Lucene search
K

1155 matches found

BDU FSTEC
BDU FSTEC
added 2022/05/05 12:0 a.m.6 views

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component of the database management system involves insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service interruptions using the MySQL network protocol...

6.8CVSS6.3AI score0.01216EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/05/05 12:0 a.m.5 views

Vulnerability of the Server component: The MySQL Server, a database management system component, allows attackers to gain unauthorized access to protected information or cause service failures.

The vulnerability of the MySQL Server component relates to insufficient validation of input data. Exploiting this vulnerability may allow an attacker, operating remotely, to gain unauthorized access to protected information or cause service failures using the MySQL network protocol...

5.5CVSS6.4AI score0.01509EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/05/05 12:0 a.m.6 views

The vulnerability of the server virtualization automation design (Automation Design) SCADA system Yokogawa CENTUM VP’s network protocol implementation allows a hacker to exploit the functions provided by the AD server.

The vulnerability of the server network protocol implementation in the Automation Design SCADA system of Yokogawa CENTUM VP is related to errors during the authentication process. Exploiting this vulnerability allows a malicious actor to utilize the features provided by the AD server...

6.5CVSS7.7AI score0.00915EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/05/05 12:0 a.m.5 views

Vulnerability of the Server component: The MySQL Server database management system, which allows a hacker to cause service interruptions.

Vulnerability of the MySQL Server component: The DDL system for managing databases, MySQL Server, is vulnerable due to insufficient validation of input data. Exploitation of this vulnerability can allow an attacker to cause service interruptions using the MySQL network protocol...

4.9CVSS6.3AI score0.01196EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/05/05 12:0 a.m.5 views

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component of the database management system involves insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service interruptions using the MySQL network protocol...

6.8CVSS6.3AI score0.01216EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2022/05/02 3:17 a.m.24 views

Zope Object Database (ZODB) Authentication bypass in ZEO storage servers

Zope Object Database ZODB before 3.8.2, when certain Zope Enterprise Objects ZEO database sharing is enabled, allows remote attackers to bypass authentication via vectors involving the ZEO network protocol...

7.5CVSS7AI score0.0286EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2022/05/02 3:17 a.m.14 views

GHSA-5432-C996-HVHJ Zope Object Database (ZODB) Authentication bypass in ZEO storage servers

Zope Object Database ZODB before 3.8.2, when certain Zope Enterprise Objects ZEO database sharing is enabled, allows remote attackers to bypass authentication via vectors involving the ZEO network protocol...

8.7CVSS6.4AI score0.0286EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/04/28 4:42 p.m.73 views

Important: Red Hat Security Advisory: xmlrpc-c security update

An update for xmlrpc-c is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.8CVSS7.4AI score0.04915EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/04/28 4:21 p.m.69 views

Important: Red Hat Security Advisory: xmlrpc-c security update

An update for xmlrpc-c is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

9.8CVSS7.4AI score0.04915EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2022/04/28 2:7 p.m.37 views

xmlrpc-c security update

An update is available for xmlrpc-c. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list XML-RPC is a remote procedure call RPC protocol that uses XML to encode its...

9.8CVSS10AI score0.04915EPSS
Exploits0
AlmaLinux
AlmaLinux
added 2022/04/28 2:7 p.m.56 views

Important: xmlrpc-c security update

XML-RPC is a remote procedure call RPC protocol that uses XML to encode its calls and HTTP as a transport mechanism. The xmlrpc-c packages provide a network protocol to allow a client program to make a simple RPC remote procedure call over the Internet. It converts an RPC into an XML document,...

9.8CVSS10AI score0.04915EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2022/04/26 11:16 a.m.71 views

Important: Red Hat Security Advisory: xmlrpc-c security update

An update for xmlrpc-c is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

9.8CVSS7.4AI score0.04915EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/22 1:35 p.m.48 views

Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - curl (CVE-2021-22898)

Summary Security Vulnerabilities affect IBM Cloud Private - curl Vulnerability Details CVEID: CVE-2021-22898 DESCRIPTION: cURL libcurl could allow a remote attacker to obtain sensitive information, caused by a flaw in the option parser for sending NEWENV variables. By sending a specially-crafted...

3.1CVSS0.7AI score0.04385EPSS
Exploits1Affected Software1
OpenVAS
OpenVAS
added 2022/04/20 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-1450)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.3AI score0.67994EPSS
Exploits15References2
OpenVAS
OpenVAS
added 2022/04/14 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-5377-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS7.3AI score0.67994EPSS
Exploits20References2
BDU FSTEC
BDU FSTEC
added 2022/04/11 12:0 a.m.4 views

The vulnerability of the Core server component of Oracle WebLogic Server allows a hacker to gain full control over the application.

The vulnerability of the Core server component of Oracle WebLogic Server is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to gain full control over the application through the use of the T3 protocol on the network...

10CVSS6.9AI score0.04141EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/04/07 12:0 a.m.7 views

The vulnerability of the Core server component of Oracle WebLogic Server allows a perpetrator to gain unauthorized access to read, modify, or delete data, or to cause a service failure.

The vulnerability of the Core server component of Oracle WebLogic Server is related to insufficient validation of input data. Exploiting this vulnerability may allow an attacker, operating remotely, to gain unauthorized access to read, modify, or delete data, or to cause service failures using...

6.5CVSS6.8AI score0.03618EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/04/07 12:0 a.m.5 views

The vulnerability of the Web Access component of the Primavera Portfolio Management software allows a perpetrator to trigger a service failure.

The vulnerability of the Web Access component of the Primavera Portfolio Management software solution relates to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using HTTP protocols over the network...

4.3CVSS6.4AI score0.00813EPSS
Exploits0References4Affected Software1
Ubuntu
Ubuntu
added 2022/04/06 9:21 p.m.141 views

USN-5368-1: Linux kernel vulnerabilities

It was discovered that the BPF verifier in the Linux kernel did not properly restrict pointer types in certain situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-23222 It was discovered that the network traffic contro...

9.1CVSS7.8AI score0.67994EPSS
Exploits29
BDU FSTEC
BDU FSTEC
added 2022/04/06 12:0 a.m.6 views

The vulnerability of the DNP traffic analyzer of Wireshark allows a hacker to cause a service failure.

The vulnerability of the DNP traffic analyzer of Wireshark relates to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability allows a remote attacker to cause a service failure...

7.8CVSS7.4AI score0.03296EPSS
Exploits1References9Affected Software3
Rows per page
Query Builder