Lucene search
K

4420 matches found

Cent OS
Cent OS
added 2020/10/20 6:48 p.m.412 views

python, tkinter security update

CentOS Errata and Security Advisory CESA-2020:3911 An update for python is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

6.1CVSS6.7AI score0.04653EPSS
Exploits1References7
Microsoft KB
Microsoft KB
added 2020/10/20 12:0 a.m.59 views

KB3072779 - SQL Server 2012 Service Pack 3 release information

KB3072779 - SQL Server 2012 Service Pack 3 release information This article contains important information that you should review before you install Microsoft SQL Server 2012 Service Pack 3 SP3. It describes how to obtain the service pack, the list of fixes that are included in the service pack,...

7.2AI score
Exploits0
Fedora
Fedora
added 2020/10/17 2:24 p.m.43 views

[SECURITY] Fedora 31 Update: kata-proxy-1.11.1-1.fc31.1

A proxy for the Kata Containers project The Kata Containers runtime creates a virtual machine VM to isolate a set of container workloads. The VM requires a guest kernel and a guest operating system "guest OS" to boot and create containers inside the guest environment. This package contains the...

8.8CVSS2.8AI score0.00475EPSS
Exploits0
NVD
NVD
added 2020/10/16 2:15 p.m.20 views

CVE-2020-14144

The git hook feature in Gitea 1.1.0 through 1.12.5 might allow for authenticated remote code execution in customer environments where the documentation was not understood e.g., one viewpoint is that the dangerousness of this feature should be documented immediately above the ENABLEGITHOOKS line i...

7.2CVSS0.93691EPSS
Exploits12References8
OSV
OSV
added 2020/10/16 2:15 p.m.20 views

CVE-2020-15867

The git hook feature in Gogs 0.5.5 through 0.12.2 allows for authenticated remote code execution. There can be a privilege escalation if access to this hook feature is granted to a user who does not have administrative privileges. NOTE: because this is mentioned in the documentation but not in th...

7.2CVSS7.7AI score
Exploits0References2
Prion
Prion
added 2020/10/16 2:15 p.m.30 views

Design/Logic Flaw

The git hook feature in Gitea 1.1.0 through 1.12.5 might allow for authenticated remote code execution in customer environments where the documentation was not understood e.g., one viewpoint is that the dangerousness of this feature should be documented immediately above the ENABLEGITHOOKS line i...

6.5CVSS7.2AI score0.93691EPSS
Exploits14References8Affected Software1
CVE
CVE
added 2020/10/16 1:2 p.m.209 views

CVE-2020-14144

Gitea CVE-2020-14144 (and related CVE-2021-28378 context) reveals authenticated remote code execution via the git hooks feature in Gitea versions 1.1.0–1.12.5. The core issue is that the post-receive hook can execute arbitrary code when a user with privilege triggers it, enabling RCE on the serve...

7.2CVSS7.2AI score0.93691EPSS
Exploits12References8Affected Software1
Cvelist
Cvelist
added 2020/10/16 1:2 p.m.34 views

CVE-2020-14144

The git hook feature in Gitea 1.1.0 through 1.12.5 might allow for authenticated remote code execution in customer environments where the documentation was not understood e.g., one viewpoint is that the dangerousness of this feature should be documented immediately above the ENABLEGITHOOKS line i...

7.3AI score0.93691EPSS
Exploits12References8
Openbugbounty
Openbugbounty
added 2020/10/16 2:5 a.m.23 views

library.rit.edu Cross Site Scripting vulnerability OBB-1412267

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Photon
Photon
added 2020/10/16 12:0 a.m.56 views

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0333

An update of 'linux', 'linux-esx' packages of Photon OS has been released...

4.6CVSS0.9AI score0.00418EPSS
Exploits1
Openbugbounty
Openbugbounty
added 2020/10/14 2:18 a.m.10 views

documentation.nokia.com Cross Site Scripting vulnerability OBB-1405990

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/10/08 12:0 a.m.18 views

Fedora 33 : 1:libuv (2020-8dd4252dbe)

2020.09.26, Version 1.40.0 Stable Changes since version 1.39.0 : - udp: add UVUDPMMSGFREE recvcb flag Ryan Liptak - include: re-map UVEPROTO from 4046 to -4046 YuMeiJie - doc: correct UVUDPMMSGFREE version added cjihrig - doc: add uvmetricsidletime version metadata Ryan Liptak - win,tty: pass...

5.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/10/07 12:0 a.m.14 views

Fedora 31 : 1:libuv (2020-bc0050aa3d)

2020.09.26, Version 1.40.0 Stable Changes since version 1.39.0 : - udp: add UVUDPMMSGFREE recvcb flag Ryan Liptak - include: re-map UVEPROTO from 4046 to -4046 YuMeiJie - doc: correct UVUDPMMSGFREE version added cjihrig - doc: add uvmetricsidletime version metadata Ryan Liptak - win,tty: pass...

5.6AI score
Exploits0References1
NVD
NVD
added 2020/10/06 1:15 p.m.16 views

CVE-1999-0199

manual/search.texi in the GNU C Library aka glibc before 2.2 lacks a statement about the unspecified tdelete return value upon deletion of a tree's root, which might allow attackers to access a dangling pointer in an application whose developer was unaware of a documentation update from 1999...

9.8CVSS0.02373EPSS
Exploits1References3
OSV
OSV
added 2020/10/06 1:15 p.m.5 views

CVE-1999-0199

manual/search.texi in the GNU C Library aka glibc before 2.2 lacks a statement about the unspecified tdelete return value upon deletion of a tree's root, which might allow attackers to access a dangling pointer in an application whose developer was unaware of a documentation update from 1999...

9.8CVSS6.9AI score
Exploits0References6
OSV
OSV
added 2020/10/06 1:15 p.m.4 views

DEBIAN-CVE-1999-0199

manual/search.texi in the GNU C Library aka glibc before 2.2 lacks a statement about the unspecified tdelete return value upon deletion of a tree's root, which might allow attackers to access a dangling pointer in an application whose developer was unaware of a documentation update from 1999...

9.8CVSS8.6AI score0.02373EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/10/06 12:49 p.m.23 views

CVE-1999-0199

manual/search.texi in the GNU C Library aka glibc before 2.2 lacks a statement about the unspecified tdelete return value upon deletion of a tree's root, which might allow attackers to access a dangling pointer in an application whose developer was unaware of a documentation update from 1999...

9.4AI score0.02373EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2020/10/06 12:49 p.m.31 views

CVE-1999-0199

manual/search.texi in the GNU C Library aka glibc before 2.2 lacks a statement about the unspecified tdelete return value upon deletion of a tree's root, which might allow attackers to access a dangling pointer in an application whose developer was unaware of a documentation update from 1999...

9.8CVSS9.4AI score0.02373EPSS
Exploits1
Kitploit
Kitploit
added 2020/10/03 8:30 p.m.87 views

Timewarrior - Commandline Time Reporting

Timewarrior is a time tracking utility that offers simple stopwatch features as well as sophisticated calendar-based backfill, along with flexible reporting. It is a portable, well supported and very active Open Source project. Installing From Package Thanks to the community, there are binary...

7.6AI score
Exploits0References2
OpenVAS
OpenVAS
added 2020/10/02 12:0 a.m.22 views

openSUSE: Security Advisory for go1.14 (openSUSE-SU-2020:1584-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.1CVSS6.8AI score0.03646EPSS
Exploits2References2
Rows per page
Query Builder