Lucene search
+L

5 matches found

OSV
OSV
added 2025/09/12 11:46 a.m.6 views

BIT-NIFI-2020-9487

In Apache NiFi 1.0.0 to 1.11.4, the NiFi download token one-time password mechanism used a fixed cache size and did not authenticate a request to create a download token, only when attempting to use the token to access the content. An unauthenticated user could repeatedly request download tokens,...

7.5CVSS7AI score0.0305EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/03/21 12:0 a.m.5 views

Xen 安全漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in Xen, whic...

8.6CVSS7.2AI score0.01189EPSS
Exploits0References12
CNNVD
CNNVD
added 2023/03/21 12:0 a.m.6 views

Xen 安全漏洞

Xen is an open source virtual machine monitor product from the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in Xen, whic...

6.5CVSS6.8AI score0.00267EPSS
Exploits0References12
Github Security Blog
Github Security Blog
added 2022/01/06 8:41 p.m.34 views

Missing Authentication for Critical Function in Apache NiFi

In Apache NiFi 1.0.0 to 1.11.4, the NiFi download token one-time password mechanism used a fixed cache size and did not authenticate a request to create a download token, only when attempting to use the token to access the content. An unauthenticated user could repeatedly request download tokens,...

7.5CVSS7.3AI score0.0305EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.35 views

openSUSE: Security Advisory for dnsmasq (openSUSE-SU-2021:0129-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.3CVSS7.2AI score0.86692EPSS
Exploits2References2
Rows per page
Query Builder