus
Tenable Nessus
added 2024/04/29 12:0 a.m.26 views

Fedora 37 : golang-github-docker / golang-github-graylog2-gelf (2023-6b9e2a6534)

The remote Fedora 37 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2023-6b9e2a6534 advisory. golang-github-graylog2-gelf-2.0.0-5.20201111git1550ee6.fc37 was not in F37 because was override with...

9.8CVSS8.2AI score0.44708EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/03/20 12:0 a.m.28 views

CBL Mariner 2.0 Security Update: rubygem-fluentd (CVE-2022-39379)

The version of rubygem-fluentd installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-39379 advisory. - Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, Saa...

9.8CVSS9.3AI score0.44708EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/01/11 12:0 a.m.17 views

Fedora: Security Advisory for golang-github-docker (FEDORA-2023-6b9e2a6534)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.7AI score0.44708EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2022/11/16 2:26 a.m.35 views

CVE-2022-39379 affecting package rubygem-fluentd for versions less than 1.14.6-2

CVE-2022-39379 affecting package rubygem-fluentd for versions less than 1.14.6-2. A patched version of the package is available...

9.8CVSS9.6AI score0.44708EPSS
Exploits0
CVE
CVE
added 2022/11/02 12:0 a.m.103 views

CVE-2022-39379

CVE-2022-39379 affects Fluentd when FLUENT_OJ_OPTION_MODE is set to object in non-default configurations. The vulnerability allows unauthenticated RCE via crafted JSON payloads; affected versions are those where FLUENT_OJ_OPTION_MODE was introduced in Fluentd 1.13.2 and prior to the patch. It was...

9.8CVSS7.6AI score0.44708EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/02 12:0 a.m.4 views

CVE-2022-39379 Fluentd vulnerable to remote code execution due to insecure deserialization (in non-default configuration)

Fluentd collects events from various data sources and writes them to files, RDBMS, NoSQL, IaaS, SaaS, Hadoop and so on. A remote code execution RCE vulnerability in non-default configurations of Fluentd allows unauthenticated attackers to execute arbitrary code via specially crafted JSON payloads...

3.1CVSS9.8AI score0.44708EPSS
Exploits0References3
Rows per page
Query Builder