Lucene search
K

5122 matches found

RedhatCVE
RedhatCVE
added 2017/07/13 12:22 a.m.38 views

CVE-2017-7517

An input validation vulnerability exists in Openshift Enterprise due to a 1:1 mapping of tenants in Hawkular Metrics and projects/namespaces in OpenShift. If a user creates a project called "MyProject", and then later deletes it another user can then create a project called "MyProject" and access...

1.4AI score0.00448EPSS
Exploits0References1
Citrix
Citrix
added 2017/07/13 12:0 a.m.11 views

VPP Apps Does Not Appear on XenMobile Console After Accidental Deletion of the app.

Deleted VPP applications does not sync with XenMobile Server automatically. Summary VPP is an Apple Enterprise program to distribute corporate App license to device through MDM. Citrix XenMobile makes use of Apple's API to associate / disassociate license based which are distributed through...

6.6AI score
Exploits0
RedHat Linux
RedHat Linux
added 2017/07/12 1:12 p.m.69 views

Low: Red Hat Security Advisory: python-django-horizon security and bug fix update

An update for python-django-horizon is now available for Red Hat OpenStack Platform 9.0 Mitaka. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

4.8CVSS6AI score0.01054EPSS
Exploits0References3
n0where
n0where
added 2017/07/10 3:46 p.m.30 views

Network OSINT Gathering Tool: XRay

XRay is a tool for network OSINT gathering, its goal is to make some of the initial tasks of information gathering and network mapping automatic. How Does it Work? XRay is a very simple tool, it works this way: 1. It’ll bruteforce subdomains using a wordlist and DNS requests. 2. For every...

6.7AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/07/07 2:53 p.m.26 views

CVE-2017-10913

The grant-table feature in Xen through 4.8.x provides false mapping information in certain cases of concurrent unmap calls, which allows backend attackers to obtain sensitive information or gain privileges, aka XSA-218 bug 1...

9.8CVSS5.9AI score0.02815EPSS
Exploits0References2
exploitpack
exploitpack
added 2017/07/07 12:0 a.m.27 views

Counter Strike: Condition Zero - .BSP Map File Code Execution

Counter Strike: Condition Zero - .BSP Map File Code Execution !/usr/bin/env python Counter Strike: Condition Zero BSP map exploit By @DigitalCold Jun 11, 2017 E-DB Note: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/42325.zip bsp-exploit-source.zip from binasc...

0.3AI score
Exploits0
CNVD
CNVD
added 2017/07/07 12:0 a.m.2 views

PostgreSQL PL/Java Change Type Mapping Vulnerability

PostgreSQL PL/Java is the PostgreSQL development team developed a database can be used in Java code to write stored procedures , triggers and functions of the open source project . A security vulnerability exists in PostgreSQL PL/Java versions 1.4.3 and earlier. A remote attacker could exploit th...

6.5CVSS6.7AI score0.00933EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/07/06 12:0 a.m.45 views

SUSE SLES11 Security Update : postgresql94 (SUSE-SU-2017:1783-1)

This update for postgresql93 fixes the following issues : - bsc1029547: Fix tests with timezone 2017a - CVE-2017-7486: Restrict visibility of pgusermappings.umoptions, to protect passwords stored as user mapping options. bsc1037624 - CVE-2017-7485: Recognize PGREQUIRESSL variable again. bsc103829...

7.5CVSS6.8AI score0.06331EPSS
Exploits0References11
OSV
OSV
added 2017/07/05 8:29 p.m.3 views

CVE-2017-9921

IrfanView version 4.44 32bit with TOOLS Plugin 4.50 might allow attackers to cause a denial of service or execute arbitrary code via a crafted file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77df0000!LdrpResGetMappingSize+0x00000000000003cc."...

7.8CVSS6AI score0.00486EPSS
Exploits0References1
OSV
OSV
added 2017/07/05 2:17 p.m.7 views

SUSE-SU-2017:1783-1 Security update for postgresql94

This update for postgresql93 fixes the following issues: - bsc1029547: Fix tests with timezone 2017a - CVE-2017-7486: Restrict visibility of pgusermappings.umoptions, to protect passwords stored as user mapping options. bsc1037624 - CVE-2017-7485: Recognize PGREQUIRESSL variable again. bsc1038293...

7.5CVSS6.4AI score0.06331EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2017/07/05 1:29 a.m.28 views

CVE-2017-10913

The grant-table feature in Xen through 4.8.x provides false mapping information in certain cases of concurrent unmap calls, which allows backend attackers to obtain sensitive information or gain privileges, aka XSA-218 bug 1...

9.8CVSS7.2AI score0.02815EPSS
Exploits0References2
NVD
NVD
added 2017/07/05 1:29 a.m.24 views

CVE-2017-10913

The grant-table feature in Xen through 4.8.x provides false mapping information in certain cases of concurrent unmap calls, which allows backend attackers to obtain sensitive information or gain privileges, aka XSA-218 bug 1...

9.8CVSS8.4AI score0.02815EPSS
Exploits0References6
OSV
OSV
added 2017/07/05 1:29 a.m.30 views

CVE-2017-10913

The grant-table feature in Xen through 4.8.x provides false mapping information in certain cases of concurrent unmap calls, which allows backend attackers to obtain sensitive information or gain privileges, aka XSA-218 bug 1...

9.8CVSS6.3AI score
Exploits0References6
OSV
OSV
added 2017/07/05 1:29 a.m.2 views

DEBIAN-CVE-2017-10920

The grant-table feature in Xen through 4.8.x mishandles a GNTMAPdevicemap and GNTMAPhostmap mapping, when followed by only a GNTMAPhostmap unmapping, which allows guest OS users to cause a denial of service count mismanagement and memory corruption or obtain privileged host OS access, aka XSA-224...

10CVSS6.5AI score0.02549EPSS
Exploits0References1
OSV
OSV
added 2017/07/05 1:29 a.m.1 views

ALPINE-CVE-2017-10920

The grant-table feature in Xen through 4.8.x mishandles a GNTMAPdevicemap and GNTMAPhostmap mapping, when followed by only a GNTMAPhostmap unmapping, which allows guest OS users to cause a denial of service count mismanagement and memory corruption or obtain privileged host OS access, aka XSA-224...

10CVSS6.5AI score0.02549EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/07/05 1:0 a.m.22 views

CVE-2017-10913

The grant-table feature in Xen through 4.8.x provides false mapping information in certain cases of concurrent unmap calls, which allows backend attackers to obtain sensitive information or gain privileges, aka XSA-218 bug 1...

7.1AI score0.02815EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2017/06/28 4:57 p.m.3 views

kernel: Incorrectly mapped contents of PIE executable

The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Linux Kernel version 4.11.5 is affected...

7.8CVSS7.2AI score0.01828EPSS
Exploits5References5
RedHat Linux
RedHat Linux
added 2017/06/28 2:52 p.m.6 views

python-django-horizon: XSS in federation mappings UI

A cross-site scripting flaw was discovered in the OpenStack dashboard horizon which allowed remote authenticated administrators to conduct XSS attacks using a crafted federation mapping rule. For this flaw to be exploited, federation mapping must be enabled in the dashboard...

4.8CVSS5.7AI score0.01054EPSS
Exploits0References4
OSV
OSV
added 2017/06/26 11:21 a.m.8 views

SUSE-SU-2017:1690-1 Security update for postgresql94

This update for postgresql94 to 9.4.12 fixes the following issues: Upstream changelogs: - https://www.postgresql.org/docs/9.4/static/release-9-4-12.html - https://www.postgresql.org/docs/9.4/static/release-9-4-11.html - https://www.postgresql.org/docs/9.4/static/release-9-4-10.html Security issue...

7.5CVSS6.8AI score0.06331EPSS
Exploits0References7
OSV
OSV
added 2017/06/20 5:29 p.m.2 views

CVE-2017-3096

Adobe Digital Editions versions 4.5.4 and earlier have an exploitable memory corruption vulnerability in the character code mapping module. Successful exploitation could lead to arbitrary code execution...

9.8CVSS6AI score0.06152EPSS
Exploits0References3
Rows per page
Query Builder