CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2809 matches found

OpenVAS•added 2019/06/19 12:0 a.m.•46 views

Fedora Update for libreswan FEDORA-2019-1bd9cfb718

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

3.5CVSS5.8AI score0.00512EPSS

Exploits0References2

Fedora•added 2019/06/18 9:19 p.m.•28 views

[SECURITY] Fedora 29 Update: libreswan-3.29-1.fc29

Libreswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the...

7.5CVSS1.3AI score0.02748EPSS

Exploits1

Fedora•added 2019/06/13 1:15 a.m.•29 views

[SECURITY] Fedora 30 Update: libreswan-3.29-1.fc30

7.5CVSS1.3AI score0.02748EPSS

Exploits1

OpenVAS•added 2019/06/13 12:0 a.m.•69 views

Fedora Update for libreswan FEDORA-2019-f7fb531958

5.8AI score

Exploits0References2

RedHat Linux•added 2019/05/14 7:16 p.m.•1 views

Kernel: ipsec: xfrm: use-after-free leading to potential privilege escalation

The Linux kernel is vulerable to a use-after-free flaw when Transformation User configuration interfaceCONFIGXFRMUSER compile-time configuration were enabled. This vulnerability occurs while closing a xfrm netlink socket in xfrmdumppolicydone. A user/process could abuse this flaw to potentially...

7.8CVSS7.1AI score0.0215EPSS

Exploits3References4

Tenable Nessus•added 2019/05/13 12:0 a.m.•53 views

EulerOS Virtualization 3.0.1.0 : kernel (EulerOS-SA-2019-1475)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The skbflowdissect function in net/core/flowdissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denia...

7.2CVSS6.7AI score0.10209EPSS

Exploits19References22

OpenVAS•added 2019/05/07 12:0 a.m.•73 views

Fedora Update for strongswan FEDORA-2018-a0d22c2a21

7.5CVSS7.7AI score0.01888EPSS

Exploits0References2

OSV•added 2019/05/03 4:29 p.m.•3 views

CVE-2019-1706

A vulnerability in the software cryptography module of the Cisco Adaptive Security Virtual Appliance ASAv and Firepower 2100 Series running Cisco Adaptive Security Appliance ASA Software could allow an unauthenticated, remote attacker to cause an unexpected reload of the device that results in a...

8.6CVSS7.3AI score0.0107EPSS

Exploits0References1

Prion•added 2019/05/03 4:29 p.m.•17 views

Race condition

7.8CVSS8.3AI score0.0107EPSS

Exploits0References1Affected Software1

NVD•added 2019/05/03 4:29 p.m.•29 views

CVE-2019-1706

8.6CVSS8.5AI score0.0107EPSS

Exploits0References1

Vulnrichment•added 2019/05/03 4:10 p.m.•7 views

CVE-2019-1706 Cisco Adaptive Security Appliance Software IPsec Denial of Service Vulnerability

8.6CVSS7.4AI score0.0107EPSS

Exploits0References1

Cvelist•added 2019/05/03 4:10 p.m.•23 views

CVE-2019-1706 Cisco Adaptive Security Appliance Software IPsec Denial of Service Vulnerability

8.6CVSS8.5AI score0.0107EPSS

Exploits0References1

Veracode•added 2019/05/02 4:56 a.m.•30 views

Weak Cryptographic Protection

The kernel-rt packages contain the Linux kernel, the core of any Linux operating system. A flaw was found in the way IP packets with an Internet Header Length ihl of zero were processed in the skbflowdissect function in the Linux kernel. A remote attacker could use this flaw to trigger an infinit...

7.1CVSS6.9AI score0.09408EPSS

Exploits6References25Affected Software2

Veracode•added 2019/05/02 4:56 a.m.•32 views

Use-After-Free

7.1CVSS6.9AI score0.09408EPSS

Exploits6References16Affected Software1

Cisco•added 2019/05/01 4:0 p.m.•39 views

Cisco Adaptive Security Appliance Software IPsec Denial of Service Vulnerability

8.6CVSS8.5AI score0.0107EPSS

Exploits0References1

CNVD•added 2019/04/16 12:0 a.m.•3 views

Sophos IPSec Client Access Control Error Vulnerability

Sophos IPSec Client is a VPN client application. An access control error vulnerability exists in Sophos IPSec Client version 11.04 NCPSecure Entry Client version 10.11 r32792. The vulnerability arises from the network system or product not properly restricting access to resources from unauthorize...

9.3CVSS6.9AI score0.00611EPSS

Exploits0References1

NVD•added 2019/04/09 9:29 p.m.•17 views

CVE-2019-8456

Check Point IKEv2 IPsec VPN up to R80.30, in some less common conditions, may allow an attacker with knowledge of the internal configuration and setup to successfully connect to a site-to-site VPN server...

5.9CVSS5.7AI score0.2039EPSS

Exploits0References1

Prion•added 2019/04/09 9:29 p.m.•19 views

Design/Logic Flaw

4.3CVSS5.6AI score0.2039EPSS

Exploits0References1Affected Software1

ICS•added 2019/04/04 12:0 a.m.•73 views

Rockwell Automation Stratix 5950

1. EXECUTIVE SUMMARY CVSS v3 8.6 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Rockwell Automation Equipment: Stratix 5950 Vulnerability: Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a remote attacker to cause an...

8.6CVSS8.6AI score0.16221EPSS

Exploits0References5

IBM Security Bulletins•added 2019/03/02 3:15 p.m.•16 views

Security Bulletin: A Security Vulnerability affects IBM Cloud Private - CVE-2018-1938

Summary Intra-service communications to IBM Cloud Private Identity and Access Management IAM pdp service uses http Vulnerability Details CVEID: CVE-2018-1938 DESCRIPTION: IBM Cloud Private could alllow a local user with administrator privileges to intercept highly sensitive unencrypted data. CVSS...

4.4CVSS0.9AI score0.00257EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by