Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 9 : ipa-4.10.2-5.el9_3.ML.1 (AXSA:2024-7393:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-7393:01 advisory. ipa: Invalid CSRF protection CVE-2023-5455 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

6.5CVSS7.9AI score0.0057EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 2: ipa (TSSA-2024:0010)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0010 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

6.5CVSS6.7AI score0.0057EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2023-5455

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Cross-site request forgery vulnerability exists in ipa/session/loginpassword in all supported versions of IPA. This flaw allows an attacker to trick the user...

6.5CVSS6.7AI score0.0057EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/09/10 12:0 a.m.9 views

Fedora: Security Advisory (FEDORA-2024-4a8d4aedcb)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.0057EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/03/05 12:0 a.m.22 views

CentOS: Security Advisory for ipa-client (CESA-2024:0145)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.6AI score0.0057EPSS
Exploits0References2
Amazon
Amazon
added 2024/02/19 12:0 a.m.37 views

Medium: ipa

Issue Overview: A Cross-site request forgery vulnerability exists in ipa/session/loginpassword in all supported versions of IPA. This flaw allows an attacker to trick the user into submitting a request that could perform actions as the user, resulting in a loss of confidentiality and system...

6.5CVSS6.3AI score0.0057EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/02/19 12:0 a.m.25 views

Amazon Linux 2 : ipa (ALAS-2024-2457)

It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2457 advisory. A Cross-site request forgery vulnerability exists in ipa/session/loginpassword in all supported versions of IPA. This flaw allows an attacker to trick the user into submitting a request that could perform...

6.5CVSS6.7AI score0.0057EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2024/01/26 12:0 a.m.19 views

Fedora: Security Advisory (FEDORA-2024-9ab2666594)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.0057EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/01/25 12:0 a.m.19 views

Fedora 39 : freeipa (2024-9ab2666594)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-9ab2666594 advisory. Security update for CVE-2023-5455 Release notes: https://www.freeipa.org/release-notes/4-11-1.html Tenable has extracted the preceding description block...

6.5CVSS6.7AI score0.0057EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/01/15 3:53 p.m.53 views

Moderate: Red Hat Security Advisory: krb5 security update

An update for krb5 is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

9CVSS6.7AI score0.13794EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/01/13 12:0 a.m.37 views

Oracle Linux 8 : idm:DL1 (ELSA-2024-0143)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0143 advisory. - Resolves: 2242828 Invalid CSRF protection CVE-2023-5455 ipa-healthcheck opendnssec python-jwcrypto python-kdcproxy Tenable has extracted the precedin...

9CVSS6.8AI score0.13794EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2024/01/12 7:57 p.m.40 views

idm:DL1 security update

An update is available for module.python-qrcode, custodia, opendnssec, module.opendnssec, ipa-healthcheck, python-yubico, module.pyusb, module.softhsm, softhsm, module.python-yubico, module.slapi-nis, module.ipa-healthcheck, python-qrcode, module.custodia, pyusb, module.python-kdcproxy,...

9CVSS7AI score0.13794EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/01/12 12:0 a.m.48 views

Rocky Linux 8 : idm:DL1 (RLSA-2024:0143)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:0143 advisory. - A security feature bypass vulnerability exists in the way Key Distribution Center KDC determines if a service ticket can be used for delegation via...

9CVSS6.9AI score0.13794EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/01/12 12:0 a.m.25 views

AlmaLinux 9 : ipa (ALSA-2024:0141)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:0141 advisory. - A Cross-site request forgery vulnerability exists in ipa/session/loginpassword in all supported versions of IPA. This flaw allows an attacker to trick the user...

6.5CVSS6.7AI score0.0057EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/01/11 12:0 a.m.33 views

Oracle Linux 9 : ipa (ELSA-2024-0141)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-0141 advisory. 4.10.2-5.0.1 - Resolves: 2242828 Invalid CSRF protection CVE-2023-5455 Tenable has extracted the preceding description block directly from the Oracle Linux...

6.5CVSS6.7AI score0.0057EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/01/10 1:48 p.m.39 views

Moderate: Red Hat Security Advisory: ipa security update

An update for ipa is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5CVSS6.7AI score0.0057EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/01/10 1:34 p.m.45 views

Moderate: Red Hat Security Advisory: ipa security update

An update for ipa is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5CVSS6.7AI score0.0057EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/01/10 1:30 p.m.36 views

Moderate: Red Hat Security Advisory: ipa security update

An update for ipa is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

6.5CVSS6.7AI score0.0057EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/01/10 1:17 p.m.31 views

Moderate: Red Hat Security Advisory: idm:DL1 security update

An update for the idm:DL1 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9CVSS6.7AI score0.13794EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2024/01/10 12:33 p.m.39 views

CVE-2023-5455

A Cross-site request forgery vulnerability exists in ipa/session/loginpassword in all supported versions of IPA. This flaw allows an attacker to trick the user into submitting a request that could perform actions as the user, resulting in a loss of confidentiality and system integrity. During...

6.5CVSS6.5AI score0.0057EPSS
Exploits0
Rows per page
Query Builder