Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7820 matches found

Positive Technologies
Positive Technologiesadded 2022/10/29 12:0 a.m.7 views

PT-2022-27083 · Openstack · Openstack Sushy-Tools

Name of the Vulnerable Software and Affected Versions: OpenStack Sushy-Tools versions 0.21.0 and earlier VirtualBMC versions 2.2.2 and earlier Description: An issue was discovered where changing the boot device configuration with the affected packages removes password protection from the managed...

5.5CVSS5.3AI score0.0022EPSS
Exploits0References15
Tenable Nessus
Tenable Nessusadded 2022/10/28 12:0 a.m.19 views

RHEL 7 / 8 / 9 : Red Hat OpenStack Platform (puppet-mysql) (RHSA-2022:7238)

The remote Redhat Enterprise Linux 7 / 8 / 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:7238 advisory. Installs, configures, and manages the MySQL service. Security Fixes: Command Injection in the puppetlabs-mysql module CVE-2022-3276 For more...

8.8CVSS7.7AI score0.01574EPSS
Exploits0References4
OpenVAS
OpenVASadded 2022/10/28 12:0 a.m.15 views

SUSE: Security Advisory (SUSE-SU-2022:3791-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.02088EPSS
Exploits0References5
OpenVAS
OpenVASadded 2022/10/28 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2022:3801-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.02091EPSS
Exploits0References8
OpenVAS
OpenVASadded 2022/10/28 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2022:3804-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.7AI score0.0131EPSS
Exploits3References7
RedHat Linux
RedHat Linuxadded 2022/10/27 9:5 a.m.25 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform (puppet-mysql) security update

An update for puppet-mysql is now available for Red Hat OpenStack Platform 13.0 Queens, 16.1 Train, 16.2 Train and 17.0 Wallaby. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

8.8CVSS7.2AI score0.01574EPSS
Exploits0References2
OpenVAS
OpenVASadded 2022/10/27 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2022:3735-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.01597EPSS
Exploits1References4
OpenVAS
OpenVASadded 2022/10/26 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2022:3718-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.2AI score0.02473EPSS
Exploits2References5
Tenable Nessus
Tenable Nessusadded 2022/10/25 12:0 a.m.24 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Barbican vulnerability (USN-5697-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5697-1 advisory. Douglas Mendizabal discovered that Barbican incorrectly handled certain query strings. A remote attacker could possibly use this issue to...

5.9CVSS6.4AI score0.00433EPSS
Exploits0References2
OpenVAS
OpenVASadded 2022/10/25 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2022:3713-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.00606EPSS
Exploits4References6
Veracode
Veracodeadded 2022/10/20 12:45 a.m.21 views

Access Policy Bypass Via Query String Injection

openstack-barbican is vulnerable to policy bypasses. The vulnerability allows an attacker to bypass the policy via a query string when accessing the API...

5.9CVSS5.6AI score0.00433EPSS
Exploits0References4Affected Software1
CNNVD
CNNVDadded 2022/10/18 12:0 a.m.3 views

Red Hat OpenStack Platform 安全漏洞

Red Hat OpenStack Platform is a cloud computing management platform from the US-based Red Hat, Inc. A security vulnerability exists in Red Hat OpenStack Platform versions 16.1 and 16.2, which stems from an insecure default configuration in Tripleo-ansible, where permissions on sensitive files are...

5.5CVSS6.2AI score0.002EPSS
Exploits0References4
CNNVD
CNNVDadded 2022/10/18 12:0 a.m.4 views

Red Hat OpenStack Platform 安全漏洞

Red Hat OpenStack Platform is a cloud computing management platform from the US-based Red Hat, Inc. A security vulnerability exists in Red Hat OpenStack Platform versions 16.1 and 16.2, which stems from an insecure default configuration in Tripleo-ansible, where permissions on sensitive files are...

5.5CVSS6.2AI score0.00201EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2022/10/17 10:23 a.m.3 views

tripleo-ansible: /var/lib/mistral/overcloud discoverable

A flaw was found in tripleo-ansible. Due to an insecure default configuration, the permissions of a sensitive file are not sufficiently restricted. This flaw allows a local attacker to use brute force to explore the relevant directory and discover the file, leading to information disclosure of...

5.5CVSS5.7AI score0.00201EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2022/10/17 10:23 a.m.41 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform (tripleo-ansible) security update

An update for tripleo-ansible is now available for Red Hat OpenStack Platform. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

5.5CVSS6.3AI score0.00201EPSS
Exploits0References8
OpenVAS
OpenVASadded 2022/10/17 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2022:3586-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.2AI score0.01364EPSS
Exploits4References10
Tenable Nessus
Tenable Nessusadded 2022/10/17 12:0 a.m.40 views

RHEL 8 : Red Hat OpenStack Platform (tripleo-ansible) (RHSA-2022:6969)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6969 advisory. TripleO Ansible project repository. Contains playbooks for use with TripleO OpenStack deployments. https://opendev.org Security Fixes:...

5.5CVSS6.3AI score0.00201EPSS
Exploits0References11
OpenVAS
OpenVASadded 2022/10/07 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2022:3533-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS7.5AI score0.0282EPSS
Exploits0References5
OpenVAS
OpenVASadded 2022/10/07 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2022:3541-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS6.7AI score0.01662EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2022/10/05 12:0 a.m.40 views

Debian dla-3136 : barbican-api - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3136 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3136-1 [email protected] https://www.debian.org/lts/security/...

5.9CVSS6.3AI score0.00433EPSS
Exploits0References4
Rows per page
Query Builder