Lucene search
K

171 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/10 12:0 a.m.19 views

SUSE SLES15: python3-salt / salt / salt-api / salt-bash-completion / salt-cloud / etc (SUSE-SU-2023:4390-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4390-1 advisory. Security issues fixed: - CVE-2023-34049: arbitrary code execution via symlink attack bsc1215157 Bugs fixed: - Fix optimizationorder opt to...

6.7CVSS7.3AI score0.00187EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/11/07 8:29 a.m.4 views

libreoffice: Array index underflow in Calc formula parsing

A vulnerability was found in LibreOffice. Improper validation of the array index in the spreadsheet component of The Document Foundation in LibreOffice allows an attacker to craft a spreadsheet document that causes an array index underflow when loaded. In affected versions of LibreOffice, certain...

7.8CVSS5.9AI score0.003EPSS
Exploits0References5
Filippo.io
Filippo.io
added 2023/10/05 9:21 p.m.36 views

Announcing the $12k NIST Elliptic Curves Seeds Bounty

The NIST elliptic curves that power much of modern cryptography were generated in the late '90s by hashing seeds provided by the NSA. How were the seeds generated? Rumor has it that they are in turn hashes of English sentences, but the person who picked them, Dr. Jerry Solinas, passed away in ear...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/06/22 12:0 a.m.13 views

SUSE SLES15: python3-salt / salt / salt-api / salt-bash-completion / salt-cloud / etc (SUSE-SU-2023:2572-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2572-1 advisory. - Update to Salt release version 3006.0 jscPED-4361 See release notes: https://docs.saltproject.io/en/latest/topics/releases/3006.0.html - A...

5.9AI score
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2023/06/22 12:0 a.m.13 views

SUSE SLES15: python3-salt / salt / salt-api / salt-bash-completion / salt-cloud / etc (SUSE-SU-2023:2581-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2581-1 advisory. - Update to Salt release version 3006.0 jscPED-4361 See release notes: https://docs.saltproject.io/en/latest/topics/releases/3006.0.html - A...

5.9AI score
Exploits0References7
OSV
OSV
added 2023/05/25 8:15 p.m.8 views

CVE-2023-0950

Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded. In the affected versions of LibreOffice certain malformed spreadsheet...

7.8CVSS7.6AI score0.003EPSS
Exploits0References4
NVD
NVD
added 2023/05/25 8:15 p.m.23 views

CVE-2023-0950

Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded. In the affected versions of LibreOffice certain malformed spreadsheet...

7.8CVSS7.8AI score0.003EPSS
Exploits0References4
OSV
OSV
added 2023/05/25 8:15 p.m.3 views

DEBIAN-CVE-2023-0950

Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded. In the affected versions of LibreOffice certain malformed spreadsheet...

7.8CVSS7.8AI score0.003EPSS
Exploits0References1
OSV
OSV
added 2023/05/25 8:15 p.m.3 views

UBUNTU-CVE-2023-0950

Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded. In the affected versions of LibreOffice certain malformed spreadsheet...

7.8CVSS6AI score0.003EPSS
Exploits0References4
Prion
Prion
added 2023/05/25 8:15 p.m.64 views

Input validation

Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded. In the affected versions of LibreOffice certain malformed spreadsheet...

4.4CVSS7.5AI score0.003EPSS
Exploits0References4Affected Software2
UbuntuCve
UbuntuCve
added 2023/05/25 8:15 p.m.67 views

CVE-2023-0950

Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded. In the affected versions of LibreOffice certain malformed spreadsheet...

7.8CVSS7.1AI score0.003EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/05/25 12:0 a.m.7 views

CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing

Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded. In the affected versions of LibreOffice certain malformed spreadsheet...

7.7AI score0.003EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2023/05/25 12:0 a.m.23 views

CVE-2023-0950

Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded. In the affected versions of LibreOffice certain malformed spreadsheet...

7.8CVSS7.7AI score0.003EPSS
Exploits0
Cvelist
Cvelist
added 2023/04/11 2:58 a.m.42 views

CVE-2023-29109 Code Injection vulnerability in SAP Application Interface Framework (Message Dashboard)

The SAP Application Interface Framework Message Dashboard - versions AIF 703, AIFX 702, S4CORE 101, SAPBASIS 755, 756, SAPABA 75C, 75D, 75E, application allows an Excel formula injection. An authorized attacker can inject arbitrary Excel formulas into fields like the Tooltip of the Custom Hints...

4.4CVSS5.5AI score0.00324EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/03/20 12:0 a.m.5 views

The vulnerability of the FortiAnalyzer security event monitoring and analysis tool lies in the lack of a mechanism to neutralize elements in CSV files, allowing attackers to execute arbitrary code.

The vulnerability of the FortiAnalyzer event tracking and analysis tool lies in the absence of a mechanism to neutralize certain elements within the CSV file. Exploiting this vulnerability could allow an attacker to execute arbitrary code by inserting Excel formulas as names of macros within the...

3.7CVSS7.6AI score0.00263EPSS
Exploits0References4Affected Software1
SUSE CVE
SUSE CVE
added 2023/03/15 3:34 a.m.5 views

SUSE CVE-2023-0950

Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded. In the affected versions of LibreOffice certain malformed spreadsheet...

7.3CVSS7.3AI score0.003EPSS
Exploits0References7
NVD
NVD
added 2023/03/07 5:15 p.m.51 views

CVE-2023-25611

A improper neutralization of formula elements in a CSV file vulnerability in Fortinet FortiAnalyzer 6.4.0 - 6.4.9, 7.0.0 - 7.0.5, and 7.2.0 - 7.2.1 allows local attacker to execute unauthorized code or commands via inserting spreadsheet formulas in macro names...

7.3CVSS5.5AI score0.00263EPSS
Exploits0References1
OSV
OSV
added 2023/03/07 5:15 p.m.5 views

CVE-2023-25611

A improper neutralization of formula elements in a CSV file vulnerability in Fortinet FortiAnalyzer 6.4.0 - 6.4.9, 7.0.0 - 7.0.5, and 7.2.0 - 7.2.1 allows local attacker to execute unauthorized code or commands via inserting spreadsheet formulas in macro names...

7.3CVSS7.2AI score0.00263EPSS
Exploits0References1
Prion
Prion
added 2023/03/07 5:15 p.m.17 views

Input validation

A improper neutralization of formula elements in a CSV file vulnerability in Fortinet FortiAnalyzer 6.4.0 - 6.4.9, 7.0.0 - 7.0.5, and 7.2.0 - 7.2.1 allows local attacker to execute unauthorized code or commands via inserting spreadsheet formulas in macro names...

4.1CVSS7.3AI score0.00263EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/07 4:4 p.m.12 views

CVE-2023-25611

A improper neutralization of formula elements in a CSV file vulnerability in Fortinet FortiAnalyzer 6.4.0 - 6.4.9, 7.0.0 - 7.0.5, and 7.2.0 - 7.2.1 allows local attacker to execute unauthorized code or commands via inserting spreadsheet formulas in macro names...

4CVSS7.2AI score0.00263EPSS
Exploits0References1
Rows per page
Query Builder