Lucene search
K

4419 matches found

NVD
NVD
added 2020/07/07 3:15 p.m.23 views

CVE-2019-4323

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."...

4.3CVSS0.0075EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/07/07 2:49 p.m.20 views

CVE-2019-4323

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."...

4.6AI score0.0075EPSS
Exploits0References2
CVE
CVE
added 2020/07/07 2:49 p.m.40 views

CVE-2019-4323

CVE-2019-4323 concerns HCL AppScan Enterprise’s advisory API documentation being vulnerable to clickjacking. The CNVD entry specifies that AppScan Enterprise 10.0.0 and earlier versions are affected and that an attacker could inject content from untrustworthy pages by framing the advisory API doc...

4.3CVSS4.5AI score0.0075EPSS
Exploits0References2Affected Software1
Kitploit
Kitploit
added 2020/07/07 12:30 p.m.80 views

Airshare - Cross-platform Content Sharing In A Local Network

Airshare is a Python-based CLI tool and module that lets you transfer data between two machines in a local network, P2P, using Multicast-DNS. It also opens an HTTP gateway for other non-CLI external interfaces. It works completely offline! Built with aiohttp and zeroconf. Checkout the demo...

7.3AI score
Exploits0References3
RedHat Linux
RedHat Linux
added 2020/07/07 10:30 a.m.97 views

Low: Red Hat Security Advisory: gettext security update

An update for gettext is now available for Red Hat Enterprise Linux 7.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.6AI score0.04293EPSS
Exploits1References2
Circl
Circl
added 2020/07/04 3:40 p.m.8 views

CVE-2020-13381

creationtimestamp| type| source ---|---|--- 2020-07-04 15:40:00+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/opensischainexec.rb 2025-02-06 03:13:44+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:10:23+00:00| seen|...

9.8CVSS9.2AI score0.59028EPSS
Exploits6References1
Fedora
Fedora
added 2020/07/04 1:14 a.m.42 views

[SECURITY] Fedora 32 Update: python-pillow-7.0.0-4.fc32

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt , devel developme...

8.1CVSS1.4AI score0.02514EPSS
Exploits0
OSV
OSV
added 2020/07/01 12:0 a.m.13 views

OSV-2020-671 Heap-use-after-free in WelsDec::SetUnRef

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=18743 Crash type: Heap-use-after-free WRITE 1 Crash state: WelsDec::SetUnRef WelsDec::SlidingWindow WelsDec::WelsMarkAsRef...

7.2AI score
Exploits0References1
OSV
OSV
added 2020/06/30 4:33 p.m.16 views

GHSA-F6PC-CRHH-CP96 Privilege escalation in Presto

Affected This affects Presto server installations. This does NOT affect clients such as the CLI or JDBC driver. Impact Authenticated users can bypass authorization checks by directly accessing internal APIs. This impacts Presto server installations with secure internal communication configured...

7.4CVSS8.8AI score0.01058EPSS
Exploits0References5
Atlassian
Atlassian
added 2020/06/25 4:59 a.m.378 views

Upgrade Apache Tomcat 8.5.50 - version affected by CVE-2020-9484

h3. Issue Summary The recently disclosed vulnerability regarding Tomcat|https://nvd.nist.gov/vuln/detail/CVE-2020-9484 affects the following versions: Apache Tomcat 7x 7.0.103 Apache Tomcat 8x 8.5.54 Apache Tomcat 9x 9.0.34 Apache Tomcat 10x 10.0.0-M4 We should bundle a more recent version of...

7CVSS2.9AI score0.56636EPSS
Exploits15Affected Software1
Atlassian
Atlassian
added 2020/06/25 4:59 a.m.128 views

Upgrade Apache Tomcat 8.5.50 - version affected by CVE-2020-9484

h3. Issue Summary The recently disclosed vulnerability regarding Tomcat|https://nvd.nist.gov/vuln/detail/CVE-2020-9484 affects the following versions: Apache Tomcat 7x 7.0.103 Apache Tomcat 8x 8.5.54 Apache Tomcat 9x 9.0.34 Apache Tomcat 10x 10.0.0-M4 We should bundle a more recent version of...

7CVSS7.1AI score0.56636EPSS
Exploits15
Kitploit
Kitploit
added 2020/06/23 9:30 p.m.64 views

InQL - A Burp Extension For GraphQL Security Testing

A security testing tool to facilitate GraphQL technology security auditing efforts. InQL can be used as a stand-alone script or as a Burp Suite extension. InQL Stand-Alone CLI Running inql from Python will issue an Introspection query to the target GraphQL endpoint in order fetch metadata...

7.2AI score
Exploits0References3
Kitploit
Kitploit
added 2020/06/19 9:30 p.m.43 views

OSS-Fuzz - Continuous Fuzzing Of Open Source Software

Fuzz testing is a well-known technique for uncovering programming errors in software. Many of these detectable errors, like buffer overflow, can have serious security implications. Google has found thousands of security vulnerabilities and stability bugs by deploying guided in-process fuzzing of...

7.9AI score
Exploits0References5
OSV
OSV
added 2020/06/19 2:11 p.m.9 views

SUSE-SU-2020:14400-1 Security update for bind

This update for bind fixes the following issues: - CVE-2020-8616: Fixed the insufficient limit on the number of fetches performed when processing referrals bsc1171740. - CVE-2020-8617: Fixed a logic error in code which checks TSIG validity bsc1171740. - CVE-2018-5741: Fixed the documentation...

8.6CVSS7.5AI score0.93422EPSS
Exploits6References10
Oracle linux
Oracle linux
added 2020/06/18 12:0 a.m.88 views

Unbreakable Enterprise kernel security update

4.14.35-1902.303.5.3 - rds: Deregister all FRWR mr with freemr Hans Westgaard Ry Orabug: 31476202 - Revert rds: Do not cancel RDMAs that have been posted to the HCA Gerd Rausch Orabug: 31475329 - Revert rds: Introduce rdsconntopath helper Gerd Rausch Orabug: 31475329 - Revert rds: Three cancel...

5.5CVSS0.5AI score0.0054EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/06/17 12:0 a.m.37 views

SUSE SLED15 / SLES15 Security Update : qemu (SUSE-SU-2020:1502-1)

This update for qemu fixes the following issues : Security issue fixed : CVE-2020-1983: Fixed a use-after-free in the ipreass function of slirp bsc1170940. Non-security issues fixed : Fixed an issue where limiting the memory bandwidth was not possible bsc1167816. Fixed the issue that s390x could...

7.5CVSS6.8AI score0.02293EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2020/06/17 12:0 a.m.40 views

SUSE SLES12 Security Update : qemu (SUSE-SU-2020:1501-1)

This update for qemu fixes the following issues : Security issues fixed : CVE-2020-1983: Fixed a use-after-free in the ipreass function of slirp bsc1170940. CVE-2019-20382: Fixed a potential DoS due to a memory leak in VNC disconnect bsc1165776. CVE-2020-1711: Fixed a potential OOB access in the...

7.8CVSS6.4AI score0.04018EPSS
Exploits1References19
Talos Blog
Talos Blog
added 2020/06/15 11:49 a.m.12 views

Updates to Snort setup guides

Our documentation on Snort 3 running on CentOS and the Snort Rules Writing guide to Snort 3. Thanks to community member Yaser for providing the updates. The Snort 3 guide now has expanded information on logging options — such as syslog and JSON. There is also a new performance optimization sectio...

1.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2020/06/11 12:0 a.m.9 views

PT-2022-2876

Name of the Vulnerable Software and Affected Versions Apache Tomcat versions 10.1.0-M1 through 10.1.0-M14 Apache Tomcat versions 10.0.0-M1 through 10.0.20 Apache Tomcat versions 9.0.13 through 9.0.62 Apache Tomcat versions 8.5.38 through 8.5.78 Description The issue is related to the...

10CVSS8.1AI score0.99999EPSS
Exploits225References460
OSV
OSV
added 2020/06/10 11:59 p.m.10 views

MGASA-2020-0255 Updated perl packages fix security vulnerability

This update from 5.28.2 to 5.28.3 fixes bugs several bugs the RPM package manager. - Update to 5.23.3 See https://metacpan.org/pod/release/XSAWYERX/perl-5.28.3/pod/perldelta.pod for release notes - Security release fixes CVE-2020-10543, CVE-2020-10878 and CVE-2020-12723 - Work around a glibc bug ...

8.6CVSS8.4AI score0.11334EPSS
Exploits0References2
Rows per page
Query Builder