Lucene search
+L

84 matches found

HashiCorp Security Advisories
HashiCorp Security Advisories
added 2021/07/15 11:29 p.m.6 views

Consul’s Application-Aware Intentions Deny Action Fails Open When Combined With Default Deny Policy

Summary A vulnerability was identified in Consul and Consul Enterprise “Consul” such that using defaultpolicy = "deny" with a single L7 application-aware intention deny action cancels out, causing the intention to incorrectly fail open, allowing L4 traffic. This vulnerability, CVE-2021-36213,...

7.5CVSS6.5AI score0.0174EPSS
Exploits0Affected Software1
NVD
NVD
added 2020/10/15 10:15 a.m.24 views

CVE-2020-7326

Improperly implemented security check in McAfee Active Response MAR prior to 2.4.4 may allow local administrators to execute malicious code via stopping a core Windows service leaving McAfee core trust component in an inconsistent state resulting in MAR failing open rather than closed...

6.7CVSS0.00372EPSS
Exploits0References1
NVD
NVD
added 2018/11/27 1:29 p.m.17 views

CVE-2018-17953

A incorrect variable in a SUSE specific patch for pamaccess rule matching in PAM 1.3.0 in openSUSE Leap 15.0 and SUSE Linux Enterprise 15 could lead to pamaccess rules not being applied fail open...

9.3CVSS7.6AI score0.01342EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2018/11/27 1:0 p.m.38 views

CVE-2018-17953

A incorrect variable in a SUSE specific patch for pamaccess rule matching in PAM 1.3.0 in openSUSE Leap 15.0 and SUSE Linux Enterprise 15 could lead to pamaccess rules not being applied fail open...

9.3CVSS7.6AI score0.01342EPSS
Exploits0
Cvelist
Cvelist
added 2018/11/27 1:0 p.m.19 views

CVE-2018-17953 pam_access does not handle netmask matches correctly

A incorrect variable in a SUSE specific patch for pamaccess rule matching in PAM 1.3.0 in openSUSE Leap 15.0 and SUSE Linux Enterprise 15 could lead to pamaccess rules not being applied fail open...

7.5CVSS7.9AI score0.01342EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2018/11/22 1:19 p.m.17 views

CVE-2018-17953

A incorrect variable in a SUSE specific patch for pamaccess rule matching in PAM 1.3.0 in openSUSE Leap 15.0 and SUSE Linux Enterprise 15 could lead to pamaccess rules not being applied fail open...

9.3CVSS2AI score0.01342EPSS
Exploits0References2
NVD
NVD
added 2017/09/07 9:29 p.m.17 views

CVE-2017-12213

A vulnerability in the dynamic access control list ACL feature of Cisco IOS XE Software running on Cisco Catalyst 4000 Series Switches could allow an unauthenticated, adjacent attacker to cause dynamic ACL assignment to fail and the port to fail open. This could allow the attacker to pass traffic...

4.3CVSS4.9AI score0.00785EPSS
Exploits0References3
rapid7community
rapid7community
added 2017/05/17 5:0 p.m.35 views

R7-2016-23, R7-2016-26, R7-2016-27: Multiple Home Security Vulnerabilities

Executive Summary In October of 2016, former Rapid7 researcher Phil Bosco discovered a number of relatively low-risk vulnerabilities and issues involving home security systems that are common throughout the United States, and which have significant WiFi or Ethernet capabilities. The three systems...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/08/12 12:0 a.m.22 views

FreeBSD : FreeBSD -- Incorrect error handling in PAM policy parser (6e8f9003-6007-11e6-a6c3-14dae9d210b8)

The OpenPAM library searches for policy definitions in several locations. While doing so, the absence of a policy file is a soft failure handled by searching in the next location while the presence of an invalid file is a hard failure handled by returning an error to the caller. The policy parser...

9.8CVSS7.3AI score0.02698EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/11/23 12:0 a.m.23 views

Juniper Networks Junos OS Fail-Open Unauthenticated Root Access Vulnerability

Junos OS is prone to a unauthenticated root access vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:juniper:junos";...

6.9CVSS5.2AI score0.0035EPSS
Exploits0References1
n0where
n0where
added 2015/10/22 9:5 p.m.18 views

Deliberately Insecure Web Application: OWASP WebGoat

WebGoat is a deliberately insecure web application maintained by OWASP designed to teach web application security lessons. You can install and practice with WebGoat in either J2EE or WebGoat for .Net in ASP.NET. In each lesson, users must demonstrate their understanding of a security issue by...

7.5AI score
Exploits0References3
securityvulns
securityvulns
added 2015/08/24 12:0 a.m.54 views

ESA-2015-132: EMC Documentum D2 Fail Open Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2015-132: EMC Documentum D2 Fail Open Vulnerability EMC Identifier: ESA-2015-132 CVE Identifier: CVE-2015-4537 Severity Rating: CVSS v2 Base Score: 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C Affected products: • EMC Documentum D2 4.2 and earlier Summary: EMC...

3.5CVSS0.5AI score0.01207EPSS
Exploits0
FreeBSD
FreeBSD
added 2014/06/03 12:0 a.m.27 views

FreeBSD -- Incorrect error handling in PAM policy parser

Problem Description: The OpenPAM library searches for policy definitions in several locations. While doing so, the absence of a policy file is a soft failure handled by searching in the next location while the presence of an invalid file is a hard failure handled by returning an error to the...

9.8CVSS9.2AI score0.02698EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/11/25 12:0 a.m.19 views

RSA Authentication Agent for IIS Authentication Bypass Vulnerability

RSA Authentication Agent for IIS is prone to an authentication bypass vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS6.9AI score0.0228EPSS
Exploits0References5
securityvulns
securityvulns
added 2013/10/28 12:0 a.m.58 views

ESA-2013-067: RSA® Authentication Agent for Web for Internet Information Services (IIS) Security Controls Bypass Vulnerability

ESA-2013-067.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-067: RSA® Authentication Agent for Web for Internet Information Services IIS Security Controls Bypass Vulnerability EMC Identifier: ESA-2013-067 CVE Identifier: CVE-2013-3280 Severity Rating: CVSS v2 Base Score: 9.0...

7.5CVSS0.2AI score0.0228EPSS
Exploits0
NVD
NVD
added 2013/10/25 3:52 a.m.15 views

CVE-2013-3280

EMC RSA Authentication Agent 7.1.x before 7.1.2 for Web for Internet Information Services has a fail-open design, which allows remote attackers to bypass intended access restrictions via vectors that trigger an agent crash...

7.5CVSS6.6AI score0.0228EPSS
Exploits0References1
Prion
Prion
added 2013/10/25 3:52 a.m.15 views

Design/Logic Flaw

EMC RSA Authentication Agent 7.1.x before 7.1.2 for Web for Internet Information Services has a fail-open design, which allows remote attackers to bypass intended access restrictions via vectors that trigger an agent crash...

7.5CVSS7.2AI score0.0228EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2013/10/25 1:0 a.m.55 views

CVE-2013-3280

CVE-2013-3280 concerns the RSA Authentication Agent for Web for IIS (RSA Authentication Agent for IIS) in the 7.1.x line (pre-7.1.2). The vulnerability stems from a fail-open design that can allow an attacker to bypass access controls by triggering an agent crash, potentially leaving protected re...

7.5CVSS6.8AI score0.0228EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2000/10/13 4:0 a.m.48 views

CVE-2000-0478

Norton Antivirus for Exchange (NavExchange) can enter a fail-open state, causing antivirus checks to fail and allowing viruses to pass through the server. The vulnerability, CVE-2000-0478, is documented across CVE/NVD records with a MEDIUM base score on CVSS v2 (AV:N/AC:L/Au:N/C:N/I:P/A:N). The c...

5CVSS6.9AI score0.02005EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2000/10/13 4:0 a.m.20 views

CVE-2000-0478

In some cases, Norton Antivirus for Exchange NavExchange enters a "fail-open" state which allows viruses to pass through the server...

6.5AI score0.02005EPSS
Exploits1References4
Rows per page
Query Builder