Lucene search
+L

569 matches found

cnvd
cnvd
added 2015/08/13 12:0 a.m.5 views

OpenAFS Denial of Service Vulnerability (CNVD-2015-05292)

OpenAFS is a distributed file system that allows sharing of archives and resources between systems over LANs and WANs. A security vulnerability exists in the pioctl support for the OSD FS command in IBM OpenAFS 1.6.12 and earlier versions, which stems from a program writing the result of an RPC...

2.1CVSS6.5AI score0.00351EPSS
Exploits0References1
redhat
redhat
added 2015/07/29 4:26 a.m.43 views

Important: Red Hat Security Advisory: Red Hat Gluster Storage 3.1 update

Red Hat Gluster Storage 3.1, which fixes multiple security issues, several bugs, and adds various enhancements, is now available. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

9.3CVSS6.1AI score0.06138EPSS
Exploits0References347
cnvd
cnvd
added 2015/04/23 12:0 a.m.62 views

OpenStack Object Storage Information Disclosure Vulnerability

OpenStack is a cloud platform management program developed by the National Aeronautics and Space Administration in collaboration with Rackspace in the U.S. OpenStack Object Storage a.k.a. Swift is one of these programs used to storage project for storing permanent static data. A security...

5.5CVSS6.9AI score0.03949EPSS
Exploits0References1
osv
osv
added 2015/04/17 5:59 p.m.7 views

CVE-2015-1856

OpenStack Object Storage Swift before 2.3.0, when allowversion is configured, allows remote authenticated users to delete the latest version of an object by leveraging listing access to the x-versions-location container...

6.2AI score
Exploits0References11
osv
osv
added 2015/04/17 5:59 p.m.4 views

DEBIAN-CVE-2015-1856

OpenStack Object Storage Swift before 2.3.0, when allowversion is configured, allows remote authenticated users to delete the latest version of an object by leveraging listing access to the x-versions-location container...

5.5CVSS6.2AI score0.03949EPSS
Exploits0References1
prion
prion
added 2015/04/17 5:59 p.m.23 views

Design/Logic Flaw

OpenStack Object Storage Swift before 2.3.0, when allowversion is configured, allows remote authenticated users to delete the latest version of an object by leveraging listing access to the x-versions-location container...

5.5CVSS6.6AI score0.03949EPSS
Exploits0References11Affected Software2
cve
cve
added 2015/04/17 5:0 p.m.103 views

CVE-2015-1856

Summary: CVE-2015-1856 affects OpenStack Object Storage (Swift) where, if allow_version is configured, an authenticated user who has listing access to the x-versions-location container can delete the latest version of a versioned object. This relies on Swift’s versioned-object handling and access...

5.5CVSS6AI score0.03949EPSS
Exploits0References11Affected Software1
ubuntucve
ubuntucve
added 2015/04/17 12:0 a.m.23 views

CVE-2015-1856

OpenStack Object Storage Swift before 2.3.0, when allowversion is configured, allows remote authenticated users to delete the latest version of an object by leveraging listing access to the x-versions-location container...

5.5CVSS6.7AI score0.03949EPSS
Exploits0References3
redhat
redhat
added 2015/04/16 1:52 p.m.35 views

Moderate: Red Hat Security Advisory: openstack-swift security update

Updated openstack-swift packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base...

4CVSS5.7AI score0.03023EPSS
Exploits0References3
redhat
redhat
added 2015/04/16 1:52 p.m.36 views

Moderate: Red Hat Security Advisory: openstack-swift security update

Updated openstack-swift packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base...

4CVSS5.7AI score0.03023EPSS
Exploits0References3
cnvd
cnvd
added 2015/03/12 12:0 a.m.5 views

Wireshark SCSI OSD Dissector 'packet-scsi-osd.c' Denial of Service Vulnerability

Wireshark is an open source network protocol analysis tool. An integer overflow in the dissectosd2cdbcontinuation function in the Wireshark SCSI OSD parser epan/dissectors/packet-scsi-osd.c allows attackers to exploit a vulnerability by submitting a special message to crash the application...

5CVSS7.2AI score0.02509EPSS
Exploits0References1
redhat
redhat
added 2014/10/30 7:45 p.m.29 views

php: unserialize() SPL ArrayObject / SPLObjectStorage type confusion flaw

A type confusion issue was found in the SPL ArrayObject and SPLObjectStorage classes' unserialize method. A remote attacker able to submit specially crafted input to a PHP application, which would then unserialize this input using one of the aforementioned methods, could use this flaw to execute...

7.5CVSS7.6AI score0.30128EPSS
Exploits4References4
redhat
redhat
added 2014/10/30 7:45 p.m.4 views

php: unserialize() SPL ArrayObject / SPLObjectStorage type confusion flaw

A type confusion issue was found in the SPL ArrayObject and SPLObjectStorage classes' unserialize method. A remote attacker able to submit specially crafted input to a PHP application, which would then unserialize this input using one of the aforementioned methods, could use this flaw to execute...

7.5CVSS7.6AI score0.30128EPSS
Exploits4References4
osv
osv
added 2014/10/17 3:55 p.m.12 views

CVE-2014-7960

OpenStack Object Storage Swift before 2.2.0 allows remote authenticated users to bypass the maxmetacount and other metadata constraints via multiple crafted requests which exceed the limit when combined...

6AI score
Exploits0References11
cvelist
cvelist
added 2014/10/17 3:0 p.m.29 views

CVE-2014-7960

OpenStack Object Storage Swift before 2.2.0 allows remote authenticated users to bypass the maxmetacount and other metadata constraints via multiple crafted requests which exceed the limit when combined...

6AI score0.03023EPSS
Exploits0References11
cve
cve
added 2014/10/17 3:0 p.m.68 views

CVE-2014-7960

CVE-2014-7960 affects OpenStack Object Storage (Swift) before 2.2.0. A vulnerability in metadata constraints allows remote authenticated users to bypass max_meta_count and related limits by issuing multiple crafted requests that exceed the configured threshold. The issue is confirmed in multiple ...

4CVSS6.1AI score0.03023EPSS
Exploits0References11Affected Software1
debiancve
debiancve
added 2014/10/17 3:0 p.m.63 views

CVE-2014-7960

OpenStack Object Storage Swift before 2.2.0 allows remote authenticated users to bypass the maxmetacount and other metadata constraints via multiple crafted requests which exceed the limit when combined...

4CVSS5.5AI score0.03023EPSS
Exploits0
redhat
redhat
added 2014/08/06 5:14 a.m.6 views

php: unserialize() SPL ArrayObject / SPLObjectStorage type confusion flaw

A type confusion issue was found in the SPL ArrayObject and SPLObjectStorage classes' unserialize method. A remote attacker able to submit specially crafted input to a PHP application, which would then unserialize this input using one of the aforementioned methods, could use this flaw to execute...

7.5CVSS7.6AI score0.30128EPSS
Exploits4References4
redhat
redhat
added 2014/07/24 5:21 p.m.34 views

Moderate: Red Hat Security Advisory: openstack-swift security update

Updated openstack-swift packages that fix one security issue are now available for Red Hat Enterprise Linux OpenStack Platform 5.0 Icehouse for Red Hat Enterprise Linux 7. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring...

4.3CVSS5.5AI score0.02083EPSS
Exploits0References2
osv
osv
added 2014/07/09 12:0 a.m.12 views

UBUNTU-CVE-2014-3515

The SPL component in PHP before 5.4.30 and 5.5.x before 5.5.14 incorrectly anticipates that certain data structures will have the array data type after unserialization, which allows remote attackers to execute arbitrary code via a crafted string that triggers use of a Hashtable destructor, relate...

7.5CVSS7.6AI score0.30128EPSS
Exploits4References3
Rows per page
Query Builder