Lucene search
K

17 matches found

OpenVAS
OpenVAS
added 2024/09/10 12:0 a.m.17 views

Fedora: Security Advisory (FEDORA-2023-5f984129b2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.03796EPSS
Exploits0References6
CBLMariner
CBLMariner
added 2024/04/17 10:2 p.m.33 views

CVE-2023-46129 affecting package telegraf for versions less than 1.29.4-1

CVE-2023-46129 affecting package telegraf for versions less than 1.29.4-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.7AI score0.00374EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/12/06 5:0 a.m.35 views

Important: Red Hat Security Advisory: Red Hat OpenShift distributed tracing 3.0.0 operator/operand containers

Red Hat OpenShift distributed tracing 3.0.0 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

7.5CVSS7.2AI score0.01364EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2023/11/29 12:0 a.m.16 views

Fedora: Security Advisory for golang-github-nats-io-streaming-server (FEDORA-2023-3a895ff65c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.03796EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/11/29 12:0 a.m.11 views

Fedora: Security Advisory for golang-github-nats-io-nkeys (FEDORA-2023-3a895ff65c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.03796EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/11/29 12:0 a.m.10 views

Fedora: Security Advisory for golang-github-nats-io-jwt-2 (FEDORA-2023-3a895ff65c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.03796EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/11/29 12:0 a.m.18 views

Fedora: Security Advisory for golang-github-nats-io-nkeys (FEDORA-2023-66966ae3d0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.03796EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/11/29 12:0 a.m.15 views

Fedora: Security Advisory for golang-github-nats-io (FEDORA-2023-66966ae3d0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.03796EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/11/29 12:0 a.m.21 views

Fedora: Security Advisory for nats-server (FEDORA-2023-66966ae3d0)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.03796EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/11/28 12:0 a.m.18 views

Fedora 39 : golang-github-nats-io / golang-github-nats-io-jwt-2 / etc (2023-3a895ff65c)

The remote Fedora 39 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-3a895ff65c advisory. Updated NATS stack for CVE-2023-39325 and CVE-2023-46129 Tenable has extracted the preceding description block directly from the Fedora security...

7.5CVSS7.1AI score0.03796EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/11/19 12:0 a.m.24 views

CBL Mariner 2.0 Security Update: telegraf (CVE-2023-46129)

The version of telegraf installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-46129 advisory. - NATS.io is a high performance open source pub-sub distributed communication technology, built for the clou...

7.5CVSS7.6AI score0.00374EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2023/11/17 11:23 p.m.21 views

CVE-2023-46129 affecting package telegraf for versions less than 1.27.4-1

CVE-2023-46129 affecting package telegraf for versions less than 1.27.4-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.7AI score0.00374EPSS
Exploits0
Chainguard
Chainguard
added 2023/10/31 12:15 a.m.182 views

CVE-2023-46129 vulnerabilities

Vulnerabilities for packages: nats, k3s, nats-server, minio...

7.5CVSS7AI score0.00374EPSS
Exploits0
Wolfi
Wolfi
added 2023/10/31 12:15 a.m.33 views

CVE-2023-46129 vulnerabilities

Vulnerabilities for packages: nats, k3s, nats-server, minio...

7.5CVSS7AI score0.00374EPSS
Exploits0
CVE
CVE
added 2023/10/30 11:47 p.m.424 views

CVE-2023-46129

CVE-2023-46129 describes a crypto bug in the nkeys library used by NATS. In nkeys versions 0.4.0–0.4.5 (aligned with NATS server 2.10.0–2.10.3), the xkeys encryption handling logic accidentally passed an array by value to an internal function that mutated the buffer to supply the encryption key. ...

7.5CVSS7.5AI score0.00374EPSS
Exploits0References4Affected Software2
Vulnrichment
Vulnrichment
added 2023/10/30 11:47 p.m.7 views

CVE-2023-46129 xkeys Seal encryption used fixed key for all encryption

NATS.io is a high performance open source pub-sub distributed communication technology, built for the cloud, on-premise, IoT, and edge computing. The cryptographic key handling library, nkeys, recently gained support for encryption, not just for signing/authentication. This is used in nats-server...

7.5CVSS7.6AI score0.00374EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/10/30 11:47 p.m.24 views

CVE-2023-46129 xkeys Seal encryption used fixed key for all encryption

NATS.io is a high performance open source pub-sub distributed communication technology, built for the cloud, on-premise, IoT, and edge computing. The cryptographic key handling library, nkeys, recently gained support for encryption, not just for signing/authentication. This is used in nats-server...

7.5CVSS7.7AI score0.00374EPSS
Exploits0References4
Rows per page
Query Builder