CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7814 matches found

Debian CVE•added 2021/06/30 8:25 a.m.•19 views

CVE-2021-25321

A UNIX Symbolic Link Symlink Following vulnerability in arpwatch of SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Manager Server 4.0, SUSE OpenStack Cloud Crowbar 9; openSUSE Factory, Leap 15.2 allows local attackers with control of the runtime user to run arpwatch as to escalate to root upon th...

7.8CVSS7.3AI score0.00441EPSS

Exploits1

OpenVAS•added 2021/06/29 12:0 a.m.•15 views

SUSE: Security Advisory (SUSE-SU-2021:2180-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.02338EPSS

Exploits1References5

RedhatCVE•added 2021/06/28 9:49 p.m.•59 views

CVE-2021-25321

7.8CVSS3.7AI score0.00441EPSS

Exploits1References3

Tenable Nessus•added 2021/06/25 12:0 a.m.•50 views

Ubuntu 20.04 LTS : Ceph vulnerabilities (USN-4998-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4998-1 advisory. It was discovered that in some situations Ceph logged passwords from the mgr module in clear text. An attacker could use this to expose sensitive...

7.2CVSS6.9AI score0.02449EPSS

Exploits1References8

OpenVAS•added 2021/06/25 12:0 a.m.•7 views

SUSE: Security Advisory (SUSE-SU-2021:2152-1)

7.5AI score

Exploits0References4

OpenVAS•added 2021/06/20 12:0 a.m.•24 views

SUSE: Security Advisory (SUSE-SU-2021:2010-1)

6.9AI score

Exploits0References2

OpenVAS•added 2021/06/18 12:0 a.m.•24 views

SUSE: Security Advisory (SUSE-SU-2021:1980-1)

5.9CVSS6.7AI score0.03566EPSS

Exploits0References4

OpenVAS•added 2021/06/18 12:0 a.m.•37 views

SUSE: Security Advisory (SUSE-SU-2021:2006-1)

9.8CVSS7.2AI score0.68067EPSS

Exploits0References8

Tenable Nessus•added 2021/06/17 12:0 a.m.•43 views

RHEL 7 : Red Hat OpenStack Platform 13.0 (openvswitch2.11) (RHSA-2021:2456)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2456 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...

7.8CVSS7.5AI score0.08026EPSS

Exploits0References7

RedHat Linux•added 2021/06/16 10:59 a.m.•42 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 13.0 (openvswitch2.11) security update

An update for openvswitch2.11 is now available for Red Hat OpenStack Platform 13 Queens. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.8CVSS7.2AI score0.08026EPSS

Exploits0References4

RedhatCVE•added 2021/06/13 5:52 a.m.•91 views

CVE-2021-20198

A flaw was found in the OpenShift Installer. During installation of OpenShift Container Platform 4 clusters, bootstrap nodes are provisioned with anonymous authentication enabled on kubelet port 10250. A remote attacker able to reach this port during installation can make unauthenticated /exec...

8.1CVSS3.1AI score0.01833EPSS

Exploits0References3

OpenVAS•added 2021/06/13 12:0 a.m.•8 views

SUSE: Security Advisory (SUSE-SU-2021:1960-1)

7.5AI score

Exploits0References4

OSV•added 2021/06/11 1:14 p.m.•16 views

SUSE-SU-2021:1963-1 Security update for crowbar-openstack, grafana, kibana, monasca-installer, python-Django, python-py, rubygem-activerecord-session_store

This update for crowbar-openstack, grafana, kibana, monasca-installer, python-Django, python-py, rubygem-activerecord-sessionstore contains the following fixes: Security fixes included in this update: crowbar-openstack: - CVE-2016-8611: Added rate limiting for the '/images' API POST method...

7.5CVSS6.8AI score0.83042EPSS

Exploits2References19

CNNVD•added 2021/06/11 12:0 a.m.•3 views

SUSE OpenStack Cloud 缓冲区错误漏洞

SUSE OpenStack Cloud is a software-based, enterprise-class data storage solution from SUSE Germany. A buffer error vulnerability exists in SUSE OpenStack Cloud Crowbar, which stems from a segmentation error when the affected product attempts to use shifted characters...

7.5CVSS7.4AI score0.01112EPSS

Exploits0References4

Tenable Nessus•added 2021/06/10 12:0 a.m.•35 views

SUSE SLES11 Security Update : openldap2 (SUSE-SU-2020:14419-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2020:14419-1 advisory. - A acceptance of Extraneous Untrusted Data With Trusted Data vulnerability in the start script of openldap2 of SUSE Enterprise Storage 5, SUSE Linux...

7.8CVSS7.3AI score0.00407EPSS

Exploits1References4

Github Security Blog•added 2021/06/09 5:34 p.m.•62 views

Insufficient Session Expiration in OpenStack Keystone

An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. The list of roles provided for an OAuth1 access token is silently ignored. Thus, when an access token is used to request a keystone token, the keystone token contains every role assignment the creator had for the project. Th...

8.8CVSS3.1AI score0.01896EPSS

Exploits0References9Affected Software1

OSV•added 2021/06/09 5:34 p.m.•30 views

GHSA-6M8P-X4QW-GH5J Insufficient Session Expiration in OpenStack Keystone

8.8CVSS8.5AI score0.01896EPSS

Exploits0References10

OpenVAS•added 2021/06/09 12:0 a.m.•18 views

SUSE: Security Advisory (SUSE-SU-2017:0716-1)

7.5CVSS8.1AI score0.95707EPSS

Exploits7References4

OpenVAS•added 2021/06/09 12:0 a.m.•24 views

SUSE: Security Advisory (SUSE-SU-2021:1468-1)