Lucene search
K

2324 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:49 p.m.7 views

Malicious code in aws_s3-deploy (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:49 p.m.5 views

Malicious code in aws-blue_green_deploy (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:49 p.m.4 views

Malicious code in auto_deploy-test (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:48 p.m.7 views

Malicious code in api-deploy (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
OSV
OSV
added 2024/06/25 1:48 p.m.7 views

MAL-2024-6621 Malicious code in api-deploy (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:48 p.m.6 views

Malicious code in amoeba-deploy_tools (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 1:47 p.m.6 views

Malicious code in aem_deploy (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
OSV
OSV
added 2024/06/25 1:47 p.m.4 views

MAL-2024-6526 Malicious code in aem_deploy (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0References1
OSV
OSV
added 2024/06/25 12:56 p.m.5 views

MAL-2024-2871 Malicious code in pino-deploy (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 12:56 p.m.4 views

Malicious code in pino-deploy (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0References1
OSV
OSV
added 2024/06/15 12:0 a.m.9 views

OPENSUSE-SU-2024:10213-1 ceph-deploy-1.5.34+git.1470736983.963ba71-1.1 on GA media

These are all security issues fixed in the ceph-deploy-1.5.34+git.1470736983.963ba71-1.1 package on the GA media of openSUSE Tumbleweed...

2.1CVSS6.3AI score0.00383EPSS
Exploits0References1
OSV
OSV
added 2024/06/04 12:15 p.m.5 views

CVE-2024-4254

The 'deploy-website.yml' workflow in the gradio-app/gradio repository, specifically in the 'main' branch, is vulnerable to secrets exfiltration due to improper authorization. The vulnerability arises from the workflow's explicit checkout and execution of code from a fork, which is unsafe as it...

7.1CVSS5.9AI score0.0047EPSS
Exploits1References1
CNVD
CNVD
added 2024/05/30 12:0 a.m.7 views

IBM UrbanCode Deploy Cross-Site Scripting Vulnerability (CNVD-2024-26496)

IBM UrbanCode Deploy UCD is a set of application automation deployment tools from International Business Machines IBM. The tool is based on an application deployment automation management information model, and through remote agent technology, to realize the complex application in different...

5.4CVSS6.2AI score0.00276EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/20 2:44 p.m.34 views

Security Bulletin: IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) is affected by a Denial of Service Vulnerability in Netty (CVE-2024-29025)

Summary Netty is vulnerable to a denial of service, caused by a flaw when using the HttpPostRequestDecoder to decode a form. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition. Vulnerability Details CVEID:CVE-2024-2902...

5.3CVSS5.6AI score0.0138EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/20 2:44 p.m.31 views

Security Bulletin:  IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) is affected by a Denial of Service Vulnerability in Nimbus-JOSE-JWT (CVE-2023-52428)

Summary Connect2id Nimbus-JOSE-JWT is used by IBM DevOps Deploy / IBM UrbanCode Deploy UCD as part of the openid authentication options. Connect2id Nimbus-JOSE-JWT is vulnerable to a denial of service, caused by improper validation of user requests by the PasswordBasedDecrypter PBKDF2 component. ...

7.5CVSS9.3AI score0.00814EPSS
Exploits0Affected Software1
NVD
NVD
added 2024/05/17 11:15 p.m.17 views

CVE-2024-23583

An attacker could potentially intercept credentials via the task manager and perform unauthorized access to the Client Deploy Tool on Windows systems...

6.7CVSS6.5AI score0.00157EPSS
Exploits0References1
OSV
OSV
added 2024/05/17 11:15 p.m.4 views

CVE-2024-23583

An attacker could potentially intercept credentials via the task manager and perform unauthorized access to the Client Deploy Tool on Windows systems...

6.7CVSS5.8AI score0.00157EPSS
Exploits0References1
CVE
CVE
added 2024/05/17 11:6 p.m.59 views

CVE-2024-23583

CVE-2024-23583 affects HCL BigFix Platform, specifically the Windows Client Deploy Tool, with root cause described as insufficiently protected credentials. The vulnerability could allow an attacker to intercept credentials via Task Manager and gain unauthorized access to the Client Deploy Tool on...

6.7CVSS6.8AI score0.00157EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/05/17 11:6 p.m.30 views

CVE-2024-23583 HCL BigFix Platform is susceptible to insufficiently protected credentials

An attacker could potentially intercept credentials via the task manager and perform unauthorized access to the Client Deploy Tool on Windows systems...

6.7CVSS6.5AI score0.00157EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/05/17 12:0 a.m.6 views

PT-2024-19948

Name of the Vulnerable Software and Affected Versions Client Deploy Tool affected versions not specified Description An attacker could potentially intercept credentials via the task manager and perform unauthorized access to the Client Deploy Tool on Windows systems. Recommendations At the moment...

6.7CVSS6.5AI score0.00157EPSS
Exploits0References5
Rows per page
Query Builder