Lucene search
+L

177 matches found

Tenable Nessus
Tenable Nessus
added 2024/02/15 12:0 a.m.33 views

AlmaLinux 8 : dotnet7.0 (ALSA-2024:0806)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:0806 advisory. - .NET Denial of Service Vulnerability CVE-2024-21386, CVE-2024-21404 Note that Nessus has not tested for these issues but has instead relied only on the...

7.5CVSS8.2AI score0.02707EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/01/12 12:0 a.m.23 views

AlmaLinux 9 : nss (ALSA-2024:0108)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:0108 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. T...

6.5CVSS7.2AI score0.00816EPSS
Exploits0References2
Code423n4
Code423n4
added 2023/10/25 12:0 a.m.9 views

Manipulation of NFV can trick it's buyer to have it on unexpected condition.

Lines of code Vulnerability details Impact NFV can be sold at a price not expected by the user or may be susceptible to liquidation shortly after buying it. Proof of Concept openSAFE function in ODSafeManager is supposed to be called by the ODProxy and mints nft for it, furthermore it calls...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/04/17 4:32 p.m.34 views

Israeli Spyware Vendor QuaDream to Shut Down Following Citizen Lab and Microsoft Expose

Israeli spyware vendor QuaDream is allegedly shutting down its operations in the coming days, less than a week after its hacking toolset was exposed by Citizen Lab and Microsoft. The development was reported by the Israeli business newspaper Calcalist, citing unnamed sources, adding the company...

6.3AI score
Exploits0
Cvelist
Cvelist
added 2023/03/08 2:33 p.m.46 views

CVE-2022-20929

A vulnerability in the upgrade signature verification of Cisco Enterprise NFV Infrastructure Software NFVIS could allow an unauthenticated, local attacker to provide an unauthentic upgrade file for upload. This vulnerability is due to insufficient cryptographic signature verification of upgrade...

7.8CVSS7.7AI score0.00188EPSS
Exploits0References1
CISA
CISA
added 2022/10/06 12:0 a.m.15 views

Cisco Releases Security Updates for Multiple Products

Cisco has released security updates to address vulnerabilities in multiple Cisco products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. For updates addressing lower severity vulnerabilities, see the Cisco Security Advisories page. CISA...

1.6AI score
Exploits0References3
Cisco
Cisco
added 2022/10/05 4:0 p.m.104 views

Cisco Enterprise NFV Infrastructure Software Improper Signature Verification Vulnerability

A vulnerability in the upgrade signature verification of Cisco Enterprise NFV Infrastructure Software NFVIS could allow an unauthenticated, local attacker to provide an unauthentic upgrade file for upload. This vulnerability is due to insufficient cryptographic signature verification of upgrade...

7.8CVSS7.5AI score0.00188EPSS
Exploits0References1
CNVD
CNVD
added 2022/05/07 12:0 a.m.55 views

Cisco Enterprise NFV Infrastructure Software Privilege Licensing and Access Control Issues Vulnerability (CNVD-2022-89249)

Cisco Enterprise NFV Infrastructure Software is a set of NVF infrastructure software platform from Cisco USA. The platform enables full lifecycle management of virtualization services through a central orchestrator and controller.Cisco Enterprise NFV Infrastructure Software is vulnerable to...

9.9CVSS2.5AI score0.1076EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/07 12:0 a.m.34 views

Cisco Enterprise NFV Infrastructure Software XML External Entity Injection Vulnerability

Cisco Enterprise NFV Infrastructure Software is a set of NVF infrastructure software platform from Cisco USA. The platform enables full lifecycle management of virtualization services through a central orchestrator and controller.Cisco Enterprise NFV Infrastructure Software is vulnerable to an XM...

9.9CVSS1.6AI score0.10922EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/07 12:0 a.m.50 views

Cisco Enterprise NFV Infrastructure Software Command Injection Vulnerability (CNVD-2022-89248)

Cisco Enterprise NFV Infrastructure Software is a set of NVF infrastructure software platform from Cisco USA. The platform enables full lifecycle management of virtualization services through a central orchestrator and controller.Cisco Enterprise NFV Infrastructure Software is vulnerable to a...

9.9CVSS2AI score0.10173EPSS
Exploits1References1
CISA
CISA
added 2022/05/05 12:0 a.m.12 views

Cisco Releases Security Updates for Enterprise NFV Infrastructure Software

Cisco has released security updates to address multiple vulnerabilities in Enterprise NFV Infrastructure Software. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Cisco advisory cisco-sa-NFVIS-MUL-7DySRX9 an...

2.3AI score
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/05/04 11:0 p.m.8 views

CVE-2022-20780

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

9.9CVSS7.4AI score0.10922EPSS
Exploits1References3
NVD
NVD
added 2022/05/04 5:15 p.m.17 views

CVE-2022-20779

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

9.9CVSS0.10173EPSS
Exploits1References2
Prion
Prion
added 2022/05/04 5:15 p.m.19 views

Information disclosure

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

4.3CVSS7.6AI score0.10922EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/05/04 5:15 p.m.13 views

Information disclosure

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

9.3CVSS8.8AI score0.10173EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/05/04 5:5 p.m.14 views

CVE-2022-20780 Cisco Enterprise NFV Infrastructure Software Vulnerabilities

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

9.9CVSS7.2AI score0.10922EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/05/04 5:5 p.m.13 views

CVE-2022-20779 Cisco Enterprise NFV Infrastructure Software Vulnerabilities

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

9.9CVSS7.2AI score0.10173EPSS
Exploits1References2
CVE
CVE
added 2022/05/04 5:5 p.m.172 views

CVE-2022-20779

Cisco NFVIS (Cisco Enterprise NFV Infrastructure Software) has CVE-2022-20779 and related vulnerabilities allowing an attacker to escape a guest VM to the host, inject root-level commands during image registration, or leak host data to VMs. Affected component is the NFVIS image/registration pathw...

9.9CVSS9AI score0.10173EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/05/04 5:5 p.m.23 views

CVE-2022-20779 Cisco Enterprise NFV Infrastructure Software Vulnerabilities

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

9.9CVSS9.8AI score0.10173EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/05/04 5:5 p.m.7 views

CVE-2022-20777 Cisco Enterprise NFV Infrastructure Software Vulnerabilities

Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software NFVIS could allow an attacker to escape from the guest virtual machine VM to the host machine, inject commands that execute at the root level, or leak system data from the host to the VM. For more information about these...

9.9CVSS7.1AI score0.1076EPSS
Exploits1References2
Rows per page
Query Builder