Lucene search
K

9165 matches found

Tenable Nessus
Tenable Nessus
added 2019/05/15 12:0 a.m.237 views

EulerOS Virtualization 3.0.1.0 : libxml2 (EulerOS-SA-2019-1559)

According to the versions of the libxml2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs...

7.5CVSS7AI score0.03681EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2019/05/14 12:0 a.m.28 views

EulerOS Virtualization 3.0.1.0 : scsi-target-utils (EulerOS-SA-2019-1427)

According to the versions of the scsi-target-utils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Multiple buffer overflows in the iSNS implementation in isns.c in 1 Linux SCSI target framework aka tgt or...

5CVSS6.5AI score0.05347EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.22 views

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1488)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way the Linux kernel handled IRET faults during the processing of NMIs. An unprivileged, local user could...

10CVSS6.5AI score0.06267EPSS
Exploits12References23
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.23 views

Apache Tomcat 8.5.x < 8.5.15 Remote Error Page Manipulation

Binary data 700690.pasl...

7.5CVSS8AI score0.16567EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.42 views

EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1500)

According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - The IPv6 DCCP implementation in the Linux kernel mishandles inheritance, which allows local users to cause a denial of...

7.8CVSS6.9AI score0.04881EPSS
Exploits7References11
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.56 views

EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1486)

According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - It was found that the parserockridgeinodeinternal function of the Linux kernel's ISOFS implementation did not correctl...

9.8CVSS7.3AI score0.10209EPSS
Exploits11References21
Tenable Nessus
Tenable Nessus
added 2019/05/13 12:0 a.m.56 views

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1485)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the way the Linux kernel's Crypto subsystem handled automatic loading of kernel modules. A local user could u...

10CVSS6.9AI score0.09828EPSS
Exploits4References24
Positive Technologies
Positive Technologies
added 2019/05/09 12:0 a.m.6 views

PT-2019-12523

Name of the Vulnerable Software and Affected Versions golang.org/x/crypto versions before v0.0.0-20190320223903-b7391e95e576 Description A flaw was found in the amd64 implementation of the golang.org/x/crypto/salsa20 and golang.org/x/crypto/salsa20/salsa packages. If more than 256 GiB of keystrea...

5.9CVSS6.8AI score0.03437EPSS
Exploits0References35
Akamai Blog
Akamai Blog
added 2019/05/08 7:8 p.m.97 views

Deployment Diversity for DNS Resiliency

Consider Addressing Delegation Servers with Varying Network Routes Written by: Jim Gilbert and Barry Greene Don't Forget DNS Similar to diverse workforces performing at a higher level, diverse network service deployments perform at a higher level that is increasingly important as the Internet...

6.5AI score
Exploits0
OpenVAS
OpenVAS
added 2019/05/07 12:0 a.m.71 views

Fedora Update for createrepo_c FEDORA-2019-1fccede810

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS8.2AI score0.0571EPSS
Exploits0References2
Prion
Prion
added 2019/05/03 4:29 p.m.20 views

Design/Logic Flaw

A vulnerability in the implementation of the Lightweight Directory Access Protocol LDAP feature in Cisco Adaptive Security Appliance ASA Software and Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial ...

7.8CVSS7.5AI score0.02028EPSS
Exploits0References2Affected Software2
Veracode
Veracode
added 2019/05/02 6:9 a.m.22 views

Unauthenticated Access

Java SE and Java SE Embedded are vulnerable to unauthenticated access attacks. A remote user can exploit a flaw in the DSA implementation in the Libraries component of OpenJDK. The attacker may then be able to modify data on the target system and gain elevated privileges...

6.5CVSS7.9AI score0.02972EPSS
Exploits0References20Affected Software5
Veracode
Veracode
added 2019/05/02 5:51 a.m.48 views

Denial Of Service (DoS)

Linux kernel is vulnerable to denial of serviceDoS attacks. A race condition flaw occurs in the ioctlsendfib function in the Linux kernel's aacraid implementation. This allows a local user to cause out-of-bound access and crash the system by changing a certain size value...

5.1CVSS5.6AI score0.00404EPSS
Exploits0References21Affected Software1
Veracode
Veracode
added 2019/05/02 5:49 a.m.17 views

User-After-Free

firefox is vulnerable touse-after-free vulnerability. The vulnerability exists in the nsFrameManager::CaptureFrameState function and remote attackers can execute arbitrary code by leveraging improper interaction between restyling and the Web Animations model implementation...

9.8CVSS9.5AI score0.04091EPSS
Exploits0References13Affected Software1
Veracode
Veracode
added 2019/05/02 5:18 a.m.27 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service. It was found that the Linux kernel's keyring implementation would leak memory when adding a key to a keyring via the addkey function. A local attacker could use this flaw to exhaust all available memory on the system...

4.9CVSS5.4AI score0.0048EPSS
Exploits0References19Affected Software1
Veracode
Veracode
added 2019/05/02 5:13 a.m.31 views

Sandbox Protection Bypass

The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause t...

10CVSS5.5AI score0.07224EPSS
Exploits1References39Affected Software4
Veracode
Veracode
added 2019/05/02 5:13 a.m.32 views

Sandbox Protection Bypass

The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause t...

10CVSS5.5AI score0.07224EPSS
Exploits1References42Affected Software4
Veracode
Veracode
added 2019/05/02 5:13 a.m.35 views

Sandbox Protection Bypass

The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause t...

10CVSS5.5AI score0.07224EPSS
Exploits1References39Affected Software4
Veracode
Veracode
added 2019/05/02 5:13 a.m.50 views

Sandbox Protection Bypass

The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause t...

10CVSS5.5AI score0.07224EPSS
Exploits1References39Affected Software4
Veracode
Veracode
added 2019/05/02 5:12 a.m.49 views

Privilege Escalation

The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Multiple flaws were discovered in the Libraries, 2D, and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass certain...

6.8CVSS4.7AI score0.04102EPSS
Exploits0References32Affected Software3
Rows per page
Query Builder