Lucene search
K

582 matches found

Openbugbounty
Openbugbounty
added 2023/12/04 5:39 a.m.6 views

janborkenstein.com Improper Access Control vulnerability OBB-3801853

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/11/12 10:27 p.m.7 views

jan-claudius-lechner.de Improper Access Control vulnerability OBB-3778763

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/10/28 6:51 p.m.7 views

jan-riedel.de Improper Access Control vulnerability OBB-3767539

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.6AI score
Exploits0
OpenVAS
OpenVAS
added 2023/10/25 12:0 a.m.37 views

Fedora: Security Advisory for fbthrift (FEDORA-2023-17efd3f2cd)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.6AI score0.99999EPSS
Exploits19References4
Openbugbounty
Openbugbounty
added 2023/10/24 7:27 p.m.10 views

jan-franzen.de Improper Access Control vulnerability OBB-3765140

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.6AI score
Exploits0
Ubuntu
Ubuntu
added 2023/07/27 9:41 a.m.69 views

USN-5193-3: X.Org X Server vulnerabilities

USN-5193-1 fixed several vulnerabilities in X.Org. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled certain inputs. An attacker could use this issue to cause the server to crash,...

7.8CVSS7.5AI score0.00571EPSS
Exploits0
0day.today
0day.today
added 2023/06/12 12:0 a.m.584 views

Oracle Weblogic PreAuth Remote Command Execution Exploit

Oracle Weblogic versions 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0 prior to the Jan 2023 security update are vulnerable to an unauthenticated remote code execution vulnerability due to a post deserialization vulnerability. This Metasploit module exploits this vulnerability to trigger the JNDI...

7.5CVSS8AI score0.99811EPSS
Exploits10
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/17 3:45 p.m.16 views

Security Bulletin: Multiple vulnerabilities in IBM® Java SDK affect WebSphere Service Registry and Repository due to October 2022 CPU and January 2023 CPU plus deferred CVE-2022-21426 and CVE-2022-3676

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, used by WebSphere Service Registry and Repository. These issues were disclosed as part of the IBM Java SDK updates in October 2022 and January 2023. These issues are addressed by WebSphere Application Server shipped...

6.5CVSS6.2AI score0.03203EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.39 views

RHEL 8 : mysql:8.0 (RHSA-2023:3087)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3087 advisory. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and...

7.5CVSS6.7AI score0.43131EPSS
Exploits0References83
AlmaLinux
AlmaLinux
added 2023/05/09 12:0 a.m.76 views

Important: mysql security update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. The following packages have been upgraded to a later upstream version: mysql 8.0.32. BZ2177731, BZ2177732 Security Fixes: mysql: Server: Security:...

7.5CVSS6.7AI score0.43131EPSS
Exploits0References76
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/13 2:14 a.m.42 views

Security Bulletin: Multiple security vulnerabilities has been identified in IBM WebSphere Application Server shipped with Tivoli Netcool/OMNIbus WebGUI - January 2023 CPU plus deferred CVE-2022-21426

Summary Websphere Application Server WAS is shipped as a component of Tivoli Netcool/OMNIbus WebGUI. Information about security vulnerabilities affecting WAS has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section...

5.3CVSS6.9AI score0.03203EPSS
Exploits0Affected Software1
Packet Storm
Packet Storm
added 2023/04/06 12:0 a.m.213 views

Answerdev 1.0.3 Account Takeover

Exploit Title: Answerdev 1.0.3 - Account Takeover Date: Reported on Jan 24th 2023 Exploit Author: Eduardo Pérez-Malumbres Cervera @blueudp Vendor Homepage: https://answer.dev/ Software Link: https://github.com/answerdev/answer Version: 1.0.3 Tested on: Ubuntu 22.04 / Debian 11 CVE : CVE-2023-0744...

9.8CVSS9.4AI score0.06368EPSS
Exploits4
Openbugbounty
Openbugbounty
added 2023/03/20 11:35 a.m.7 views

jan-steen.de Cross Site Scripting vulnerability OBB-3227782

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Tenable Nessus
Tenable Nessus
added 2023/03/09 12:0 a.m.40 views

Solaris 10 (sparc) : 148419-04

SunOS 5.10: nssdns patch. Date this patch was last updated by Sun : Jan/16/23 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include"compat.inc"; if description...

9.8CVSS7.8AI score0.04729EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2023/03/09 12:0 a.m.39 views

Solaris 10 (x86) : 148420-04

SunOS 5.10x86: nssdns patch. Date this patch was last updated by Sun : Jan/16/23 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include"compat.inc"; if description...

9.8CVSS7.8AI score0.04729EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/03/07 9:43 a.m.43 views

Moderate: Red Hat Security Advisory: rh-mysql80-mysql security update

An update for rh-mysql80-mysql is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.4AI score0.43131EPSS
Exploits0References36
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/27 7:34 p.m.41 views

Security Bulletin: IBM b-type SAN directors and switches affected by Java Technology Edition Quarterly CPU - Jan 2017 vulnerabilities.

Summary IBM b-type SAN directors and switches addressing CVEs pertaining to vulnerabilities in Java Technology Edition Quarterly CPU - Jan 2017. Vulnerability Details Relevant CVE Information: CVEID: CVE-2017-3289 DESCRIPTION: An unspecified vulnerability in Oracle Java SE and Java SE Embedded...

9.6CVSS7.8AI score0.95707EPSS
Exploits13Affected Software2
Ubuntu
Ubuntu
added 2023/02/16 2:9 p.m.78 views

USN-5778-2: X.Org X Server vulnerabilities

USN-5778-1 fixed several vulnerabilities in X.Org. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Jan-Niklas Sohn discovered that X.Org X Server extensions contained multiple security issues. An attacker could possibly use these...

8.8CVSS8AI score0.02685EPSS
Exploits0
NVD
NVD
added 2023/02/09 7:15 p.m.19 views

CVE-2023-21427

Improper access control vulnerability in NfcTile prior to SMR Jan-2023 Release 1 allows to attacker to use NFC without user recognition...

6.5CVSS5.7AI score0.00256EPSS
Exploits0References1
NVD
NVD
added 2023/02/09 7:15 p.m.30 views

CVE-2023-21430

An out-of-bound read vulnerability in mapToBuffer function in libSDKRecognitionText.spensdk.samsung.so library prior to SMR JAN-2023 Release 1 allows attacker to cause memory access fault...

7.8CVSS5.4AI score0.00178EPSS
Exploits0References1
Rows per page
Query Builder