Lucene search
K

24 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/26 12:0 a.m.8 views

GitLab 11.7 < 18.3.5 / 18.4 < 18.4.3 / 18.5 < 18.5.1 (CVE-2025-11974)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Gitlab reports: Improper access control issue in runner API impacts GitLab EE Denial of service issue in event collection impacts GitLab CE/EE Denial of service issue in JSON validation impacts GitLab...

6.5CVSS5.5AI score0.00351EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.3 views

PT-2025-43134

Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 17.10 through 18.3.4 GitLab CE/EE versions 18.4 through 18.4.2 GitLab CE/EE versions 18.5 through 18.5.0 Description An issue in GitLab CE/EE could allow an unauthenticated attacker to cause a denial of service condition ...

7.8CVSS6.7AI score0.00588EPSS
Exploits0References16
FreeBSD
FreeBSD
added 2025/10/22 12:0 a.m.7 views

Gitlab -- vulnerabilities

Gitlab reports: Improper access control issue in runner API impacts GitLab EE Denial of service issue in event collection impacts GitLab CE/EE Denial of service issue in JSON validation impacts GitLab CE/EE Denial of service issue in upload impacts GitLab CE/EE Incorrect Authorization issue in...

8.8CVSS7.1AI score0.00773EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/07/14 12:0 a.m.6 views

The vulnerability of the Setup and Boot Event Collection function in Microsoft Windows systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Setup and Boot Event Collection function in Microsoft Windows systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

9CVSS6.3AI score0.01154EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/02/19 12:0 a.m.5 views

The vulnerability of the IBM QRadar SIEM system, related to the transmission of critical information in plaintext, allows a perpetrator to execute a “man-in-the-middle” type attack.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the transmission of critical information in plaintext. Exploiting this vulnerability could allow a malicious actor to execute a “man-in-the-middle” type attack...

6.5CVSS5.6AI score0.00151EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/08/01 12:0 a.m.9 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to the disclosure of protected information, allows attackers to gain unauthorized access to confidential data.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the disclosure of protected information. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

6.8CVSS5.5AI score0.00435EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/01/23 12:0 a.m.3 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis lies in the lack of protection for operational data, which allows attackers to exploit this weakness to disclose protected information.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the lack of protection for operational data. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

6.1CVSS5.6AI score0.00534EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/12/22 12:0 a.m.3 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to insufficient protection of operational data, allows attackers to gain unauthorized access to protected information.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficient protection for operational data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

4.6CVSS6.6AI score0.00733EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/09/19 12:0 a.m.5 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to the use of cryptographic algorithms containing defects, allows attackers to bypass the cryptographic mechanisms used for encryption protection.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow a malicious actor to bypass the cryptographic security measures...

7.8CVSS7.3AI score0.00388EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/09/19 12:0 a.m.3 views

The vulnerability of IBM QRadar SIEM’s event collection and analysis system stems from insufficient validation of input data, allowing attackers to carry out administrative actions.

The vulnerability of IBM QRadar SIEM’s event collection and analysis system exists due to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to carry out administrative actions...

4.3CVSS6.4AI score0.00444EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/09/19 12:0 a.m.6 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to the disclosure of protected information, allows attackers to gain unauthorized access to protected information.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the disclosure of protected information. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

6.8CVSS6.4AI score0.00632EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/12/20 12:0 a.m.4 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to insufficiently secure data encryption, allows attackers to gain unauthorized access to protected information.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficiently secure data encryption. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

7.8CVSS6.5AI score0.00665EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/12/20 12:0 a.m.4 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to authentication procedures that allow unauthorized access by attackers to protected information.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

5.9CVSS6.2AI score0.01198EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/12/20 12:0 a.m.4 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to insufficient validation of incoming requests, allows a perpetrator to carry out an SSRF attack.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficient checking of incoming requests. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute an SSRF attack by sending specially crafted requests...

5.5CVSS5.9AI score0.00616EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/12/16 12:0 a.m.4 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis, related to insufficient validation of incoming requests, allows a perpetrator to carry out an SSRF attack.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficient checking of incoming requests. Exploiting this vulnerability could allow a malicious actor, operating remotely, to execute an SSRF attack by sending specially crafted requests...

5.5CVSS5.9AI score0.00488EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/03/30 12:0 a.m.4 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis lies in insufficient validation of requests on the server side. This allows attackers to send unauthorized requests and disclose sensitive information that should be protected.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to insufficient validation of requests on the server side. Exploiting this vulnerability allows a malicious actor to send unauthorized requests and disclose protected information...

5.5CVSS5.8AI score0.00541EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2019/08/02 12:0 a.m.6 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis lies in the lack of protection for operational data, allowing attackers to disclose the protected information.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the lack of protection for operational data. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

5.3CVSS5.5AI score0.01759EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2018/12/27 12:0 a.m.4 views

The vulnerability of the IBM QRadar SIEM system for event collection and analysis arises from the failure to implement measures to neutralize script-related tags. This allows attackers to disclose protected information.

The vulnerability of the IBM QRadar SIEM event collection and analysis system is related to the failure to implement measures to neutralize script-related tags. Exploiting this vulnerability can allow a malicious actor to disclose protected information...

5.5CVSS5.9AI score0.0066EPSS
Exploits0References2
Kitploit
Kitploit
added 2015/01/22 12:47 a.m.19 views

Sysmon v2.0 - System Activity Monitor for Windows

System Monitor Sysmon is a Windows system service and device driver that, once installed on a system, remains resident across system reboots to monitor and log system activity to the Windows event log. It provides detailed information about process creations, network connections, and changes to...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2013/06/24 12:0 a.m.33 views

Alienvault Open Source SIEM (OSSIM) 4.1 - Multiple SQL Injection Vulnerabilities

Title: Alienvault OSSIM Open Source SIEM 4.1 Multiple SQL Vulnerabilities Date: February 15, 2013 Author: Glafkos Charalambous Vendor: AlienVault Vendor URL: http://www.alienvault.com Reported: February 17, 2013 Timeline: --------- 17 Feb 2013: Vulnerability Reported to AlienVault 19 Feb 2013:...

7.4AI score
Exploits0
Rows per page
Query Builder