Lucene search
K

8752 matches found

Tenable Product Security Advisories
Tenable Product Security Advisories
added 2023/01/30 4:18 p.m.17 views

[R1] Tenable Plugin Feed ID #202212212055 Fixes Privilege Escalation Vulnerability

R1 Tenable Plugin Feed ID 202212212055 Fixes Privilege Escalation Vulnerability Arnie Cabral Mon, 01/30/2023 - 11:18 As part of our Security Development Lifecycle, a potential privilege escalation issue was identified internally. This could allow a malicious actor with sufficient permissions to...

3.4AI score
Exploits0
Code423n4
Code423n4
added 2023/01/30 12:0 a.m.11 views

Wrong modifier

Lines of code Vulnerability details Impact H-01 The modifier that is declared in RabbitHoleReceipt.sol and RabbitHoleTickets.sol files has no impact and has not protection to methods that is used for. This modifier is used in 3 functions. Having no check would mean that this modifier will always ...

6.8AI score
Exploits0
OpenVAS
OpenVAS
added 2023/01/30 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2023:0185-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7AI score0.57941EPSS
Exploits0References6
CNVD
CNVD
added 2023/01/29 12:0 a.m.6 views

Logic Flaw Vulnerability in Backend Management of E-House Real Estate System

Ltd. is a company whose business scope includes: Internet data services, network and information security software development, software and information technology services, software development, information technology consulting services, information processing and storage support services,...

6.6AI score
Exploits0
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2023:0164-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.5AI score0.02772EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2023:0166-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.3AI score0.00657EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/01/26 9:9 p.m.60 views

Moderate: Red Hat Security Advisory: java-1.8.0-openjdk security and bug fix update

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.3CVSS6.8AI score0.01357EPSS
Exploits0References6
Microsoft Secure
Microsoft Secure
added 2023/01/26 5:0 p.m.35 views

Introducing kernel sanitizers on Microsoft platforms

As part of Microsoft’s commitment to continuously raise security baselines, we have been introducing innovations to the foundation of the chip-to-cloud security outlined in the Windows 11 Security Book. Strong foundational security enables us to build defenses from the ground up and develop...

0.2AI score
Exploits0
OSV
OSV
added 2023/01/26 3:49 p.m.61 views

RLSA-2023:0210 Moderate: java-1.8.0-openjdk security and bug fix update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: improper restrictions in CORBA deserialization Serialization, 8285021 CVE-2023-21830 OpenJDK: soundbank URL remote loading Sound, 8293742...

5.3CVSS6AI score0.01357EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2023/01/26 2:21 p.m.29 views

Is Once-Yearly Pen Testing Enough for Your Organization?

Any organization that handles sensitive data must be diligent in its security efforts, which include regular pen testing. Even a small data breach can result in significant damage to an organization's reputation and bottom line. There are two main reasons why regular pen testing is necessary for...

6AI score
Exploits0
The Hacker News
The Hacker News
added 2023/01/26 2:21 p.m.3 views

Is Once-Yearly Pen Testing Enough for Your Organization?

Any organization that handles sensitive data must be diligent in its security efforts, which include regular pen testing. Even a small data breach can result in significant damage to an organization's reputation and bottom line. There are two main reasons why regular pen testing is necessary for...

6AI score
Exploits0
Kitploit
Kitploit
added 2023/01/26 11:30 a.m.46 views

GUAC - Aggregates Software Security Metadata Into A High Fidelity Graph Database

Note: GUAC is under active development - if you are interested in contributing, please look at contributor guide and the "express interest" issue Graph for Understanding Artifact Composition GUAC aggregates software security metadata into a high fidelity graph database—normalizing entity identiti...

7.5AI score
Exploits0References13
AlmaLinux
AlmaLinux
added 2023/01/26 12:0 a.m.39 views

Moderate: java-1.8.0-openjdk security and bug fix update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: improper restrictions in CORBA deserialization Serialization, 8285021 CVE-2023-21830 OpenJDK: soundbank URL remote loading Sound, 8293742...

5.3CVSS6.2AI score0.01357EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2023/01/26 12:0 a.m.41 views

Moderate: java-1.8.0-openjdk security and bug fix update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: improper restrictions in CORBA deserialization Serialization, 8285021 CVE-2023-21830 OpenJDK: soundbank URL remote loading Sound, 8293742...

5.3CVSS6.2AI score0.01357EPSS
Exploits0References6
OSV
OSV
added 2023/01/26 12:0 a.m.43 views

ALSA-2023:0210 Moderate: java-1.8.0-openjdk security and bug fix update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: OpenJDK: improper restrictions in CORBA deserialization Serialization, 8285021 CVE-2023-21830 OpenJDK: soundbank URL remote loading Sound, 8293742...

5.3CVSS6AI score0.01357EPSS
Exploits0References6
Fedora
Fedora
added 2023/01/25 2:38 a.m.29 views

[SECURITY] Fedora 36 Update: tor-0.4.7.13-1.fc36

The Tor network is a group of volunteer-operated servers that allows people to improve their privacy and security on the Internet. Tor's users employ this network by connecting through a series of virtual tunnels rather than making a direct connection, thus allowing both organizations and...

6.5CVSS6.6AI score0.00832EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2023/01/24 12:0 a.m.6 views

PT-2023-12640 · Google +1 · Android +1

Name of the Vulnerable Software and Affected Versions: Android SoC versions prior to DDK 1.18 Description: The PowerVR GPU kernel driver has a flaw in its cache subsystem, specifically with the "Information Page" that can be written to by user-space programs prior to DDK 1.18, leading to memory...

5.5CVSS5.4AI score0.00115EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2023/01/23 2:30 p.m.29 views

gcc-toolset-12-gcc bug fix update

An update is available for gcc-toolset-12-gcc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list GCC Toolset 12 is a compiler toolset that provides recent versions...

2.2AI score
Exploits0
RedHat Linux
RedHat Linux
added 2023/01/23 10:4 a.m.4 views

OpenJDK: soundbank URL remote loading (Sound, 8293742)

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Sound. Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf, 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Difficult to exploi...

3.7CVSS7.3AI score0.01357EPSS
Exploits0References4
OSV
OSV
added 2023/01/23 8:27 a.m.55 views

RLSA-2023:0194 Moderate: java-17-openjdk security and bug fix update

The java-17-openjdk packages provide the OpenJDK 17 Java Runtime Environment and the OpenJDK 17 Java Software Development Kit. Security Fixes: OpenJDK: handshake DoS attack against DTLS connections JSSE, 8287411 CVE-2023-21835 OpenJDK: soundbank URL remote loading Sound, 8293742 CVE-2023-21843 Fo...

5.3CVSS6AI score0.01836EPSS
Exploits0References5
Rows per page
Query Builder