Lucene search
+L

9 matches found

Chainguard
Chainguard
added 2026/02/10 7:17 p.m.25 views

CVE-2023-31582 vulnerabilities

Vulnerabilities for packages: hadoop-fips...

7.5CVSS5.4AI score0.00644EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/07/09 12:0 a.m.34 views

Security Updates for Azure CycleCloud (July 2024)

The Azure CycleCloud product is missing security updates. It is, therefore, affected by an elevation of privilege vulnerability. The attacker who successfully exploited this vulnerability could elevate privileges to the SuperUser role in the affected Azure CycleCloud instance. To exploit this...

8.8CVSS7.4AI score0.46836EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2024/02/17 12:0 a.m.39 views

SUSE SLES15: cobbler / grafana-formula / inter-server-sync / jose4j / etc (SUSE-SU-2024:0485-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0485-1 advisory. cobbler: - Build the appendline correctly for RHEL-family = 8 - Do not strip if SUSE Linux Enterprise 15 SP3 - Build at least with with Go = 1....

7.5CVSS6.9AI score0.00644EPSS
Exploits0References51
RedHat Linux
RedHat Linux
added 2023/12/06 11:30 p.m.91 views

Important: Red Hat Security Advisory: Red Hat AMQ Streams 2.6.0 release and security update

Red Hat AMQ Streams 2.6.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.7AI score0.05972EPSS
Exploits1References13
RedhatCVE
RedhatCVE
added 2023/10/26 6:27 p.m.97 views

CVE-2023-31582

A flaw was found in Jose4J which allows a malicious user or internal person to erroneously set a low iteration count of 1000 or less to secure the Json Web Token. This could apply to lack of entropy and leave the system less secure. Mitigation No mitigation is currently available for this flaw...

6.8CVSS6.6AI score0.00644EPSS
Exploits0References5
OSV
OSV
added 2023/10/25 6:17 p.m.21 views

CVE-2023-31582

jose4j before v0.9.3 allows attackers to set a low iteration count of 1000 or less...

7.5CVSS7AI score
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/10/25 12:0 a.m.45 views

CVE-2023-31582

jose4j before v0.9.3 allows attackers to set a low iteration count of 1000 or less...

7.5CVSS6.9AI score0.00644EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/10/24 12:0 a.m.19 views

CVE-2023-31582

jose4j before v0.9.3 allows attackers to set a low iteration count of 1000 or less...

6.6AI score0.00644EPSS
Exploits0References2
CVE
CVE
added 2023/10/24 12:0 a.m.142 views

CVE-2023-31582

CVE-2023-31582 is covered by a connected document that provides concrete technical details. TheJose4J library (affected component) versions before 0.9.3 are vulnerable to setting a very low iteration count (1000 or less) in cryptographic operations. The linked IBM/ADX bulletin notes the vulnerabi...

7.5CVSS7.3AI score0.00644EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder