Lucene search
K

6352 matches found

OSV
OSV
added 2021/03/22 7:15 p.m.4 views

CVE-2021-22320

There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some versions of IPS...

7.5CVSS7.1AI score0.00727EPSS
Exploits0References1
Fedora
Fedora
added 2021/03/22 2:10 a.m.56 views

[SECURITY] Fedora 34 Update: varnish-modules-0.17.1-1.fc34

This is a collection of modules "vmods" extending Varnish VCL used for describing HTTP request/response policies with additional capabilities. This collection contains the following vmods: bodyaccess, header, saintmode, tcp, var, vsthrottle, xkey...

7.5CVSS0.8AI score0.01495EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/03/21 12:0 a.m.4 views

The vulnerability of the Blink display module in Google Chrome browsers allows a hacker to gain access to confidential data, compromise its integrity, and cause service interruptions.

The vulnerability of Google Chrome’s Blink rendering module relates to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions...

7.3CVSS7.7AI score0.01522EPSS
Exploits0References11Affected Software5
RedhatCVE
RedhatCVE
added 2021/03/16 8:37 p.m.28 views

CVE-2021-3447

A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode. These parameters were not protected by the nolog feature. An...

5.5CVSS3.9AI score0.00333EPSS
Exploits0References3
NVD
NVD
added 2021/03/16 3:15 p.m.19 views

CVE-2021-28543

Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service daemon restart in some configurations. This does not affect organizations that only install the Varnish Cache product; however, it is common to install both Varnish Cache and varnish-modules. Specifically, ...

7.5CVSS0.01495EPSS
Exploits0References2
OSV
OSV
added 2021/03/16 3:15 p.m.5 views

CVE-2021-28543

Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service daemon restart in some configurations. This does not affect organizations that only install the Varnish Cache product; however, it is common to install both Varnish Cache and varnish-modules. Specifically, ...

7.5CVSS7.1AI score0.01495EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2021/03/16 3:15 p.m.22 views

CVE-2021-28543

Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service daemon restart in some configurations. This does not affect organizations that only install the Varnish Cache product; however, it is common to install both Varnish Cache and varnish-modules. Specifically, ...

7.5CVSS7.1AI score0.01495EPSS
Exploits0References2
Prion
Prion
added 2021/03/16 3:15 p.m.32 views

Null pointer dereference

Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service daemon restart in some configurations. This does not affect organizations that only install the Varnish Cache product; however, it is common to install both Varnish Cache and varnish-modules. Specifically, ...

5CVSS7.4AI score0.01495EPSS
Exploits0References2Affected Software3
Cvelist
Cvelist
added 2021/03/16 2:43 p.m.25 views

CVE-2021-28543

Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service daemon restart in some configurations. This does not affect organizations that only install the Varnish Cache product; however, it is common to install both Varnish Cache and varnish-modules. Specifically, ...

4CVSS7.6AI score0.01495EPSS
Exploits0References2
CVE
CVE
added 2021/03/16 2:43 p.m.196 views

CVE-2021-28543

Technical details about CVE-2021-28543 are not publicly provided in the supplied documents; no affected versions or fixes are confirmed here. Monitor for updates from vendors and security advisories.

7.5CVSS7.3AI score0.01495EPSS
Exploits0References2Affected Software2
Debian CVE
Debian CVE
added 2021/03/16 2:43 p.m.26 views

CVE-2021-28543

Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service daemon restart in some configurations. This does not affect organizations that only install the Varnish Cache product; however, it is common to install both Varnish Cache and varnish-modules. Specifically, ...

7.5CVSS7.4AI score0.01495EPSS
Exploits0
CNNVD
CNNVD
added 2021/03/16 12:0 a.m.5 views

Martin Blix Grydeland varnish-modules 代码问题漏洞

Martin Blix Grydeland varnish-modules is an open source application by Martin Blix Grydeland. It is used to describe HTTP request/response policies with additional functionality. A security vulnerability exists in varnish-modules that could allow a remote attacker to cause a denial of service...

7.5CVSS7.3AI score0.01495EPSS
Exploits0References4
OSV
OSV
added 2021/03/15 9:31 p.m.2 views

USN-4804-1 puppet vulnerabilities

It was discovered that Puppet installed modules with world writable permissions. An attacker could use this vulnerability to execute arbitrary code or cause a denial of service. CVE-2017-10689 It was discovered that Puppet could be used to force YAML deserialization in an unsafe manner. A remote...

8.2CVSS6.8AI score0.02375EPSS
Exploits0References3
Kitploit
Kitploit
added 2021/03/15 11:30 a.m.54 views

DLLHSC - DLL Hijack SCanner A Tool To Assist With The Discovery Of Suitable Candidates For DLL Hijacking

DLL Hijack SCanner - A tool to generate leads and automate the discovery of candidates for DLL Search Order Hijacking Contents of this repository This repository hosts the Visual Studio project file for the tool DLLHSC, the project file for the API hooking functionality detour, the project file f...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2021/03/15 12:0 a.m.7 views

SYS.2.3.A14

Peripheriegeraete SOLLTEN nur nutzbar sein, wenn sie auf einer zentral verwalteten Whitelist gefuehrt sind. Kernelmodule fuer Peripheriegeraete SOLLTEN nur geladen und aktiviert werden, wenn das Geraet auf der Whitelist steht. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might...

7.3AI score
Exploits0References1
Rapid7 Blog
Rapid7 Blog
added 2021/03/12 9:45 p.m.369 views

Metasploit Wrap-Up

Archive directory traversals, now with your daily allowance of JSP In a year already full of hot vulnerabilities, CVE-2021-21972 in VMware's vCenter Server may already seem like old news. It's not, though! Thanks to wvu-r7 for grabbing this unauthenticated file upload combined with archive...

10CVSS1.5AI score0.9957EPSS
Exploits55
Mageia
Mageia
added 2021/03/12 1:25 a.m.16 views

Updated glib2.0 packages fix security vulnerabilities

Fix various instances within GLib where gmemdup was vulnerable to a silent integer truncation and heap overflow problem discovered by Kevin Backhouse, work by Philip Withnall 2319 Fix some issues with handling over-long invalid input when parsing for GDate !1824 Don't load GIO modules or parse...

0.8AI score
Exploits0References3
CNNVD
CNNVD
added 2021/03/12 12:0 a.m.8 views

M-System Giken Co M-System DL8 安全漏洞

M-System Giken Co The M-System DL8 is an Ethernet adapter from Japan M-System Giken Co. Provides types designed to connect DL8 and R8 series modules. A security vulnerability exists in the M-System Giken Co M-System DL8, which can be exploited by an unauthorized attacker to perform an operation...

4.3CVSS5.8AI score0.00769EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.25 views

NewStart CGSL MAIN 4.06 : sudo Multiple Vulnerabilities (NS-SA-2021-0001)

The remote NewStart CGSL host, running version MAIN 4.06, has sudo packages installed that are affected by multiple vulnerabilities: - In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process. pwfeedback is a...

9CVSS7.7AI score0.99295EPSS
Exploits103References7
RedHat Linux
RedHat Linux
added 2021/03/02 7:19 p.m.3 views

grub2: Use-after-free in rmmod command

A flaw was found in grub2. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The...

8.2CVSS5.9AI score0.01152EPSS
Exploits0References4
Rows per page
Query Builder