Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7622 matches found

CVE
CVEadded 2013/06/21 2:0 p.m.39 views

CVE-2013-0529

Summary (CVE-2013-0529) : IBM Sterling Connect:Direct Browser (part of IBM Sterling Control Center ecosystem) is affected by a cookie-security flaw where the session cookie is not marked with the Secure attribute in HTTPS sessions. Affected products/versions include IBM Sterling Connect:Direct Br...

5CVSS6.5AI score0.00234EPSS
Exploits0References3Affected Software1
OpenVAS
OpenVASadded 2013/06/18 12:0 a.m.16 views

Fedora Update for kbruch FEDORA-2013-10182

Check for the Version of kbruch OpenVAS Vulnerability Test Fedora Update for kbruch FEDORA-2013-10182 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

0.3AI score0.00119EPSS
Exploits1References2
OpenVAS
OpenVASadded 2013/06/18 12:0 a.m.17 views

Fedora Update for kdeplasma-addons FEDORA-2013-10182

Check for the Version of kdeplasma-addons OpenVAS Vulnerability Test Fedora Update for kdeplasma-addons FEDORA-2013-10182 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

9.2AI score0.00119EPSS
Exploits1References2
OpenVAS
OpenVASadded 2013/06/18 12:0 a.m.24 views

Fedora Update for konsole FEDORA-2013-10182

Check for the Version of konsole OpenVAS Vulnerability Test Fedora Update for konsole FEDORA-2013-10182 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

0.00119EPSS
Exploits1References2
OpenVAS
OpenVASadded 2013/06/13 12:0 a.m.21 views

Fedora Update for kanagram FEDORA-2013-10130

Check for the Version of kanagram OpenVAS Vulnerability Test Fedora Update for kanagram FEDORA-2013-10130 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

0.1AI score0.00119EPSS
Exploits1References2
OpenVAS
OpenVASadded 2013/06/13 12:0 a.m.18 views

Fedora Update for kmix FEDORA-2013-10130

Check for the Version of kmix OpenVAS Vulnerability Test Fedora Update for kmix FEDORA-2013-10130 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

0.5AI score0.00119EPSS
Exploits1References2
OpenVAS
OpenVASadded 2013/06/13 12:0 a.m.22 views

Fedora Update for libksane FEDORA-2013-10130

Check for the Version of libksane OpenVAS Vulnerability Test Fedora Update for libksane FEDORA-2013-10130 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

0.1AI score0.00119EPSS
Exploits1References2
OpenVAS
OpenVASadded 2013/06/13 12:0 a.m.16 views

Fedora Update for ksaneplugin FEDORA-2013-10130

Check for the Version of ksaneplugin OpenVAS Vulnerability Test Fedora Update for ksaneplugin FEDORA-2013-10130 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

9.2AI score0.00119EPSS
Exploits1References2
w3af
w3afadded 2013/06/10 11:2 p.m.56 views

ssl_certificate

This plugin audits SSL certificate parameters. One configurable parameter exists: minExpireDays CA PEM file path Note: Its only usefull when testing HTTPS sites. Plugin type Audit Options Name | Type | Default Value | Description | Help ---|---|---|---|--- minExpireDays | integer | 30 | Set minim...

7.1AI score
Exploits0
w3af
w3afadded 2013/06/10 11:2 p.m.15 views

cache_control

This plugin analyzes every HTTPS response and reports instances of incorrect cache control which might lead the users browser to cache sensitive contents on their system. The expected headers for HTTPS responses are: Pragma: No-cache Cache-control: No-store Plugin type Grep Options This plugin...

7.1AI score
Exploits0
w3af
w3afadded 2013/06/10 11:2 p.m.35 views

un_ssl

This plugin verifies that URLs that are available using HTTPS arent available over an insecure HTTP protocol. To detect this, the plugin simply requests "https://abc/a.asp" and "http://abc.asp" and if both are equal, a vulnerability is found. Plugin type Audit Options This plugin doesnt have any...

7.1AI score
Exploits0
OpenVAS
OpenVASadded 2013/06/07 12:0 a.m.35 views

Fedora Update for mod_security FEDORA-2013-9518

Check for the Version of modsecurity OpenVAS Vulnerability Test Fedora Update for modsecurity FEDORA-2013-9518 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

5CVSS6.5AI score0.11456EPSS
Exploits5References2
Veeam
Veeamadded 2013/05/31 12:0 a.m.17 views

Veeam Management Pack v6 Required Ports and Permissions

Solution Required Permissions Connection to Virtual Servers VI Object | Required Permissions ---|--- vCenter, ESXi Host | Read-Only1 Host.CIM.CIM Interaction2 Datastore.Browse Datastore3 Datastore.Configure Datastore3 Datastore Cluster.Browse Datastore Cluster3 1 Minimum required permission over...

7.1AI score
Exploits0
securityvulns
securityvulnsadded 2013/05/27 12:0 a.m.61 views

APPLE-SA-2013-05-16-1 iTunes 11.0.3

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2013-05-16-1 iTunes 11.0.3 iTunes 11.0.3 is now available and addresses the following: iTunes Available for: Mac OS X v10.6.8 or later, Windows 7, Vista, XP SP2 or later Impact: An attacker in a privileged network position may manipulate HTTP...

10CVSS0.18192EPSS
Exploits3
NVD
NVDadded 2013/05/20 2:44 p.m.15 views

CVE-2013-1014

Apple iTunes before 11.0.3 does not properly verify X.509 certificates, which allows man-in-the-middle attackers to spoof HTTPS servers via an arbitrary valid certificate...

4.3CVSS5.9AI score0.00036EPSS
Exploits0References3
Prion
Prionadded 2013/05/20 2:44 p.m.11 views

Code injection

Apple iTunes before 11.0.3 does not properly verify X.509 certificates, which allows man-in-the-middle attackers to spoof HTTPS servers via an arbitrary valid certificate...

4.3CVSS6.4AI score0.00036EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2013/05/19 10:0 a.m.52 views

CVE-2013-1014

Apple iTunes before 11.0.3 is affected by a certificate validation flaw: it does not properly verify X.509 certificates, allowing a man-in-the-middle to spoof HTTPS servers with an arbitrary valid certificate. The vulnerability concerns iTunes on Windows and macOS platforms; exploitation could en...

4.3CVSS5.9AI score0.00036EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2013/05/19 10:0 a.m.23 views

CVE-2013-1014

Apple iTunes before 11.0.3 does not properly verify X.509 certificates, which allows man-in-the-middle attackers to spoof HTTPS servers via an arbitrary valid certificate...

5.9AI score0.00036EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2013/05/17 12:0 a.m.33 views

Apple iTunes < 11.0.3 Multiple Vulnerabilities (uncredentialed check)

The version of Apple iTunes on the remote host is prior to version 11.0.3. It is, therefore, affected by multiple vulnerabilities : - An error exists related to certificate validation. A man-in-the-middle attacker can exploit this to spoof HTTPS servers, which allows the disclosure of sensitive...

10CVSS8.6AI score0.18192EPSS
Exploits3References46
Prion
Prionadded 2013/05/15 3:36 a.m.13 views

Authentication flaw

Microsoft .NET Framework 4.5 does not properly create policy requirements for custom Windows Communication Foundation WCF endpoint authentication in certain situations involving passwords over HTTPS, which allows remote attackers to bypass authentication by sending queries to an endpoint, aka...

7.5CVSS7.3AI score0.22765EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder