Lucene search
+L

17 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.17 views

Linux Distros Unpatched Vulnerability : CVE-2023-26115

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - All versions of the package word-wrap are vulnerable to Regular Expression Denial of Service ReDoS due to the usage of an insecure regular expression within the...

7.5CVSS6.2AI score0.01709EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.31 views

RHEL 6 : grafana (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - word-wrap: ReDoS CVE-2023-26115 Note that Nessus has not tested for this issue but has instead relied on the packag...

7.5CVSS8.2AI score0.01709EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/12/12 9:36 a.m.36 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.14.6 security and extras update

Red Hat OpenShift Container Platform release 4.14.6 is now available with updates to packages and images that fix several bugs. This release includes a security update for Red Hat OpenShift Container Platform 4.14. Red Hat Product Security has rated this update as having a security impact of...

7.5CVSS6.7AI score0.01709EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.36 views

Fedora 39 : magicmirror (2023-3a06c965b4)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-3a06c965b4 advisory. Automatic update for magicmirror-2.24.0-1.fc39. Changelog Sun Jul 9 2023 Davide Cavalca - 2.24.0-1 - Update to 2.24.0; Fixes: RHBZ2184597,...

7.5CVSS6.5AI score0.01709EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2023/10/31 12:54 p.m.55 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.14.0 bug fix and security update

Red Hat OpenShift Container Platform release 4.14.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.14. Red Hat Product Security has rated this update as having a...

9.8CVSS7AI score0.99999EPSS
Exploits29References1323
RedHat Linux
RedHat Linux
added 2023/10/05 1:3 a.m.51 views

Important: Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.0 security and bug fix update

The Migration Toolkit for Containers MTC 1.8.0 is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

7.5CVSS6.6AI score0.01709EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2023/09/28 2:59 a.m.75 views

Important: Red Hat Security Advisory: Network Observability 1.4.0 for OpenShift

Network Observability is an OpenShift operator that deploys a monitoring pipeline to collect and enrich network flows that are produced by the Network Observability eBPF agent. The operator provides dashboards, metrics, and keeps flows accessible in a queryable log store, Grafana Loki. When a...

7.5CVSS6.6AI score0.02761EPSS
Exploits2References18
IBM Security Bulletins
IBM Security Bulletins
added 2023/09/11 4:26 p.m.72 views

Security Bulletin: IBM App Connect Enterprise is vulnerable to a remote attack and a denial of service due to Node.js modules protobuf.js, vm2 and word-wrap [CVE-2023-36665, CVE-2023-37903, CVE-2023-37466 and CVE-2023-26115]

Summary IBM App Connect Enterprise is vulnerable to a remote attack and a denial of service due to Node.js modules protobuf.js, vm2 and word-wrap CVE-2023-36665, CVE-2023-37903, CVE-2023-37466 and CVE-2023-26115. The fix includes protobuf.js =7.2.4, word-wrap =1.2.5 and vm2 has been removed from...

10CVSS8.5AI score0.02925EPSS
Exploits7Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/08/25 10:19 a.m.186 views

Security Bulletin: IBM App Connect Enterprise Certified Container operands are vulnerable to denial of service due to [CVE-2023-26115]

Summary Node.js word-wrap is used internally by IBM App Connect Enterprise Certified Container. IBM App Connect Enterprise Certified Container operands are vulnerable to denial of service. This bulletin provides patch information to address the reported vulnerability in Node.js word-wrap...

7.5CVSS7.1AI score0.01709EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2023/07/12 5:58 p.m.32 views

Moderate: Red Hat Security Advisory: Logging Subsystem 5.7.3 - Red Hat OpenShift security update

An update is now available for Red Hat OpenShift Logging Subsystem 5.7.3 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.8CVSS6.6AI score0.02542EPSS
Exploits3References17
RedhatCVE
RedhatCVE
added 2023/06/23 5:47 a.m.65 views

CVE-2023-26115

A flaw was found in the Node.js word-wrap module, where it is vulnerable to a denial of service caused by a Regular expression denial of service ReDoS issue in the result variable. By sending a specially crafted regex input, a remote attacker can cause a denial of service...

7.5CVSS6.6AI score0.01709EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2023/06/22 6:30 a.m.5 views

@alexktzk/cz-customizable (>=1.0.0 <=1.1.0), @algolia/coquille (>=0.0.2 <=0.0.13) +1269 more potentially affected by CVE-2023-26115 via word-wrap (>=0.1.3 <=1.2.3)

word-wrap NPM version =0.1.3, =1.0.0, =0.0.2, =1.1.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =0.4.2, =0.0.0, =1.0.0, =0.1.0-preview, =0.1.0-preview, =6.0.0-alpha.16.20220105.1, =0.1.3, =0.1.17 and more Source cves: CVE-2023-26115 Source advisory: OSV:GHSA-J8XG-FQG3-53R7...

7.5CVSS6.7AI score0.01709EPSS
Exploits1
OSV
OSV
added 2023/06/22 5:15 a.m.12 views

AZL-44184 CVE-2023-26115 affecting package js-jquery 3.5.0-4

All versions of the package word-wrap are vulnerable to Regular Expression Denial of Service ReDoS due to the usage of an insecure regular expression within the result variable...

7.5CVSS6.8AI score0.01709EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/06/22 5:0 a.m.24 views

CVE-2023-26115

All versions of the package word-wrap are vulnerable to Regular Expression Denial of Service ReDoS due to the usage of an insecure regular expression within the result variable...

5.3CVSS7.1AI score0.01709EPSS
Exploits1References5
CVE
CVE
added 2023/06/22 5:0 a.m.298 views

CVE-2023-26115

CVE-2023-26115 affects the word-wrap package. The vulnerability is a Regular Expression Denial of Service (ReDoS) caused by an insecure regex in the result variable, affecting all versions. Public references cite a fix in word-wrap 1.2.4 (and releases tagged 1.2.4) with related discussion and a p...

7.5CVSS7.1AI score0.01709EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2023/06/22 5:0 a.m.39 views

CVE-2023-26115

All versions of the package word-wrap are vulnerable to Regular Expression Denial of Service ReDoS due to the usage of an insecure regular expression within the result variable...

5.3CVSS7AI score0.01709EPSS
Exploits1References7
Cvelist
Cvelist
added 2023/06/22 5:0 a.m.37 views

CVE-2023-26115

All versions of the package word-wrap are vulnerable to Regular Expression Denial of Service ReDoS due to the usage of an insecure regular expression within the result variable...

5.3CVSS7.6AI score0.01709EPSS
Exploits1References5
Rows per page
Query Builder