Lucene search
+L

69 matches found

Prion
Prion
added 2023/07/01 12:15 a.m.20 views

Code injection

UniFi OS 3.1 introduces a misconfiguration on consoles running UniFi Network that allows users on a local network to access MongoDB. Applicable Cloud Keys that are both 1 running UniFi OS 3.1 and 2 hosting the UniFi Network application. "Applicable Cloud Keys" include the following: Cloud Key Gen...

5.2CVSS8.7AI score0.00254EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/06/30 11:39 p.m.28 views

CVE-2023-31997

UniFi OS 3.1 introduces a misconfiguration on consoles running UniFi Network that allows users on a local network to access MongoDB. Applicable Cloud Keys that are both 1 running UniFi OS 3.1 and 2 hosting the UniFi Network application. "Applicable Cloud Keys" include the following: Cloud Key Gen...

9AI score0.00254EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/06/30 11:39 p.m.14 views

CVE-2023-31997

UniFi OS 3.1 introduces a misconfiguration on consoles running UniFi Network that allows users on a local network to access MongoDB. Applicable Cloud Keys that are both 1 running UniFi OS 3.1 and 2 hosting the UniFi Network application. "Applicable Cloud Keys" include the following: Cloud Key Gen...

6.7AI score0.00254EPSS
Exploits0References1
CVE
CVE
added 2023/06/30 11:39 p.m.48 views

CVE-2023-31997

CVE-2023-31997 concerns UniFi OS 3.1 where a misconfiguration in consoles running UniFi Network enables local-network users to access MongoDB on applicable Cloud Keys (Gen2 and Gen2 Plus) hosting UniFi Network. Impact described as local access to MongoDB; CVSS 3.1 base score 9.0 (Critical) with h...

9CVSS8.7AI score0.00254EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/06/30 12:0 a.m.6 views

PT-2023-23562 · Ubiquiti +1 · Cloud Key Gen2 +4

Name of the Vulnerable Software and Affected Versions: UniFi OS version 3.1 Cloud Key Gen2 running UniFi OS 3.1 Cloud Key Gen2 Plus running UniFi OS 3.1 Description: The issue is related to a misconfiguration in UniFi OS 3.1 that affects consoles running UniFi Network, allowing users on a local...

9CVSS7AI score0.00254EPSS
Exploits0References4
NVD
NVD
added 2023/05/11 10:15 p.m.25 views

CVE-2023-28361

A Cross-site WebSocket Hijacking CSWSH vulnerability found in UniFi OS 2.5 and earlier allows a malicious actor to access certain confidential information by persuading a UniFi OS user to visit a malicious webpage.Affected Products:Cloud Key Gen2Cloud Key Gen2 PlusUNVRUNVR ProfessionalUDMUDM...

6.5CVSS6.3AI score0.00263EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.4 views

SUSE CVE-2020-35503

A NULL pointer dereference flaw was found in the megasas-gen2 SCSI host bus adapter emulation of QEMU in versions before and including 6.0. This issue occurs in the megasascommandcancelled callback function while dropping a SCSI request. This flaw allows a privileged guest user to crash the QEMU...

5.5CVSS6.5AI score0.00275EPSS
Exploits0References18
OPENSUSE Linux
OPENSUSE Linux
added 2021/11/04 12:0 a.m.47 views

Security update for qemu (important)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:3614-1 Rating: important References: 1180432 1180433 1180434 1180435 1182651 1186012 1189145 1189702 1189938 Cross-References: CVE-2020-35503 CVE-2020-35504 CVE-2020-35505 CVE-2020-35506 CVE-2021-20255...

7.8CVSS8.2AI score0.02904EPSS
Exploits0References9
OPENSUSE Linux
OPENSUSE Linux
added 2021/08/27 12:0 a.m.64 views

Security update for qemu (moderate)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:2858-1 Rating: moderate References: 1180432 1180433 1180434 1180435 1182651 1186012 1188299 1189145 Cross-References: CVE-2020-35503 CVE-2020-35504 CVE-2020-35505 CVE-2020-35506 CVE-2021-20255 CVE-2021-3527...

6CVSS6.2AI score0.02904EPSS
Exploits0References8
OPENSUSE Linux
OPENSUSE Linux
added 2021/08/20 12:0 a.m.73 views

Security update for qemu (moderate)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:2789-1 Rating: moderate References: 1180432 1180433 1180434 1180435 1182651 1186012 1189145 Cross-References: CVE-2020-35503 CVE-2020-35504 CVE-2020-35505 CVE-2020-35506 CVE-2021-20255 CVE-2021-3527 CVE-2021-3682...

6CVSS6.3AI score0.02904EPSS
Exploits0References7
Citrix
Citrix
added 2021/06/11 12:0 a.m.7 views

How to Migrate GEN2 Hyper-V Machines to Citrix Hypervisor

Migrate VMs from Hyper-v to Xenserver/Citrix Hypervisor...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.12 views

SUSE: Security Advisory (SUSE-SU-2019:3393-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.05255EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2020:0440-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.05255EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.13 views

SUSE: Security Advisory (SUSE-SU-2019:3394-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.05255EPSS
Exploits0References2
NVD
NVD
added 2021/06/02 2:15 p.m.16 views

CVE-2020-35503

A NULL pointer dereference flaw was found in the megasas-gen2 SCSI host bus adapter emulation of QEMU in versions before and including 6.0. This issue occurs in the megasascommandcancelled callback function while dropping a SCSI request. This flaw allows a privileged guest user to crash the QEMU...

6CVSS0.00275EPSS
Exploits0References2
OSV
OSV
added 2021/06/02 2:15 p.m.27 views

CVE-2020-35503

A NULL pointer dereference flaw was found in the megasas-gen2 SCSI host bus adapter emulation of QEMU in versions before and including 6.0. This issue occurs in the megasascommandcancelled callback function while dropping a SCSI request. This flaw allows a privileged guest user to crash the QEMU...

6CVSS6.2AI score
Exploits0References2
OSV
OSV
added 2021/06/02 2:15 p.m.2 views

DEBIAN-CVE-2020-35503

A NULL pointer dereference flaw was found in the megasas-gen2 SCSI host bus adapter emulation of QEMU in versions before and including 6.0. This issue occurs in the megasascommandcancelled callback function while dropping a SCSI request. This flaw allows a privileged guest user to crash the QEMU...

6CVSS5.9AI score0.00275EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/06/02 2:15 p.m.26 views

CVE-2020-35503

A NULL pointer dereference flaw was found in the megasas-gen2 SCSI host bus adapter emulation of QEMU in versions before and including 6.0. This issue occurs in the megasascommandcancelled callback function while dropping a SCSI request. This flaw allows a privileged guest user to crash the QEMU...

6CVSS6.3AI score0.00275EPSS
Exploits0References2
OSV
OSV
added 2021/06/02 2:15 p.m.4 views

UBUNTU-CVE-2020-35503

A NULL pointer dereference flaw was found in the megasas-gen2 SCSI host bus adapter emulation of QEMU in versions before and including 6.0. This issue occurs in the megasascommandcancelled callback function while dropping a SCSI request. This flaw allows a privileged guest user to crash the QEMU...

6CVSS6.3AI score0.00275EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2021/06/02 1:22 p.m.62 views

CVE-2020-35503

A NULL pointer dereference flaw was found in the megasas-gen2 SCSI host bus adapter emulation of QEMU in versions before and including 6.0. This issue occurs in the megasascommandcancelled callback function while dropping a SCSI request. This flaw allows a privileged guest user to crash the QEMU...

6CVSS5.6AI score0.00275EPSS
Exploits0
Rows per page
Query Builder