CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2020/09/01 7:32 p.m.•83 views

Important: Red Hat Security Advisory: Ansible security and bug fix update (2.9.13)

An update for ansible is now available for Ansible Engine 2.9 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

7.1CVSS7.4AI score0.00233EPSS

Exploits0References2

Prion•added 2020/08/26 5:15 p.m.•16 views

Input validation

A vulnerability in the IPv6 packet processing engine of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to insufficient validation of incoming IPv6 traffic. A...

5CVSS5.4AI score0.01737EPSS

Exploits0References1Affected Software114

Vulnrichment•added 2020/08/26 4:15 p.m.•11 views

CVE-2020-3496 Cisco Small Business Smart and Managed Switches Denial of Service Vulnerability

5.3CVSS7AI score0.01737EPSS

Cisco•added 2020/08/19 4:0 p.m.•37 views

Cisco Small Business Smart and Managed Switches Denial of Service Vulnerability

5.3CVSS1.9AI score0.01737EPSS

RedHat Linux•added 2020/08/18 4:34 p.m.•1 views

wildfly: exposed setting of TCCL via the EmbeddedManagedProcess API

A flaw was found in Wildfly, where the embedded managed process API has an exposed setting of the Thread Context Classloader TCCL. This setting is exposed as a public method, which can bypass the security manager. The highest threat from this vulnerability is to confidentiality...

Cvelist•added 2020/08/17 6:1 p.m.•25 views

CVE-2020-3363 Cisco Small Business Smart and Managed Switches Denial of Service Vulnerability

8.6CVSS8.3AI score0.01819EPSS

RedHat Linux•added 2020/08/17 1:28 p.m.•3 views

wildfly: exposed setting of TCCL via the EmbeddedManagedProcess API

RedHat Linux•added 2020/08/17 1:28 p.m.•3 views

wildfly: exposed setting of TCCL via the EmbeddedManagedProcess API

RedHat Linux•added 2020/08/17 1:28 p.m.•3 views

wildfly: exposed setting of TCCL via the EmbeddedManagedProcess API

RedHat Linux•added 2020/08/17 1:25 p.m.•2 views

wildfly: exposed setting of TCCL via the EmbeddedManagedProcess API

OpenVAS•added 2020/08/17 12:0 a.m.•19 views

Cisco Small Business Switch Detection (SNMP)

SNMP based detection of Cisco Small Business Switch devices. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1AI score

Cisco•added 2020/08/05 4:0 p.m.•26 views

Cisco Small Business Smart and Managed Switches Denial of Service Vulnerability

8.6CVSS8.5AI score0.01819EPSS

Hacker One•added 2020/08/03 1:15 p.m.•34 views

GitLab: Store-XSS in error message of build-dependencies

Hi, A stored-XSS is existing in error message of build-dependencies. Fortunately it currently does not exist in gitlab.com. It seems that gitlab.com disables the dependencies validation. However this feature is enable by default in self-managed installation. Steps to reproduce The following steps...

3.5CVSS0.4AI score0.68639EPSS

Imperva Blog•added 2020/07/21 11:24 a.m.•163 views

Imperva Shields Against Windows DNS Server RCE Vulnerability (CVE-2020-1350)

Recently, Check Point researchers found a 17-year-old high-profile flaw, SIGRed CVE-2020-1350. The flaw is a wormable, critical vulnerability in the Windows DNS server, and can be triggered by a malicious DNS response. On a zero to 10 scale, this vulnerability has received a CVSS base score of 10...

10CVSS9AI score0.92178EPSS

Exploits21

RedHat Linux•added 2020/07/16 7:21 p.m.•184 views

Critical: Red Hat Security Advisory: .NET Core security and bugfix update

An update for .NET Core is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.8CVSS7.8AI score0.94243EPSS

Exploits10References2

Prion•added 2020/07/14 8:15 p.m.•13 views

Hardcoded credentials

Dell EMC OpenManage Integration for Microsoft System Center OMIMSSC for SCCM and SCVMM versions prior to 7.2.1 contain a hard-coded cryptographic key vulnerability. A remote unauthenticated attacker may exploit this vulnerability to gain access to the appliance data for remotely managed devices...

5CVSS7.7AI score0.0104EPSS

Exploits0References1Affected Software2

Microsoft Secure•added 2020/07/14 2:0 p.m.•25 views

Microsoft Intelligent Security Association expands to include managed security service providers

We’d planned a splashy party at Microsoft Inspire to announce our newest Microsoft Intelligent Security Association MISA members and introduce them to association members, but given our world today, I am instead picturing you reading this announcement curled up in a chair with a cup of coffee...

0.1AI score

FireEye•added 2020/07/13 12:0 a.m.•27 views

SCANdalous! (External Detection Using Network Scan Data and Automation)

Real Quick In case you’re thrown by that fantastic title, our lawyers made us change the name of this project so we wouldn’t get sued. SCANdalous—a.k.a. Scannah Montana a.k.a. Scanny McScanface a.k.a. “Scan I Kick It? Yes You Scan”—had another name before today that, for legal reasons, we’re...

7AI score

Exploits0References10

The Hacker News•added 2020/07/06 11:38 a.m.•71 views

Cato MDR: Managed Threat Detection and Response Made Easy

Lately, we can't help noticing an endless cycle where the more enterprises invest in threat prevention; the more hackers adapt and continue to penetrate enterprises. To make things worse, detecting these penetrations still takes too long with an average dwell time that exceeds 100 ! days. To keep...

7AI score