Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2014-7850

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in the Web UI in FreeIPA 4.x before 4.1.2 allows remote attackers to inject arbitrary web script or HTML via vectors...

4.3CVSS6.8AI score0.01864EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2017/09/29 11:19 a.m.23 views

CVE-2017-11191

DISPUTED FreeIPA 4.x with API version 2.213 allows a remote authenticated users to bypass intended account-locking restrictions via an unlock action with an old session ID for the same user account that had been created for an earlier session. NOTE: Vendor states that issue does not exist in...

8.8CVSS5.3AI score0.01687EPSS
Exploits1References1
NVD
NVD
added 2017/09/28 1:29 a.m.20 views

CVE-2017-11191

FreeIPA 4.x with API version 2.213 allows a remote authenticated users to bypass intended account-locking restrictions via an unlock action with an old session ID for the same user account that had been created for an earlier session. NOTE: Vendor states that issue does not exist in product and...

8.8CVSS8.5AI score0.01687EPSS
Exploits1References1
Cvelist
Cvelist
added 2017/09/27 7:0 p.m.29 views

CVE-2017-11191

FreeIPA 4.x with API version 2.213 allows a remote authenticated users to bypass intended account-locking restrictions via an unlock action with an old session ID for the same user account that had been created for an earlier session. NOTE: Vendor states that issue does not exist in product and...

8.4AI score0.01687EPSS
Exploits1References1
Cvelist
Cvelist
added 2014/11/28 3:0 p.m.29 views

CVE-2014-7850

Cross-site scripting XSS vulnerability in the Web UI in FreeIPA 4.x before 4.1.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to breadcrumb navigation...

5.5AI score0.01864EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2014/11/28 3:0 p.m.40 views

CVE-2014-7850

Cross-site scripting XSS vulnerability in the Web UI in FreeIPA 4.x before 4.1.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to breadcrumb navigation...

4.3CVSS5.9AI score0.01864EPSS
Exploits0
Rows per page
Query Builder