Lucene search
+L

66 matches found

Tenable Nessus
Tenable Nessus
added 2020/07/17 12:0 a.m.58 views

Aruba Networks ClearPass Policy Manager 6.7.x < 6.7.13-HF / 6.8.x < 6.8.5-HF / 6.9.x < 6.9.1 Multiple Vulnerabilities (ARUBA-PSA-2020-005)

The remote host is Aruba Networks HP Clearpass Policy Manager version 6.7.x prior to 6.7.13-HF, or 6.8.x prior to 6.8.5-HF, or 6.9.x 6.9.1. It is, therefore, vulnerable to multiple security vulnerabilities as described in the vendor advisory ARUBA-PSA-2020-005. C Tenable Network Security, Inc...

10CVSS7.9AI score0.64596EPSS
Exploits8References4
Prion
Prion
added 2020/06/03 1:15 p.m.22 views

Command injection

The ClearPass Policy Manager WebUI administrative interface has an authenticated command remote execution. When the attacker is already authenticated to the administrative interface, they could then exploit the system, leading to remote command execution in the underlying operating system...

9CVSS7.1AI score0.03325EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2020/06/03 12:0 a.m.90 views

CVE-2020-7115

The ClearPass Policy Manager web interface is affected by a vulnerability that leads to authentication bypass. Upon successful bypass an attacker could then execute an exploit that would allow to remote command execution in the underlying operating system. Resolution: Fixed in 6.7.13-HF, 6.8.5-HF...

10CVSS0.9AI score0.64596EPSS
In wildExploits8References3
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.13 views

Siemens SIPLUS IM151 HF Detection

Binary data 750343.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.18 views

Siemens CM PtP RS232 HF Communications Adapter Detection

Binary data 750201.prm...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.15 views

Siemens CM PtP RS422/485 HF Communications Adapter Detection

Binary data 750202.prm...

7.3AI score
Exploits0
OSV
OSV
added 2018/12/22 3:29 p.m.4 views

UBUNTU-CVE-2018-20361

An invalid memory address dereference was discovered in the hfassembly function of libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

5.5CVSS7AI score0.01207EPSS
Exploits1References3
OSV
OSV
added 2018/12/22 3:29 p.m.1 views

DEBIAN-CVE-2018-20361

An invalid memory address dereference was discovered in the hfassembly function of libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

5.5CVSS6.8AI score0.01207EPSS
Exploits1References1
OSV
OSV
added 2018/12/22 3:29 p.m.3 views

ALPINE-CVE-2018-20361

An invalid memory address dereference was discovered in the hfassembly function of libfaad/sbrhfadj.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a segmentation fault and application crash, which leads to denial of service...

5.5CVSS6.8AI score0.01207EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2018/11/23 12:0 a.m.2 views

PT-2018-3075 · Audiocoding +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.8 Description: The issue is related to an invalid memory address dereference in the hf assembly function, which can cause a segmentation fault and application crash, leading to denial of...

7.8CVSS6.4AI score0.01518EPSS
Exploits22References110
Openbugbounty
Openbugbounty
added 2018/10/10 12:53 p.m.13 views

hf-data.no XSS vulnerability

Open Bug Bounty ID: OBB-684621 Description| Value ---|--- Affected Website:| hf-data.no Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
Positive Technologies
Positive Technologies
added 2017/02/05 12:0 a.m.6 views

PT-2017-7731 · Talariax · Sendquick Entera +1

Name of the Vulnerable Software and Affected Versions: SendQuick Entera versions prior to 2HF16 Avera versions prior to 2HF16 Description: An issue was discovered that allows attackers to execute arbitrary system commands due to multiple Command Injection vulnerabilities. Recommendations: For...

9.8CVSS10AI score0.02503EPSS
Exploits0References3
hackapp
hackapp
added 2016/04/01 9:15 a.m.16 views

Onkyo HF Player - BSD license, Exported components, External URLs vulnerabilities

HackApp vulnerability scanner discovered that application Onkyo HF Player published at the 'play' market has multiple vulnerabilities...

0.4AI score
Exploits0References1Affected Software1
CVE
CVE
added 2015/05/14 2:0 p.m.57 views

CVE-2015-3987

McAfee ePO Deep Command (Client Management and Gateway) 2.1/2.2 are affected by CVE-2015-3987 due to unquoted Windows search paths leading to local privilege elevation. The issue is rooted in unquoted path handling, enabling local users to gain privileges via unspecified vectors. A patched releas...

7.2CVSS9.1AI score0.00472EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.8 views

Vulnerabilities in the Debian GNU/Linux operating system that allow a local malicious individual to compromise the confidentiality, integrity, and accessibility of protected information

The numerous vulnerabilities in the Debian GNU/Linux operating system’s hf package can be exploited, leading to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited by local malicious actors...

7.2CVSS5.4AI score0.00346EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVAS
added 2015/04/08 12:0 a.m.25 views

Trend Micro InterScan Web Security Virtual Appliance Multiple Information Disclosure Vulnerabilities

Trend Micro InterScan Web Security Virtual Appliance is prone to multiple information disclosure vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

4CVSS6.3AI score0.01487EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2012/11/29 12:0 a.m.28 views

SOL14046 - FirePass input validation vulnerability

Vulnerability Recommended Actions To eliminate this vulnerability, upgrade to a version that is listed in the Versions known to be not vulnerable column in the previous table. F5 strongly recommends that you install HF-70-7 for FirePass 7.0.0 to address this vulnerability. Acknowledgements F5 wou...

2.3AI score
Exploits0References7Affected Software1
F5 Networks
F5 Networks
added 2012/03/14 12:0 a.m.35 views

SOL13463 - FirePass SQL injection vulnerability - CVE-2012-1777

Recommended action To eliminate this vulnerability, upgrade to a version that is listed in the Versions known to be not vulnerable column in the previous table. F5 strongly recommends installing FirePass HF-377712-1 to address this vulnerability. Supplemental Information CERT advisory regarding...

7.5CVSS6.3AI score0.02327EPSS
Exploits2References9
CVE
CVE
added 2008/11/26 11:0 p.m.51 views

CVE-2008-2378

The CVE-2008-2378 issue concerns the hf HF kernel component (hfkernel) used by the hf package. The vulnerability is a local untrusted-search-path flaw that could allow privilege escalation via a Trojan horse killall executable found in a PATH directory, related to improper handling of the -k opti...

7.2CVSS6.3AI score0.00346EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2008/11/24 12:0 a.m.16 views

Debian DSA-1668-1 : hf - programming error

Steve Kemp discovered that hf, an amateur-radio protocol suite using a soundcard as a modem, insecurely tried to execute an external command which could lead to the elevation of privileges for local users. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package check...

7.2CVSS5.5AI score0.00346EPSS
Exploits0References3
Rows per page
Query Builder