Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-6907

Malware in sbrugna...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References4
HackRead
HackRead
added 2024/04/02 10:37 p.m.15 views

Vulnerability Exposed Ibis Budget Guest Room Codes to Hackers

By Waqas Hackers Find Easy Access to Rooms at Ibis Budget Hotels! This is a post from HackRead.com Read the original post: Vulnerability Exposed Ibis Budget Guest Room Codes to Hackers...

7.2AI score
Exploits0
vulnersOsv
vulnersOsv
added 2023/11/17 9:47 p.m.4 views

aibox-data-lake (>=1.0.0 <=1.3.0), aitaem (>=0.1.2 <=0.3.1) +149 more potentially affected by unknown CVE via ibis-framework (>=10.0.0.dev97 <=7.0.0)

ibis-framework PYPI version =10.0.0.dev97, =1.0.0, =0.1.2, =0.1.1, =1.0.0, =1.9.0, =0.0.0, =0.1.0, =0.0.7, =0.0.0.dev1, =0.3.5, =0.3.9 and more Source cves: unknown CVE Source advisory: OSV:GHSA-X563-6HQV-26MR...

5.7AI score
Exploits0
OSV
OSV
added 2023/11/17 9:47 p.m.32 views

GHSA-X563-6HQV-26MR Ibis PyArrow dependency allows arbitrary code execution when loading a malicious data file

Impact Deserialization of untrusted data in IPC and Parquet readers in PyArrow versions 0.14.0 to 14.0.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources for example user-supplied input files. This vulnerability on...

9.4AI score
Exploits0References4
Github Security Blog
Github Security Blog
added 2023/11/17 9:47 p.m.33 views

Ibis PyArrow dependency allows arbitrary code execution when loading a malicious data file

Impact Deserialization of untrusted data in IPC and Parquet readers in PyArrow versions 0.14.0 to 14.0.0 allows arbitrary code execution. An application is vulnerable if it reads Arrow IPC, Feather or Parquet data from untrusted sources for example user-supplied input files. This vulnerability on...

9.8CVSS9.6AI score0.14414EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2023/02/27 12:0 a.m.3 views

OpenCycleCompass server-php SQL注入漏洞

server-php is an OpenCycleCompass open source server for iBis applications. An SQL injection vulnerability exists in OpenCycleCompass server-php, which stems from an incorrect manipulation of the parameter user resulting in sql injection...

9.8CVSS7.7AI score0.00685EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/05/14 12:0 a.m.19 views

SUSE SLES15 Security Update : ibutils (SUSE-SU-2021:1597-1)

This update for ibutils fixes the following issues : Hardening: Link ibis executable with -pie bsc1184123. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much ...

5.5AI score
Exploits0References2
Prion
Prion
added 2019/11/25 12:15 p.m.24 views

Input validation

A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is usi...

3.6CVSS6.5AI score0.00365EPSS
Exploits0References4Affected Software4
Openbugbounty
Openbugbounty
added 2018/02/04 7:4 p.m.6 views

ibis-management.com XSS vulnerability

Open Bug Bounty ID: OBB-552970 Description| Value ---|--- Affected Website:| ibis-management.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
NVD
NVD
added 2014/10/16 7:55 p.m.10 views

CVE-2014-7028

The Ibis pau centre aka com.myapphone.android.myappibispaucentre application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
CVE
CVE
added 2014/10/16 7:0 p.m.34 views

CVE-2014-7028

The CVE-2014-7028 entry concerns the Android app Ibis pau centre (com.myapphone.android.myappibispaucentre) version 1.0. The vulnerability is that the app does not verify X.509 certificates from SSL servers, allowing MITM attackers to spoof servers and obtain sensitive information. The NVD entry ...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/10/16 7:0 p.m.22 views

CVE-2014-7028

The Ibis pau centre aka com.myapphone.android.myappibispaucentre application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00266EPSS
Exploits0References3
Rows per page
Query Builder