Lucene search
K

665 matches found

OSV
OSV
added 2019/02/18 11:45 p.m.23 views

GHSA-QHM8-M2C4-9MW7 Downloads Resources over HTTP in qbs

Affected versions of qbs insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS8.1AI score0.01682EPSS
Exploits0References3
OSV
OSV
added 2019/02/18 11:45 p.m.15 views

GHSA-5RM3-QHXF-RH3R Downloads Resources over HTTP in co-cli-installer

Affected versions of co-cli-installer insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on t...

9.3CVSS8.1AI score0.01682EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2019/02/18 11:45 p.m.24 views

Downloads Resources over HTTP in fis-parser-sass-bin

Affected versions of fis-parser-sass-bin insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution o...

9.3CVSS6.4AI score0.01682EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2019/02/18 11:44 p.m.25 views

Downloads Resources over HTTP in tomita

Affected versions of tomita insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS5.5AI score0.01682EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/02/18 11:44 p.m.34 views

GHSA-CR8H-X88H-JWJ2 wixtoolset downloads Resources over HTTP

Affected versions of wixtoolset insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the...

8.1CVSS8.1AI score0.02211EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2019/02/18 11:44 p.m.36 views

mystem downloads Resources over HTTP

Affected versions of mystem insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS8.1AI score0.01682EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/02/18 11:44 p.m.17 views

GHSA-WX3Q-6X7X-JJW4 mystem downloads Resources over HTTP

Affected versions of mystem insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

8.1CVSS8.1AI score0.01682EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2019/02/18 11:44 p.m.22 views

libsbml downloads Resources over HTTP

Affected versions of libsbml insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS8.1AI score0.02021EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/02/18 11:44 p.m.14 views

GHSA-P9PM-55VP-2JQW Downloads Resources over HTTP in soci

Affected versions of soci insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS8.1AI score0.01682EPSS
Exploits0References3
OSV
OSV
added 2019/02/18 11:44 p.m.18 views

GHSA-WG5R-C793-W5W2 Downloads Resources over HTTP in mystem-wrapper

Affected versions of mystem-wrapper insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the...

9.3CVSS8.1AI score0.01682EPSS
Exploits0References3
OSV
OSV
added 2019/02/18 11:44 p.m.12 views

GHSA-M8PW-H8QJ-RGJ9 ipip-coffee downloads Resources over HTTP

Affected versions of ipip-coffee insecurely download resources over HTTP. In scenarios where an attacker has a privileged network position, they can modify or read such resources at will. This could impact the integrity and availability of the data being used to make geolocation decisions by an...

8.1CVSS7.9AI score0.00546EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2019/02/18 11:42 p.m.19 views

Downloads Resources over HTTP in rs-brightcove

Affected versions of rs-brightcove insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the...

9.3CVSS6.4AI score0.01752EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/02/18 11:42 p.m.16 views

GHSA-3W76-X94R-PW44 Downloads Resources over HTTP in rs-brightcove

Affected versions of rs-brightcove insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the...

9.3CVSS8.1AI score0.01752EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2019/02/18 11:42 p.m.44 views

Downloads Resources over HTTP in serc.js

Affected versions of serc.js insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS6.4AI score0.01682EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2019/02/18 11:42 p.m.30 views

Downloads Resources over HTTP in arcanist

Affected versions of arcanist insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the syste...

9.3CVSS5.4AI score0.01682EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/02/18 11:42 p.m.12 views

GHSA-FWHP-2HQR-6G72 Downloads Resources over HTTP in pk-app-wonderbox

Affected versions of pk-app-wonderbox insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on t...

9.3CVSS8.1AI score0.01682EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2019/02/18 11:41 p.m.26 views

openframe-ascii-image downloads Resources over HTTP

Affected versions of openframe-ascii-image insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution...

9.3CVSS8.1AI score0.01699EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/02/18 11:41 p.m.17 views

GHSA-XJ6F-X7JM-85FF openframe-ascii-image downloads Resources over HTTP

Affected versions of openframe-ascii-image insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution...

8.1CVSS8.1AI score0.01699EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2019/02/18 11:34 p.m.27 views

ibapi downloads Resources over HTTP

Affected versions of ibapi insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS8.1AI score0.02336EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2019/02/18 11:34 p.m.22 views

jdf-sass downloads Resources over HTTP

Affected versions of jdf-sass insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the syste...

9.3CVSS8.1AI score0.01631EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder