Lucene search
K

255 matches found

OSV
OSV
added 2016/12/15 6:59 a.m.3 views

CVE-2016-6852

An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. Users can provide local file paths to the RSS reader; the response and error code give hints about whether the provided file exists or not. Attackers may discover specific system files or library versions on the middleware...

4.3CVSS5.8AI score0.00966EPSS
Exploits0References2
Hacker One
Hacker One
added 2016/12/04 11:40 a.m.88 views

Nextcloud: Login Hints on Admin Panel

Hi, Hope you are doing fine. I wanted to inform you regarding the enabling of the login hints on your wp-admin panelhttps://nextcloud.com/wp-login.php. Vulnerability: The admin panel shows very "specific" hint information if a hacker tries for a bruteforcing attack. Steps to reproduce: 1. Navigat...

6.9AI score
Exploits0
OpenVAS
OpenVAS
added 2016/01/11 12:0 a.m.45 views

OpenSSL DoS Vulnerability (20151203) - Linux

OpenSSL is prone to a Denial of Service DoS vulnerability. Copyright C 2016 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...

4.3CVSS6.7AI score0.12814EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2015/12/14 4:47 a.m.3 views

OpenSSL: Race condition handling PSK identify hint

A race condition flaw, leading to a double free, was found in the way OpenSSL handled pre-shared key PSK identify hints. A remote attacker could use this flaw to crash a multi-threaded SSL/TLS client using OpenSSL...

4.3CVSS6.8AI score0.12814EPSS
Exploits1References5
Amazon
Amazon
added 2015/12/14 12:0 a.m.70 views

Medium: openssl

Issue Overview: A NULL pointer derefernce flaw was found in the way OpenSSL verified signatures using the RSA PSS algorithm. A remote attacked could possibly use this flaw to crash a TLS/SSL client using OpenSSL, or a TLS/SSL server using OpenSSL if it enabled client authentication. CVE-2015-3194...

7.5CVSS7.8AI score0.44016EPSS
Exploits1
Ubuntu
Ubuntu
added 2015/12/07 12:35 p.m.121 views

USN-2830-1: OpenSSL vulnerabilities

Guy Leaver discovered that OpenSSL incorrectly handled a ServerKeyExchange for an anonymous DH ciphersuite with the value of p set to 0. A remote attacker could possibly use this issue to cause OpenSSL to crash, resulting in a denial of service. This issue only applied to Ubuntu 15.10...

7.5CVSS7.1AI score0.44016EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2015/12/07 12:0 a.m.73 views

Debian DSA-3413-1 : openssl - security update

Multiple vulnerabilities have been discovered in OpenSSL, a Secure Sockets Layer toolkit. The Common Vulnerabilities and Exposures project identifies the following issues : - CVE-2015-3194 Loic Jonas Etienne of Qnective AG discovered that the signature verification routines will crash with a NULL...

7.5CVSS7AI score0.44016EPSS
Exploits1References9
OSV
OSV
added 2014/03/12 2:55 p.m.1 views

DEBIAN-CVE-2014-2240

Stack-based buffer overflow in the cf2hintmapbuild function in cff/cf2hints.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large number of stem hints in a font file...

7.5CVSS8.2AI score0.06275EPSS
Exploits1References1
Oracle linux
Oracle linux
added 2013/11/26 12:0 a.m.37 views

pacemaker security, bug fix, and enhancement update

1.1.10-14 - Log: crmd: Supply arguments in the correct order Resolves: rhbz996850 - Fix: Invalid formatting of log message causes crash Resolves: rhbz996850 1.1.10-13 - Fix: cman: Start clvmd and friends from the init script if enabled 1.1.10-12 - Fix: Consistently use 'Slave' as the role for...

4.3CVSS6.3AI score0.02996EPSS
Exploits1
OSV
OSV
added 2012/07/17 9:55 p.m.1 views

DEBIAN-CVE-2012-3371

The Nova scheduler in OpenStack Compute Nova Folsom 2012.2 and Essex 2012.1, when DifferentHostFilter or SameHostFilter is enabled, allows remote authenticated users to cause a denial of service excessive database lookup calls and server hang via a request with many repeated IDs in the...

3.5CVSS6.3AI score0.01846EPSS
Exploits1References1
PyPA
PyPA
added 2012/07/17 9:55 p.m.5 views

PYSEC-2012-40

The Nova scheduler in OpenStack Compute Nova Folsom 2012.2 and Essex 2012.1, when DifferentHostFilter or SameHostFilter is enabled, allows remote authenticated users to cause a denial of service excessive database lookup calls and server hang via a request with many repeated IDs in the...

3.5CVSS6.7AI score0.01846EPSS
Exploits1References8Affected Software1
securityvulns
securityvulns
added 2012/02/22 12:0 a.m.71 views

F*EX 20111129-2 Cross Site Scripting Vulnerability

------------------------------------------------------------------------ FEX 20111129-2 Cross Site Scripting Vulnerability ------------------------------------------------------------------------ title.............: FEX 20111129-2 Cross Site Scripting Vulnerabilities author............: muuratsal...

7AI score
Exploits0
Metasploit
Metasploit
added 2011/11/04 6:47 p.m.49 views

Windows Gather Terminal Server Client Connection Information Dumper

This module dumps MRU and connection data for RDP sessions This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows Gather Terminal Server Client Connection Information Dumper', 'Description' = ...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2011/10/04 12:0 a.m.127 views

Elastix PBX Extensions Enumeration

Exploit Title: Elastix PBX Extensions Enumeration Date: 1 Oct 2011 Author: Bassem Saleh Contact: Injectoratlivedotcom Software Link: http://www.elastix.org/ Version: 2.X and may be below versions Tested on: 2.0.3 ================================================================ Non privileges user...

1.7AI score
Exploits0
Cvelist
Cvelist
added 1976/01/01 12:0 a.m.4 views

CVE-2025-58700

...

Exploits0
Rows per page
Query Builder