Lucene search
K

195 matches found

OSV
OSV
added 2019/02/18 11:54 p.m.3 views

GHSA-3X83-P476-VV95 Downloads Resources over HTTP in selenium-standalone-painful

Affected versions of selenium-standalone-painful insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code...

9.3CVSS7.5AI score0.02021EPSS
Exploits0References3
OSV
OSV
added 2019/02/18 11:54 p.m.11 views

GHSA-4V2C-G2XC-47FV Downloads Resources over HTTP in massif

Affected versions of massif insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS8.1AI score0.01682EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2019/02/18 11:54 p.m.24 views

Downloads Resources over HTTP in iedriver

Affected versions of iedriver insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the syste...

9.3CVSS5.6AI score0.01682EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2019/02/18 11:50 p.m.28 views

Downloads Resources over HTTP in cue-sdk-node

Affected versions of cue-sdk-node insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the...

9.3CVSS6.4AI score0.01752EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2019/02/18 11:50 p.m.38 views

Downloads Resources over HTTP in webrtc-native

Affected versions of webrtc-native insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the...

9.3CVSS4AI score0.02104EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2019/02/18 11:48 p.m.19 views

robot-js downloads Resources over HTTP

Affected versions of robot-js insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the syste...

9.3CVSS7.6AI score0.01611EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/02/18 11:48 p.m.2 views

GHSA-6V7P-J23V-4XMW robot-js downloads Resources over HTTP

Affected versions of robot-js insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the syste...

7.5CVSS6.3AI score0.01611EPSS
Exploits0References3
OSV
OSV
added 2019/02/18 11:47 p.m.0 views

GHSA-CVX3-PQMJ-X57X scalajs-standalone-bin Downloads Resources over HTTP

Affected versions of scalajs-standalone-bin insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code executio...

9.3CVSS6.3AI score0.01752EPSS
Exploits0References3
OSV
OSV
added 2019/02/18 11:45 p.m.15 views

GHSA-59M2-J944-839W clang-extra downloads Resources over HTTP

Affected versions of clang-extra insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the...

8.1CVSS8.1AI score0.01752EPSS
Exploits0References3
OSV
OSV
added 2019/02/18 11:45 p.m.21 views

GHSA-QHM8-M2C4-9MW7 Downloads Resources over HTTP in qbs

Affected versions of qbs insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS8.1AI score0.01682EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2019/02/18 11:44 p.m.24 views

Downloads Resources over HTTP in tomita

Affected versions of tomita insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS5.5AI score0.01682EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/02/18 11:44 p.m.33 views

GHSA-CR8H-X88H-JWJ2 wixtoolset downloads Resources over HTTP

Affected versions of wixtoolset insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the...

8.1CVSS8.1AI score0.02211EPSS
Exploits0References4
OSV
OSV
added 2019/02/18 11:44 p.m.24 views

GHSA-7R2X-3QCM-8VFW herbivore downloads Resources over HTTP

Affected versions of herbivore insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the syst...

8.1CVSS8.1AI score0.02189EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2019/02/18 11:44 p.m.22 views

libsbml downloads Resources over HTTP

Affected versions of libsbml insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS8.1AI score0.02021EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2019/02/18 11:44 p.m.24 views

Downloads Resources over HTTP in mystem-wrapper

Affected versions of mystem-wrapper insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the...

9.3CVSS6.4AI score0.01682EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/02/18 11:42 p.m.19 views

GHSA-VCPH-57HV-89C4 Downloads Resources over HTTP in serc.js

Affected versions of serc.js insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS8.1AI score0.01682EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2019/02/18 11:42 p.m.43 views

Downloads Resources over HTTP in serc.js

Affected versions of serc.js insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

9.3CVSS6.4AI score0.01682EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2019/02/18 11:42 p.m.18 views

GHSA-G7W9-VM5M-48Q8 Downloads Resources over HTTP in arcanist

Affected versions of arcanist insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the syste...

9.3CVSS8.1AI score0.01682EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2019/02/18 11:41 p.m.23 views

Downloads Resources over HTTP in windows-iedriver

Affected versions of windows-iedriver insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on t...

9.3CVSS6.4AI score0.01682EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/02/18 11:34 p.m.15 views

GHSA-92QM-HC53-JJRJ ibapi downloads Resources over HTTP

Affected versions of ibapi insecurely download an executable over an unencrypted HTTP connection. In scenarios where an attacker has a privileged network position, it is possible to intercept the response and replace the executable with a malicious one, resulting in code execution on the system...

8.1CVSS8.1AI score0.02336EPSS
Exploits0References6
Rows per page
Query Builder