Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2013-3637

Malware in sbrugna...

4.3CVSS6.3AI score0.01533EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-29930

Malicious code in bioql PyPI...

9.8CVSS7.9AI score0.01002EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 11:27 a.m.10 views

CVE-2013-3704

The RPM GPG key import and handling feature in libzypp 12.15.0 and earlier reports a different key fingerprint than the one used to sign a repository when multiple key blobs are used, which might allow remote attackers to trick users into believing that the repository was signed by a...

4.3CVSS7AI score0.01533EPSS
Exploits0References1
OSV
OSV
added 2025/03/05 8:26 p.m.2 views

USN-7330-1 ansible vulnerabilities

It was discovered that Ansible did not properly verify certain fields of X.509 certificates. An attacker could possibly use this issue to spoof SSL servers if they were able to intercept network communications. This issue only affected Ubuntu 14.04 LTS. CVE-2015-3908 Martin Carpenter discovered...

7.8CVSS7.3AI score0.02458EPSS
Exploits2References9
CNNVD
CNNVD
added 2022/07/29 12:0 a.m.4 views

GitLab CE/EE 安全漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery, and other features. A security vulnerability exists in GitLab CE/EE that stems from improper acces...

4.3CVSS5.2AI score0.00731EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2020/01/14 12:0 a.m.8 views

Linux: SSH LogLevel

INFO level is the basic level that only records login activity of SSH users. In many situations, such as Incident Response, it is important to determine when a particular user was active on a system. The logout record can eliminate those users who disconnected, which helps narrow the field. VERBO...

6.9AI score
Exploits0References5
CVE
CVE
added 2018/07/31 9:0 p.m.103 views

CVE-2016-8614

CVE-2016-8614 affects Ansible before version 2.2.0, where the apt_key module does not properly verify key fingerprints. This allows a remote attacker to create an OpenPGP key that matches a short key ID and inject it in place of the legitimate key. The vulnerability is described consistently acro...

7.5CVSS7.3AI score0.02458EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2015/06/07 12:0 a.m.6 views

DSA-3281-1 Debian Security Team PGP/GPG key change notice

This is a notice that the Debian Security Team has changed its PGP/GPG contact key because of a periodic regular key rollover. The new key's fingerprint is: 0D59 D2B1 5144 766A 14D2 41C6 6BAF 400B 05C3 E651 The creation date is 2015-01-18 and it has been signed by the previous Security Team conta...

7.2AI score
Exploits0
Prion
Prion
added 2013/10/28 10:55 p.m.12 views

Hardcoded credentials

The RPM GPG key import and handling feature in libzypp 12.15.0 and earlier reports a different key fingerprint than the one used to sign a repository when multiple key blobs are used, which might allow remote attackers to trick users into believing that the repository was signed by a...

4.3CVSS7.1AI score0.01533EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2013/02/28 12:0 a.m.18 views

Nmap NSE 6.01: ssh-hostkey

Shows SSH hostkeys. Shows the target SSH server's key fingerprint and with high enough verbosity level the public key itself. It records the discovered host keys in 'nmap.registry' for use by other scripts. Output can be controlled with the 'sshhostkey' script argument. The script also includes a...

Exploits0
Nmap
Nmap
added 2011/12/30 4:5 a.m.1840 views

ssh-hostkey NSE Script

Shows SSH hostkeys. Shows the target SSH server's key fingerprint and with high enough verbosity level the public key itself. It records the discovered host keys in nmap.registry for use by other scripts. Output can be controlled with the sshhostkey script argument. You may also compare the...

10CVSS9.4AI score0.99448EPSS
Exploits33
securityvulns
securityvulns
added 2009/03/02 12:0 a.m.26 views

HTC Touch vCard over IP Denial of Service PoC Code

Hello, PoC code for testing the MSL-2008-002 vulnerability HTC Touch vCard over IP Denial of Service is now available at: http://poc.mseclab.com/pocs/MSL-2008-002-PoC.py The code provide means for demonstrating the HTC Touch vCard over IP DoS by sending vCards to port UDP/9204 of the target IP...

0.2AI score
Exploits0
Rows per page
Query Builder