Lucene search
K

4420 matches found

ICS
ICS
added 2023/09/05 10:0 a.m.3 views

Festo MSE6-C2M/D2M/E2M

SUMMARY Incomplete user documentation of undocumented, authenticated test mode and further remote accessible functions. The supported features may be covered only partly by the corresponding user documentation. Festo developed the products according to the respective state of the art. As a...

8.8CVSS6.4AI score0.00504EPSS
Exploits0References12
Circl
Circl
added 2023/09/04 4:16 p.m.6 views

CVE-2023-4284

creationtimestamp| type| source ---|---|--- 2023-09-04 16:16:40+00:00| seen| https://t.me/cibsecurity/69793 2025-03-19 21:02:04+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lkr3emgrld2s...

6.1CVSS7.1AI score0.00709EPSS
Exploits1References2
OSV
OSV
added 2023/08/31 4:54 p.m.41 views

RLSA-2023:3847 Moderate: kernel security, bug fix, and enhancement update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: tls: race condition in dotlsgetsockopt may lead to use-after-free or NULL pointer dereference CVE-2023-28466 For more details about the security issues, including the impact, a CVSS score...

7CVSS7.5AI score0.00273EPSS
Exploits0References2
Fedora
Fedora
added 2023/08/31 1:20 a.m.15 views

[SECURITY] Fedora 37 Update: python3.10-3.10.13-1.fc37

Python 3.10 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.10 package provides the "python3.10" executable:...

7.4AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/08/30 2:14 a.m.1 views

SUSE CVE-2023-40590

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS6.9AI score0.00465EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2023/08/29 11:33 p.m.56 views

GitPython untrusted search path on Windows systems leading to arbitrary code execution

Summary When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment see big warning in https://docs.python.org/3/library/subprocess.htmlpopen-constructor. GitPython defaults to use the git command, if a user runs GitPython from a repo has a...

7.8CVSS7.1AI score0.00465EPSS
Exploits1References9Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/08/29 9:37 a.m.55 views

Security Bulletin: IBM Event Streams is vulnerable to denial of service attacks due to snappy-java (CVE-2023-34453, CVE-2023-34455, CVE-2023-34454)

Summary IBM Event Streams is affected by snappy-java vulnerabilities CVE-2023-34453, CVE-2023-34455, CVE-2023-34454 Vulnerability Details CVEID:CVE-2023-34453 DESCRIPTION: snappy-java is vulnerable to a denial of service, caused by an integer overflow in the shuffle function. By sending a special...

7.5CVSS7.1AI score0.01762EPSS
Exploits2Affected Software1
NVD
NVD
added 2023/08/28 6:15 p.m.12 views

CVE-2023-40590

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS7.6AI score0.00465EPSS
Exploits1References2
Prion
Prion
added 2023/08/28 6:15 p.m.15 views

Design/Logic Flaw

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

4.4CVSS7.5AI score0.00465EPSS
Exploits1References2Affected Software1
PyPA
PyPA
added 2023/08/28 6:15 p.m.6 views

PYSEC-2023-161

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS7.6AI score0.00465EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/08/28 6:15 p.m.5 views

PYSEC-2023-161

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS7.1AI score0.00465EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/08/28 5:24 p.m.16 views

CVE-2023-40590 Untrusted search path on Windows systems leading to arbitrary code execution

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS6.6AI score0.00465EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2023/08/28 5:24 p.m.33 views

CVE-2023-40590

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS7.4AI score0.00465EPSS
Exploits1
OSV
OSV
added 2023/08/28 5:24 p.m.16 views

CVE-2023-40590 Untrusted search path on Windows systems leading to arbitrary code execution

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS7.5AI score0.00465EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/08/28 12:0 a.m.5 views

PT-2023-5203 · Apache · Apache Airflow Hdfs Provider

Name of the Vulnerable Software and Affected Versions: Apache Airflow HDFS Provider versions prior to 4.1.1 Description: The issue is related to the Apache Airflow HDFS Provider, where a documentation error pointed users to an incorrect pip package. This package name was unclaimed, potentially...

7.8CVSS7.4AI score0.0046EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2023/08/28 12:0 a.m.3 views

PT-2023-4751 · Gitpython +1 · Gitpython +1

Name of the Vulnerable Software and Affected Versions: GitPython affected versions not specified Description: The issue is related to how Python interacts with Windows systems, specifically when resolving a program. GitPython defaults to use the git command, and if a user runs it from a repositor...

8.6CVSS6.1AI score0.01012EPSS
Exploits2References33
IBM Security Bulletins
IBM Security Bulletins
added 2023/08/25 10:19 a.m.184 views

Security Bulletin: IBM App Connect Enterprise Certified Container operands are vulnerable to denial of service due to [CVE-2023-26115]

Summary Node.js word-wrap is used internally by IBM App Connect Enterprise Certified Container. IBM App Connect Enterprise Certified Container operands are vulnerable to denial of service. This bulletin provides patch information to address the reported vulnerability in Node.js word-wrap...

7.5CVSS7.1AI score0.01709EPSS
Exploits1Affected Software1
Positive Technologies
Positive Technologies
added 2023/08/25 12:0 a.m.1 views

PT-2023-29467 · Undefined · Undefined

‼ CVE-2023-4524 ‼ REJECT CVE reject in favor of CVE-2023-40547 📖 Read via "National Vulnerability Database"...

8.3CVSS6.8AI score0.04852EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/08/24 3:11 p.m.14 views

Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands are vulnerable to loss of confidentiality due to [CVE-2023-26268]

Summary Apache CouchDB is used by IBM App Connect Enterprise Certified Container for storing flows and data used by the DesignerAuthroing operand. IBM App Connect Enterprise Certified Container DesignerAuthoring operands are vulnerable to loss of confidentiality. This bulletin provides patch...

5.3CVSS4.9AI score0.01429EPSS
Exploits0Affected Software1
Veeam
Veeam
added 2023/08/24 12:0 a.m.52 views

How to Remove Servers From Veeam Backup & Replication Console Launcher

Purpose This article documents the procedure for removing previously used backup server entries from the Veeam Backup & Replication Console Launcher. Solution Veeam Backup & Replication Console settings are stored per user in the file:...

6.7AI score
Exploits0Affected Software1
Rows per page
Query Builder