Lucene search
K

141 matches found

OSV
OSV
added 2021/10/19 4:32 p.m.13 views

GSD-2021-1001702 io_uring: allow conditional reschedule for intensive iterators

iouring: allow conditional reschedule for intensive iterators This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.11 by commit...

7.2AI score
Exploits0
Veracode
Veracode
added 2021/09/20 10:48 a.m.27 views

Regular Expression Denial Of Service (ReDoS)

ansi-regex is vulnerable to regular expression denial of service. The vulnerability exists due to an inefficient handling of user-provided string pattern, causing intensive processing of regular expression machine and application crash...

7.5CVSS3.1AI score0.03552EPSS
Exploits1References4Affected Software8
Veracode
Veracode
added 2021/09/16 6:11 a.m.58 views

Regular Expression Denial Of Service (ReDoS)

prism is vulnerable to regular expression denial of service. An attacker is able to send a malicious input string,leading to an intensive usage of CPU and an application crash...

6.5CVSS4.2AI score0.01045EPSS
Exploits1References3Affected Software3
Fedora
Fedora
added 2021/03/19 8:26 p.m.59 views

[SECURITY] Fedora 34 Update: nodejs-14.16.0-1.fc34

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

7.8CVSS7.9AI score0.77385EPSS
Exploits1
CNNVD
CNNVD
added 2021/02/16 12:0 a.m.8 views

Hamilton-medical Hamilton-T1 Information Disclosure Vulnerability

The Hamilton-medical Hamilton-T1 is an industrial control device from Hamilton-medical USA. It combines the functionality of a full-featured ICU ventilator with the compactness and ruggedness required for transport Features. An information disclosure vulnerability exists in the Hamilton-T1...

4.3CVSS5.8AI score0.00283EPSS
Exploits0References3
OSV
OSV
added 2021/01/21 2:15 p.m.5 views

CVE-2020-4958

IBM Security Identity Governance and Intelligence 5.2.6 does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources. IBM X-Force ID: 192209...

9.8CVSS7.1AI score0.01696EPSS
Exploits0References2
Fedora
Fedora
added 2021/01/10 1:28 a.m.99 views

[SECURITY] Fedora 33 Update: nodejs-14.15.4-1.fc33

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

8.1CVSS7.6AI score0.16296EPSS
Exploits3
Fedora
Fedora
added 2020/12/01 1:13 a.m.15 views

[SECURITY] Fedora 32 Update: nodejs-12.18.4-1.fc32

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

1.6AI score
Exploits0
Fedora
Fedora
added 2020/10/28 1:23 a.m.13 views

[SECURITY] Fedora 32 Update: nodejs-12.19.0-1.fc32

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

1.6AI score
Exploits0
Fedora
Fedora
added 2020/08/11 1:28 p.m.14 views

[SECURITY] Fedora 31 Update: nodejs-12.18.3-1.fc31

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

1.6AI score
Exploits0
HPE Security Bulletins
HPE Security Bulletins
added 2020/06/17 12:0 a.m.3 views

HPESBHF04009 rev.1 - Certain HPE Solid State Drives, Local Disclosure of Information

Potential Security Impact: Local: Disclosure of Information SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE 6.4TB NVMe x4 Lanes Mixed Use MO006400KWVVA SSD - Prior to HPK1 HPE 3.2TB NVMe x4 Lanes Mixed Use MO003200KWVUV SSD - Prior to HPK1 HPE 1.6TB NVMe x4 Lanes Mixed Use...

7.9CVSS6.3AI score0.00331EPSS
Exploits0
Kitploit
Kitploit
added 2020/02/22 9:0 p.m.160 views

Gadgetinspector - A Byte Code Analyzer For Finding Deserialization Gadget Chains In Java Applications

This project inspects Java libraries and classpaths for gadget chains. Gadgets chains are used to construct exploits for deserialization vulnerabilities. By automatically discovering possible gadgets chains in an application's classpath penetration testers can quickly construct exploits and...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2020/02/09 1:33 a.m.43 views

[SECURITY] Fedora 31 Update: nodejs-12.15.0-1.fc31

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

9.8CVSS1.6AI score0.57132EPSS
Exploits0
Fedora
Fedora
added 2020/01/24 5:8 p.m.49 views

[SECURITY] Fedora 31 Update: nodejs-12.14.1-3.fc31

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

8.1CVSS1.6AI score0.03342EPSS
Exploits0
CNVD
CNVD
added 2019/12/24 12:0 a.m.1 views

Information Leakage Vulnerability in Intensive Intelligent Portal Platform of TORS Information Technology Co.

The main company of TORS Information Technology Co., Ltd. provides general platform products, industry application solutions and data services for key industry markets, such as government, media, security, finance, enterprise, intellectual property, publishing and net credit. Intensive Intelligen...

6.5AI score
Exploits0
OpenVAS
OpenVAS
added 2019/08/25 12:0 a.m.78 views

Fedora Update for nodejs FEDORA-2019-5a6a7bc12c

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.8AI score0.87806EPSS
Exploits1References2
Citrix
Citrix
added 2019/02/21 12:0 a.m.12 views

How to pin Citrix Hypervisor Virtual CPUs to specific Physical CPUs

Citrix Hypervisor maps vCPUs to pCPUs by default in a semi-even way to distribute VM load on the host. In some cases it may be needed to have a specific mapping, for example, if some VMs will be CPU intensive while other wont, the intensive VMs can be mapped to exclusive physical CPUs while the...

6.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/10/09 3:0 p.m.49 views

When Endpoint Detection and Response (EDR) is not enough

As cybercriminals continue to validate the reality that no prevention-based security control is going to stop every threat every time, companies are expanding beyond prevention-only approaches and closing the gap with endpoint detection and response solutions. But as we consider this strategy, on...

0.3AI score
Exploits0
Fedora
Fedora
added 2018/06/18 4:20 p.m.51 views

[SECURITY] Fedora 28 Update: nodejs-8.11.3-1.fc28

Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...

7.8CVSS1.6AI score0.07855EPSS
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2018/05/04 2:15 p.m.23 views

Turning the Tables on Cyber Attackers

Today, Carbon Black joins the community of public companies NASDAQ: CBLK. While we are humbled and excited by this milestone, we also acknowledge there’s plenty of progress still to be made. For Carbon Black as a company and the industry as a whole, that progress starts with shifting the balance ...

0.5AI score
Exploits0
Rows per page
Query Builder