Lucene search
K

116 matches found

OSV
OSV
added 2023/10/05 10:15 p.m.5 views

CVE-2023-44213

Sensitive information disclosure due to excessive collection of system information. The following products are affected: Acronis Cyber Protect Cloud Agent Windows before build 35739, Acronis Cyber Protect 16 Windows before build 37391...

5.5CVSS5.8AI score0.0017EPSS
Exploits0References1
CVE
CVE
added 2023/09/26 7:34 a.m.49 views

CVE-2023-5192

Affected software: pimcore/demo (prior to 10.3.0). Vulnerability: excessive data query operations in a large data table, with an additional risk from GraphQL introspection exposure on the demo site (demo.pimcore.fun). Root cause: not explicitly detailed beyond the symptom (excessive queries) and ...

6.5CVSS6.2AI score0.00783EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/26 12:0 a.m.11 views

PT-2023-31900 · Pimcore · Pimcore

Name of the Vulnerable Software and Affected Versions: pimcore/demo versions prior to 10.3.0 Description: The issue concerns excessive data query operations in a large data table. Additionally, introspection is enabled on the demo site demo.pimcore.fun, which allows users to run introspection...

6.5CVSS6AI score0.00783EPSS
Exploits1References8
OSV
OSV
added 2023/08/31 6:15 p.m.5 views

CVE-2023-41745

Sensitive information disclosure due to excessive collection of system information. The following products are affected: Acronis Agent Linux, macOS, Windows before build 30991, Acronis Cyber Protect 15 Linux, macOS, Windows before build 35979...

5.5CVSS5.8AI score0.00188EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/31 12:0 a.m.6 views

PT-2023-5316 · Acronis · Acronis Agent +2

Name of the Vulnerable Software and Affected Versions: Acronis Agent versions prior to build 32047 Acronis Cyber Protect 15 versions prior to build 35979 Description: The issue is related to the excessive collection of system information, which may lead to the disclosure of sensitive information...

7.8CVSS4.5AI score0.00366EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2023/06/22 12:0 a.m.8 views

The vulnerability of IBM TXSeries software for multiplatforms, including IBM CICS TX Standard and IBM CICS TX Advanced application servers, allows attackers to gain unauthorized access to confidential information.

The vulnerability of IBM TXSeries software for multiplatforms, including IBM CICS TX Standard and IBM CICS TX Advanced, is related to excessive data output by the application. Exploiting this vulnerability can allow a malicious actor to gain unauthorized access to confidential information from a...

6.1CVSS6.6AI score0.00795EPSS
Exploits0References5Affected Software3
Imperva Blog
Imperva Blog
added 2023/04/25 1:4 p.m.26 views

Imperva Unveils Latest API Security Enhancements

Imperva is continuing to evolve its API Security offering to help customers better protect their APIs, wherever they are, and to meet changing market requirements. Since launching API Security in March 2022, we continued investing in our API Security offering with the goal of simplifying the...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/01/09 12:0 a.m.43 views

EulerOS 2.0 SP9 : kernel (EulerOS-SA-2023-1102)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : There is an infoleak vulnerability in the Linux kernel's net/bluetooth/l2capcore.c's l2capparseconfreq function which can be used to leak kernel...

7.8CVSS4.8AI score0.02211EPSS
Exploits3References11
Veracode
Veracode
added 2022/12/06 12:17 p.m.38 views

Denial Of Service (DoS)

linux is vulnerable to denial of service DoS attacks. The affected function intrcallback of the file drivers/net/usb/r8152.c of the component BPF leads to logging of excessive data...

5.3CVSS6.3AI score0.02211EPSS
Exploits0References5Affected Software2
Amazon
Amazon
added 2022/12/06 12:0 a.m.45 views

Important: kernel

Issue Overview: In v4l2m2mquerybuf of v4l2-mem2mem.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Andro...

7.8CVSS5AI score0.02211EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2022/10/21 7:0 a.m.1 views

Linux Kernel BPF r8152.c intr_callback logging of excessive data

...

5.3CVSS7.1AI score0.02211EPSS
Exploits0
CNVD
CNVD
added 2022/10/20 12:0 a.m.54 views

Unspecified vulnerability in Linux kernel (CNVD-2022-70572)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from a security vulnerability that originates from an affected function intrcallback in file drivers/net/usb/r8152.c, which results in logging of too much...

5.3CVSS6.3AI score0.02211EPSS
Exploits0References1
OSV
OSV
added 2022/10/18 8:15 p.m.7 views

CVE-2022-3594

A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function intrcallback of the file drivers/net/usb/r8152.c of the component BPF. The manipulation leads to logging of excessive data. The attack can be launched remotely. It is...

5.3CVSS8.1AI score
Exploits0References4
NVD
NVD
added 2022/10/18 8:15 p.m.20 views

CVE-2022-3594

A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function intrcallback of the file drivers/net/usb/r8152.c of the component BPF. The manipulation leads to logging of excessive data. The attack can be launched remotely. It is...

5.3CVSS0.02211EPSS
Exploits0References4
Prion
Prion
added 2022/10/18 8:15 p.m.18 views

Design/Logic Flaw

A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function intrcallback of the file drivers/net/usb/r8152.c of the component BPF. The manipulation leads to logging of excessive data. The attack can be launched remotely. It is...

5CVSS6AI score0.02211EPSS
Exploits0References4Affected Software2
Debian CVE
Debian CVE
added 2022/10/18 12:0 a.m.40 views

CVE-2022-3594

A vulnerability was found in Linux Kernel. It has been declared as problematic. Affected by this vulnerability is the function intrcallback of the file drivers/net/usb/r8152.c of the component BPF. The manipulation leads to logging of excessive data. The attack can be launched remotely. It is...

5.3CVSS5.9AI score0.02211EPSS
Exploits0
NVD
NVD
added 2022/08/22 3:15 p.m.22 views

CVE-2022-34775

Tabit - Excessive data exposure. Another endpoint mapped by the tiny url, was one for reservation cancellation, containing the MongoDB ID of the reservation, and organization. This can be used to query the http://tgm-api.tabit.cloud/rsv/management/reservationId?organization=orgId API which return...

7.5CVSS0.00398EPSS
Exploits0References1
Prion
Prion
added 2022/08/22 3:15 p.m.30 views

Authentication flaw

Tabit - Excessive data exposure. Another endpoint mapped by the tiny url, was one for reservation cancellation, containing the MongoDB ID of the reservation, and organization. This can be used to query the http://tgm-api.tabit.cloud/rsv/management/reservationId?organization=orgId API which return...

5CVSS7.4AI score0.00398EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/08/22 2:42 p.m.29 views

CVE-2022-34775 Tabit - Excessive data exposure

Tabit - Excessive data exposure. Another endpoint mapped by the tiny url, was one for reservation cancellation, containing the MongoDB ID of the reservation, and organization. This can be used to query the http://tgm-api.tabit.cloud/rsv/management/reservationId?organization=orgId API which return...

6.3CVSS7.6AI score0.00398EPSS
Exploits0References1
CVE
CVE
added 2022/08/22 2:42 p.m.344 views

CVE-2022-34775

Tabit vulnerability (CVE-2022-34775) involves excessive data exposure via an API endpoint used for reservation cancellation. The endpoint query http://tgm-api.tabit.cloud/rsv/management/{reservationId}?organization={orgId} can return sensitive reservation data (name, email, phone, visit history, ...

7.5CVSS6.7AI score0.00398EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder