Lucene search
K

88 matches found

CNNVD
CNNVD
added 2024/01/09 12:0 a.m.5 views

Splunk Security Breach

Splunk is a suite of data collection and analysis software from Splunk, Inc. in the United States. The software is primarily used to collect, index, and analyze and the data it generates, including data generated by all IT systems and infrastructures physical, virtual machines, and cloud. A...

6.5CVSS6.7AI score0.00516EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/11/23 12:0 a.m.2 views

GnuTLS Security Vulnerabilities

GnuTLS is a free secure communication library for implementing SSL, TLS and DTLS protocols. A security vulnerability exists in GnuTLS version 3.6.7-4+deb10u11, which stems from a security flaw in the RSA-PSK ClientKeyExchange, where the response time to a misformatted ciphertext differs from the...

5.9CVSS6.8AI score0.01257EPSS
Exploits0References12
CNNVD
CNNVD
added 2023/11/22 12:0 a.m.6 views

Elasticsearch Security Vulnerabilities

Elasticsearch is a search engine based on the Lucene library. A security vulnerability exists in Elasticsearch that stems from the use of misformatted scripts in the script handler of the ingestion pipeline, which causes nodes to crash...

7.5CVSS6.8AI score0.00844EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/08/22 12:0 a.m.7 views

Moodle 安全漏洞

Moodle is a free, open source e-learning software platform, also known as a course management system, learning management system or virtual learning environment. A security vulnerability exists in Moodle that stems from a remote code execution vulnerability when parsing references to an incorrect...

6.4AI score
Exploits0References1
OSV
OSV
added 2023/08/09 10:15 a.m.3 views

CVE-2023-23903

An authenticated administrator can upload a SAML configuration file with the wrong format, with the application not checking the correct file format. Every subsequent application request will return an error. The whole application in rendered unusable until a console intervention...

4.9CVSS5.8AI score0.00501EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/06/21 12:0 a.m.5 views

ISC BIND 安全漏洞

ISC BIND is a suite of open source software that implements the DNS protocol from the US company ISC. A security vulnerability exists in ISC BIND 9, which stems from the fact that named instances can be remotely terminated using a zone with a misformatted NSEC record, which can be exploited by an...

7.5CVSS7.3AI score0.00868EPSS
Exploits0References4
CNVD
CNVD
added 2023/04/14 12:0 a.m.7 views

Wireshark Resource Management Error Vulnerability (CNVD-2023-62292)

Wireshark is a very popular network packet analyzer that intercepts various network packets and displays packet details. A security vulnerability exists in Wireshark. The vulnerability is related to the GQUIC parser. An attacker can exploit the vulnerability to inject misformatted packets into a...

6.5CVSS6.6AI score0.01001EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/04/12 12:0 a.m.2 views

Wireshark 资源管理错误漏洞

Wireshark is a very popular network packet analyzer that intercepts various network packets and displays packet details. A security vulnerability exists in Wireshark. The vulnerability is related to the GQUIC parser. An attacker can exploit the vulnerability to inject misformatted packets into a...

6.5CVSS6.7AI score0.01001EPSS
Exploits1References13
CNNVD
CNNVD
added 2023/04/05 12:0 a.m.5 views

Cisco Packet Data Network Gateway 安全漏洞

Cisco Packet Data Network Gateway is a key network function of Cisco's 4G mobile core network.PGW serves as an interface between the LTE network and other packet data networks. A security vulnerability exists in the Cisco Packet Data Network Gateway that arises from the Vector Packet Processor no...

7.5CVSS7.3AI score0.00866EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/04/04 12:0 a.m.4 views

Envoy 环境问题漏洞

Envoy is an open source distributed proxy server. Envoy suffers from an environmental issue vulnerability that stems from an incompatible HTTP/1 service that allows misformatted requests, which can lead to security policy bypass. The following versions are affected: versions prior to 1.26.0,...

9.1CVSS7.4AI score0.00869EPSS
Exploits1References7
CNNVD
CNNVD
added 2023/02/14 12:0 a.m.5 views

Splunk 安全漏洞

Splunk is a suite of data collection and analysis software from Splunk, Inc. in the United States. The software is primarily used to collect, index, and analyze and the data it generates, including data generated by all IT systems and infrastructures physical, virtual machines, and cloud. A...

7.5CVSS7.3AI score0.01028EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/11/18 12:0 a.m.6 views

Silicon Labs Gecko SDK 缓冲区错误漏洞

The Silicon Labs Gecko SDK GSDK is an open source library from Silicon Labs. Combines the Silicon Labs Wireless Software Development Kit SDK and the Gecko platform into one integrated package. A security vulnerability exists in the Silicon Labs Gecko SDK, which stems from a misformatted packet...

6.5CVSS7AI score0.00326EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/11/14 12:0 a.m.7 views

Silicon Labs Gecko SDK 缓冲区错误漏洞

The Silicon Labs Gecko SDK GSDK is an open source library from Silicon Labs. Combines the Silicon Labs Wireless Software Development Kit SDK and the Gecko platform into one integrated package. A buffer error vulnerability exists in the Silicon Labs Gecko SDK, which stems from a misformatted packe...

7.5CVSS7.7AI score0.00701EPSS
Exploits0References4
OSV
OSV
added 2022/10/10 12:15 a.m.8 views

AZL-11093 CVE-2022-42012 affecting package dbus for versions less than 1.15.2-2

An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash by sending a message with attached file descriptors in an unexpected format...

6.5CVSS6.8AI score0.0131EPSS
Exploits1References1
OSV
OSV
added 2022/10/10 12:15 a.m.3 views

UBUNTU-CVE-2022-42012

An issue was discovered in D-Bus before 1.12.24, 1.13.x and 1.14.x before 1.14.4, and 1.15.x before 1.15.2. An authenticated attacker can cause dbus-daemon and other programs that use libdbus to crash by sending a message with attached file descriptors in an unexpected format...

6.5CVSS6.8AI score0.0131EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/10/05 12:0 a.m.4 views

PT-2022-5134 · D-Bus +10 · D-Bus +10

Name of the Vulnerable Software and Affected Versions: D-Bus versions 1.12.24 and earlier, 1.13.x, 1.14.x before 1.14.4, and 1.15.x before 1.15.2 Description: An issue was discovered in D-Bus that allows an authenticated attacker to cause dbus-daemon and other programs that use libdbus to crash b...

6.8CVSS7.2AI score0.01417EPSS
Exploits4References102
CNNVD
CNNVD
added 2022/09/21 12:0 a.m.4 views

ISC BIND 数据伪造问题漏洞

ISC BIND is a suite of open source software that implements the DNS protocol from the US company ISC. A security vulnerability exists in BIND that originates from the use of a misformatted EdDSA signature that spoofs the target resolver, causing memory to crash due to insufficient resources. The...

7.5CVSS6.9AI score0.02176EPSS
Exploits0References25
CNNVD
CNNVD
added 2022/09/14 12:0 a.m.5 views

Hitachi Energy MicroSCADA X SYS600 输入验证错误漏洞

Hitachi Energy MicroSCADA X SYS600 is a SCADA product from Hitachi Japan. It ensures optimal control and reliable operation of your switching station through seamless integration and connectivity between different devices and systems. A security vulnerability exists in Hitachi Energy MicroSCADA X...

7.5CVSS7.3AI score0.00633EPSS
Exploits0References3
OSV
OSV
added 2022/07/18 11:15 p.m.3 views

CVE-2022-34634

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted det instructions rather create an exception...

5.5CVSS6.1AI score0.00237EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/07/18 11:15 p.m.2 views

CVE-2022-34634

CVA6 commit d315ddd0f1be27c1b3f27eb0b8daf471a952299a executes crafted or incorrectly formatted det instructions rather create an exception...

5.5CVSS5.9AI score0.00237EPSS
Exploits1References3
Rows per page
Query Builder