Lucene search
K

6 matches found

CNVD
CNVD
added 2026/03/19 12:0 a.m.4 views

Apache Airflow Information Disclosure Vulnerability (CNVD-2026-15156)

Apache Airflow is the United States Apache Apache Foundation's set of open source platform with the creation, management and monitoring of workflow functions. The platform is scalable and dynamic monitoring and other features. Apache Airflow has an information disclosure vulnerability that stems...

7.5CVSS5.9AI score0.00677EPSS
Exploits0References1
NVD
NVD
added 2025/10/30 10:15 p.m.17 views

CVE-2024-13999

Nagios XI versions prior to 2024R1.1.3, under certain circumstances, disclose the server's Active Directory AD or LDAP authentication token to an authenticated user. Exposure of the server’s AD/LDAP token could allow domain-wide authentication misuse, escalation of privileges, or further compromi...

9.8CVSS0.01794EPSS
Exploits0References3
CVE
CVE
added 2025/10/30 9:28 p.m.14 views

CVE-2024-13999

Nagios XI prior to 2024R1.1.3 is affected. Under certain circumstances, the server discloses its AD/LDAP authentication token to an authenticated user. This token exposure could enable domain-wide authentication misuse, privilege escalation, or further compromise of network-integrated systems. Af...

9.8CVSS6.7AI score0.01794EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/30 9:28 p.m.4 views

CVE-2024-13999 Nagios XI < 2024R1.1.3 AD/LDAP Token Authenticated Information Disclosure

Nagios XI versions prior to 2024R1.1.3, under certain circumstances, disclose the server's Active Directory AD or LDAP authentication token to an authenticated user. Exposure of the server’s AD/LDAP token could allow domain-wide authentication misuse, escalation of privileges, or further compromi...

7.3CVSS6.7AI score0.01794EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2023/11/28 12:34 p.m.43 views

Design Flaw in Google Workspace Could Let Attackers Gain Unauthorized Access

Cybersecurity researchers have detailed a "severe design flaw" in Google Workspace's domain-wide delegation DWD feature that could be exploited by threat actors to facilitate privilege escalation and obtain unauthorized access to Workspace APIs without super admin privileges. "Such exploitation...

7.3AI score
Exploits0
HackRead
HackRead
added 2021/11/16 4:44 p.m.21 views

ProxyShell vulnerabilities exploited in domain-wide ransomware attacks

By Deeba Ahmed The ProxyShell vulnerabilities have prompted threat actors to launch domain-wide ransomware attacks against their targets. This is a post from HackRead.com Read the original post: ProxyShell vulnerabilities exploited in domain-wide ransomware attacks...

7.1AI score
Exploits0
Rows per page
Query Builder