Lucene search
+L

165 matches found

osv
osv
added 2023/09/19 3:40 p.m.2 views

SUSE-SU-2023:3688-1 Security update for gstreamer-plugins-good

This update for gstreamer-plugins-good fixes the following issues: - CVE-2021-3497: Matroskademux: Fix extraction of multichannel WavPack bsc1184739. - CVE-2022-1920: Fixed integer overflow in WavPack header handling code bsc1201688. - CVE-2022-1921: Fixed integer overflow resulting in heap...

8.8CVSS8.3AI score0.01714EPSS
Exploits7References19
susecve
susecve
added 2023/05/20 2:16 a.m.3 views

SUSE CVE-2023-32249

In the Linux kernel, the following vulnerability has been resolved: ksmbd: not allow guest user on multichannel This patch return STATUSNOTSUPPORTED if binding session is guest...

5.5CVSS6.5AI score0.00151EPSS
Exploits0References3
susecve
susecve
added 2023/05/20 2:16 a.m.5 views

SUSE CVE-2023-32256

A flaw was found in the Linux kernel's ksmbd component. A race condition between smb2 close operation and logoff in multichannel connections could result in a use-after-free issue...

7.5CVSS6.4AI score0.00526EPSS
Exploits0References3
zdi
zdi
added 2023/05/17 12:0 a.m.23 views

Linux Kernel ksmbd Multichannel Improper Authentication Session Hijack Vulnerability

This vulnerability allows remote attackers to hijack a session on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability, but only systems with ksmbd enabled are vulnerable. The specific flaw exists within the handling of Session ID within Multichanne...

6.5CVSS6.7AI score0.00151EPSS
Exploits0References1
openvas
openvas
added 2023/02/10 12:0 a.m.15 views

Fedora: Security Advisory for opusfile (FEDORA-2023-6b83109e4e)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.6AI score0.00395EPSS
Exploits1References2
fedora
fedora
added 2023/02/02 2:19 a.m.23 views

[SECURITY] Fedora 37 Update: mingw-opusfile-0.12-9.fc37

libopusfile provides a high-level API for decoding and seeking within .opus files. It includes: Support for all files with at least one Opus stream including multichannel files or Ogg files where Opus is muxed with something else. Full support, including seeking, for chained files. A simple stere...

7.8CVSS7.6AI score0.00395EPSS
Exploits1
osv
osv
added 2021/09/02 7:58 a.m.5 views

SUSE-SU-2021:2916-1 Security update for gstreamer-plugins-good

This update for gstreamer-plugins-good fixes the following issues: - CVE-2021-3497: Matroskademux: Fix extraction of multichannel WavPack bsc1184739...

7.8CVSS7.7AI score0.01219EPSS
Exploits0References3
osv
osv
added 2021/09/02 7:57 a.m.4 views

OPENSUSE-SU-2021:2915-1 Security update for gstreamer-plugins-good

This update for gstreamer-plugins-good fixes the following issues: - CVE-2021-3498: Matroskademux: initialize track context out parameter to NULL before parsing bsc1184735. - CVE-2021-3497: Matroskademux: Fix extraction of multichannel WavPack bsc1184739...

7.8CVSS7.7AI score0.0177EPSS
Exploits0References5
bdu_fstec
bdu_fstec
added 2021/05/24 12:0 a.m.9 views

The vulnerability of the Multichannel Framework component of the Oracle PeopleSoft Enterprise PeopleTools business application allows a perpetrator to gain unauthorized access to protected information or to modify, add, or delete data.

The vulnerability of the Multichannel Framework component of the Oracle PeopleSoft Enterprise PeopleTools business application suite is related to insufficient validation of input data. Exploiting this vulnerability may allow an attacker to gain unauthorized access to protected information or to...

6.1CVSS6.8AI score0.00853EPSS
Exploits0References2Affected Software1
osv
osv
added 2021/04/22 10:15 p.m.7 views

CVE-2021-2216

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Multichannel Framework. Supported versions that are affected are 8.56, 8.57 and 8.58. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSo...

6.1CVSS7.1AI score0.00853EPSS
Exploits0References1
cnvd
cnvd
added 2021/04/21 12:0 a.m.9 views

Unspecified Vulnerability in Oracle PeopleSoft Enterprise PeopleTools (CNVD-2021-33840)

Oracle PeopleSoft Enterprise PeopleTools provides a comprehensive set of development tools that support the development and runtime of PeopleSoft applications. A security vulnerability exists in the Multichannel Framework component in Oracle PeopleSoft Enterprise PeopleTools versions 8.56, 8.57,...

6.1CVSS6.8AI score0.00853EPSS
Exploits0References1
cnnvd
cnnvd
added 2021/04/20 12:0 a.m.7 views

Oracle PeopleSoft Enterprise PeopleTools 安全漏洞

Oracle PeopleSoft Enterprise PeopleTools provides a comprehensive set of development tools that support the development and runtime of PeopleSoft applications. A security vulnerability exists in the Multichannel Framework component in Oracle PeopleSoft Enterprise PeopleTools versions 8.56, 8.57,...

6.1CVSS5.6AI score0.00853EPSS
Exploits0References4
osv
osv
added 2020/12/20 3:22 p.m.7 views

OPENSUSE-SU-2020:2298-1 Security update for openssh

This update for openssh fixes the following issues: - CVE-2020-14145: Fixed a potential information leak during host key exchange bsc1173513. - Supplement libgtk-3-0 instead of libX11-6 to avoid installation on a textmode install bsc1142000 - Fixed an issue where oracle cluster with cluvfy using...

5.9CVSS5.5AI score0.02057EPSS
Exploits2References8
nessus
nessus
added 2020/12/18 12:0 a.m.34 views

SUSE SLED15 / SLES15 Security Update : openssh (SUSE-SU-2020:3866-1)

This update for openssh fixes the following issues : CVE-2020-14145: Fixed a potential information leak during host key exchange bsc1173513. Supplement libgtk-3-0 instead of libX11-6 to avoid installation on a textmode install bsc1142000 Fixed an issue where oracle cluster with cluvfy using 'scp'...

5.9CVSS6.8AI score0.02057EPSS
Exploits2References9
nessus
nessus
added 2019/04/26 12:0 a.m.49 views

SUSE SLES11 Security Update : openssh (SUSE-SU-2019:14030-1)

This update for openssh fixes the following issues : Security vulnerabilities addressed : CVE-2019-6109: Fixed an character encoding issue in the progress display of the scp client that could be used to manipulate client output, allowing for spoofing during file transfers bsc1121816. CVE-2019-611...

6.8CVSS7.1AI score0.58204EPSS
Exploits9References11
osv
osv
added 2019/04/25 8:34 a.m.14 views

SUSE-SU-2019:14030-1 Security update for openssh

This update for openssh fixes the following issues: Security vulnerabilities addressed: - CVE-2019-6109: Fixed an character encoding issue in the progress display of the scp client that could be used to manipulate client output, allowing for spoofing during file transfers bsc1121816. -...

6.8CVSS6.7AI score0.58204EPSS
Exploits9References9
osv
osv
added 2019/04/12 1:58 p.m.12 views

SUSE-SU-2019:0941-1 Security update for openssh

This update for openssh fixes the following issues: Security vulnerabilities addressed: - CVE-2019-6109: Fixed an character encoding issue in the progress display of the scp client that could be used to manipulate client output, allowing for spoofing during file transfers bsc1121816. -...

6.8CVSS6.7AI score0.58204EPSS
Exploits9References8
ibm
ibm
added 2018/06/16 7:32 p.m.44 views

Security Bulletin: Potential Security Vulnerabilities in Oracle Java 6 SDK affecting IBM WebSphere Multichannel Bank Transformation Toolkit version 8

Summary IBM WebSphere Multichannel Bank Transformation Toolkit version 8.x has a potential security exposure due to vulnerabilities in the Oracle Java 6 SDK that allow remote attackers to affect confidentiality, integrity and availability of the Java platform via various vectors. It happens only ...

10CVSS7.4AI score0.98704EPSS
Exploits32Affected Software1
cnvd
cnvd
added 2017/04/27 12:0 a.m.54 views

Oracle PeopleSoft Enterprise PeopleTools Unauthorized Operation Vulnerability

Oracle PeopleSoft Products is a suite of enterprise human capital management solutions from Oracle Corporation, and PeopleSoft Enterprise PeopleTools is one of the tools and technology components that transforms the way organizations manage, use, and maintain their PeopleSoft software. PeopleSoft...

6.5CVSS6.6AI score0.09636EPSS
Exploits5References1
osv
osv
added 2017/04/24 7:59 p.m.7 views

CVE-2017-3547

Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products subcomponent: MultiChannel Framework. Supported versions that are affected are 8.54 and 8.55. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromis...

7.4CVSS5.8AI score0.02153EPSS
Exploits0References4
Rows per page
Query Builder