Lucene search
K

24 matches found

NVD
NVD
added 2016/01/02 5:59 a.m.15 views

CVE-2015-7442

consoleinst.sh in IBM Installation Manager before 1.7.4.4 and 1.8.x before 1.8.4 and Packaging Utility before 1.7.4.4 and 1.8.x before 1.8.4 allows local users to gain privileges via a Trojan horse program that is located in /tmp with a name based on a predicted PID value...

7CVSS6.8AI score0.0042EPSS
Exploits0References2
Prion
Prion
added 2016/01/02 5:59 a.m.9 views

Code injection

consoleinst.sh in IBM Installation Manager before 1.7.4.4 and 1.8.x before 1.8.4 and Packaging Utility before 1.7.4.4 and 1.8.x before 1.8.4 allows local users to gain privileges via a Trojan horse program that is located in /tmp with a name based on a predicted PID value...

6.2CVSS6.8AI score0.0042EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2013/11/30 9:35 p.m.11 views

MGASA-2013-0359 Updated drupal package fixes security vulnerabilities

Drupal's form API has built-in cross-site request forgery CSRF validation, and also allows any module to perform its own validation on the form. In certain common cases, form validation functions may execute unsafe operations CVE-2013-6385. Drupal core directly used the mtrand pseudorandom number...

6.8CVSS5.7AI score0.03072EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2008/11/26 12:0 a.m.9 views

PT-2008-6306 · Freebsd · Freebsd

Name of the Vulnerable Software and Affected Versions: FreeBSD versions 6.3 through 7.1 Description: The issue is related to the arc4random function in the kernel, which lacks a proper entropy source for a short time period immediately after boot. This makes it easier for attackers to predict the...

7CVSS6.5AI score0.00319EPSS
Exploits1References6
Rows per page
Query Builder