Lucene search
K

23 matches found

OSV
OSV
added 2022/11/29 11:55 p.m.24 views

GHSA-J2JP-WVQG-WC2G crewjam/saml vulnerable to signature bypass via multiple Assertion elements due to improper authentication

Impact The crewjam/saml go library is vulnerable to an authentication bypass when processing SAML responses containing multiple Assertion elements. Patches This issue has been corrected in version 0.4.9. Credit This issue was reported by Felix Wilhelm from Google Project Zero...

9.1CVSS7.9AI score0.02179EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2022/11/29 11:55 p.m.37 views

crewjam/saml vulnerable to signature bypass via multiple Assertion elements due to improper authentication

Impact The crewjam/saml go library is vulnerable to an authentication bypass when processing SAML responses containing multiple Assertion elements. Patches This issue has been corrected in version 0.4.9. Credit This issue was reported by Felix Wilhelm from Google Project Zero...

9.8CVSS9.2AI score0.02179EPSS
Exploits0References8Affected Software1
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-3586-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.20242EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2021/08/30 7:55 p.m.409 views

USN-5054-1: uWSGI vulnerability

Felix Wilhelm discovered a buffer overflow flaw in the modproxyuwsgi module. An attacker could use this vulnerability to provoke an information disclosure or potentially remote code execution...

9.8CVSS7.4AI score0.90039EPSS
Exploits2
Packet Storm
Packet Storm
added 2021/03/11 12:0 a.m.252 views

F5 Big IP TMM uri_normalize_host Information Disclosure / Out-Of-Bounds Write

F5 Big IP - TMM urinormalizehost infoleak and out-of-bounds write Big IP's Traffic Management Microkernels TMM URI normalization incorrectly handles invalid IPv6 hostnames: When urinormalizehost is called with a hostname of the form \u"abcdef\u", urinorminet6 is called with the substring abcdef a...

9.6AI score0.61064EPSS
Exploits3
GithubExploit
GithubExploit
added 2020/04/15 10:16 a.m.12 views

Exploit for Insufficiently Protected Credentials in Git

cve-2020-5260 A HTTP PoC Endpoint for cve-2020-5260 which can...

9.3CVSS7.1AI score0.10047EPSS
Exploits2
Mageia
Mageia
added 2019/11/07 11:36 p.m.41 views

Updated freetds packages fix security vulnerability

Updated freetds packages fix security vulnerability: Felix Wilhelm discovered that FreeTDS incorrectly handled certain types after a protocol downgrade. A remote attacker could use this issue to cause FreeTDS to crash, resulting in a denial of service, or possibly execute arbitrary code...

9.8CVSS2.9AI score0.01781EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2019/01/16 12:0 a.m.270 views

CentOS Update for libgudev1-219-62.el7_ CESA-2019:0049 centos7

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS7.4AI score0.02958EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2018/05/16 12:0 a.m.62 views

CentOS Update for dhclient CESA-2018:1454 centos6

Check the version of dhclient SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882878";...

7.9CVSS7.8AI score0.94457EPSS
Exploits14References2
Tenable Nessus
Tenable Nessus
added 2018/05/16 12:0 a.m.74 views

RHEL 6 : dhcp (RHSA-2018:1454)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:1454 advisory. The Dynamic Host Configuration Protocol DHCP is a protocol that allows individual devices on an IP network to get their own network configuration...

7.9CVSS8.3AI score0.94457EPSS
Exploits14References6
Tenable Nessus
Tenable Nessus
added 2018/05/16 12:0 a.m.36 views

Oracle Linux 6 : dhcp (ELSA-2018-1454)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-1454 advisory. 12:4.1.1-53.P1.0.1.4 - Added oracle-errwarn-message.patch 12:4.1.1-53.P1.el69.4 - Resolves: 1570897 - Fix comamnd execution in NM script CVE-2018-1111 Tenable h...

7.9CVSS8.1AI score0.94457EPSS
Exploits14References2
Cent OS
Cent OS
added 2018/05/15 3:51 p.m.127 views

dhclient, dhcp security update

CentOS Errata and Security Advisory CESA-2018:1454 An update for dhcp is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.9CVSS7.7AI score0.94457EPSS
Exploits14References7
RedHat Linux
RedHat Linux
added 2018/05/15 3:13 p.m.168 views

Critical: Red Hat Security Advisory: dhcp security update

An update for dhcp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

7.9CVSS7.6AI score0.94457EPSS
Exploits14References3
RedHat Linux
RedHat Linux
added 2018/05/15 3:10 p.m.63 views

Critical: Red Hat Security Advisory: dhcp security update

An update for dhcp is now available for Red Hat Enterprise Linux 7.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

7.9CVSS7.6AI score0.94457EPSS
Exploits14References3
RedHat Linux
RedHat Linux
added 2018/05/15 3:3 p.m.86 views

Critical: Red Hat Security Advisory: dhcp security update

An update for dhcp is now available for Red Hat Enterprise Linux 6.6 Advanced Update Support and Red Hat Enterprise Linux 6.6 Telco Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base scor...

7.9CVSS7.6AI score0.94457EPSS
Exploits14References3
RedHat Linux
RedHat Linux
added 2018/05/15 3:3 p.m.80 views

Critical: Red Hat Security Advisory: dhcp security update

An update for dhcp is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

7.9CVSS7.6AI score0.94457EPSS
Exploits14References3
Cent OS
Cent OS
added 2018/03/14 2:49 p.m.135 views

dhclient, dhcp security update

CentOS Errata and Security Advisory CESA-2018:0483 An update for dhcp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS7.3AI score0.20242EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2018/03/12 12:0 a.m.64 views

CentOS 6 : dhcp (CESA-2018:0469)

An update for dhcp is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS7.1AI score0.20242EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2018/03/09 10:9 a.m.122 views

Important: Red Hat Security Advisory: dhcp security update

An update for dhcp is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS7.3AI score0.20242EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2017/10/02 3:53 p.m.260 views

Critical: Red Hat Security Advisory: dnsmasq security update

An update for dnsmasq is now available for Red Hat Enterprise Linux 5.9 Long Life. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.5AI score0.84925EPSS
Exploits6References3
Rows per page
Query Builder