Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

27 matches found

Microsoft CVE
Microsoft CVEadded 2023/04/25 7:0 a.m.2 views

vitess allows users to create keyspaces that can deny access to already existing keyspaces

...

4.1CVSS4.6AI score0.00469EPSS
Exploits0
Veracode
Veracodeadded 2023/04/19 4:52 p.m.15 views

Improper Input Validation

github.com/vitessio/vitess is vulnerable to Improper Input Validation. The vulnerability is due to allowing users to create keyspaces that can deny access to already existing keyspaces which allows a malicious attacker to create unnecessary keyspaces resulting in availability issues...

4.1CVSS4.5AI score0.00469EPSS
Exploits0References4Affected Software1
CNNVD
CNNVDadded 2023/04/14 12:0 a.m.2 views

Vitess 安全漏洞

Vitess is a database clustering system for horizontally scaling MySQL from Vitess. A security vulnerability exists in Vitess versions prior to 16.0.1 that stems from an error message received by anyone attempting to view keyspaces from VTAdmin...

4.1CVSS4.9AI score0.00469EPSS
Exploits0References4
OSV
OSVadded 2023/04/11 9:12 p.m.18 views

GHSA-735R-HV67-G38F vitess allows users to create keyspaces that can deny access to already existing keyspaces

Impact Users can either intentionally or inadvertently create a keyspace containing / characters such that from that point on, anyone who tries to view keyspaces from VTAdmin will receive an error. Trying to list all the keyspaces using vtctldclient GetKeyspaces will also return an error. Note th...

4.1CVSS3.9AI score0.00469EPSS
Exploits0References5
Github Security Blog
Github Security Blogadded 2023/04/11 9:12 p.m.17 views

vitess allows users to create keyspaces that can deny access to already existing keyspaces

Impact Users can either intentionally or inadvertently create a keyspace containing / characters such that from that point on, anyone who tries to view keyspaces from VTAdmin will receive an error. Trying to list all the keyspaces using vtctldclient GetKeyspaces will also return an error. Note th...

4.1CVSS4.6AI score0.00469EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologiesadded 2023/04/11 12:0 a.m.1 views

PT-2023-22193 · Vitess · Vitess

Name of the Vulnerable Software and Affected Versions: Vitess versions prior to 16.0.1 Description: The issue arises when a keyspace containing / characters is created, intentionally or inadvertently, causing errors when attempting to view keyspaces from VTAdmin or when using vtctldclient...

4.1CVSS3.7AI score0.00469EPSS
Exploits0References10
Kitploit
Kitploitadded 2021/04/18 9:30 p.m.119 views

Spraygen - Password List Generator For Password Spraying

Password list generator for password spraying - prebaked with goodies Version 1.4 Generates permutations of Months, Seasons, Years, Sports Teams NFL, NBA, MLB, NHL, Sports Scores, "Password", and even Iterable Keyspaces of a specified size. All permutations are generated with common attributes...

7.3AI score
Exploits0References2
Rows per page
Query Builder