Lucene search
K

8 matches found

NVD
NVD
added 2024/11/29 7:15 p.m.35 views

CVE-2024-53983

The Backstage Scaffolder plugin Houses types and utilities for building scaffolder-related modules. A vulnerability is identified in Backstage Scaffolder template functionality where Server-Side Template Injection SSTI can be exploited to perform Git config injection. The vulnerability allows an...

5.4CVSS0.00368EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/29 12:0 a.m.4 views

Backstage 代码问题漏洞

Backstage is a Backstage open source application. Backstage is an open platform for building developer portals. Backstage has a code issue vulnerability that stems from the ability to perform Git configuration injection using server-side template injection, allowing an attacker to capture...

5.4CVSS7.1AI score0.00368EPSS
Exploits0References2
OSV
OSV
added 2024/10/04 6:15 p.m.2 views

CVE-2024-25702

There is a stored Cross-site Scripting vulnerability in Esri Portal for ArcGIS Enterprise Sites versions 11.1 and below that may allow a remote, authenticated attacker to create a crafted link that is stored in the site configuration which when clicked could potentially execute arbitrary JavaScri...

4.8CVSS5.8AI score0.00266EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/12/06 12:0 a.m.3 views

PT-2022-27846 · Rackn · Rackn Digital Rebar

Name of the Vulnerable Software and Affected Versions: RackN Digital Rebar versions 4.6.14 and earlier RackN Digital Rebar versions 4.7 through 4.7.22 RackN Digital Rebar versions 4.8 through 4.8.5 RackN Digital Rebar versions 4.9 through 4.9.12 RackN Digital Rebar versions 4.10 through 4.10.8...

9.8CVSS9.3AI score0.00692EPSS
Exploits0References4
OSV
OSV
added 2021/06/01 2:15 p.m.5 views

CVE-2021-3495

An incorrect access control flaw was found in the kiali-operator in versions before 1.33.0 and before 1.24.7. This flaw allows an attacker with a basic level of access to the cluster to deploy a kiali operand to use this vulnerability and deploy a given image to anywhere in the cluster, potential...

8.8CVSS7.2AI score0.00969EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/06/01 12:0 a.m.5 views

PT-2021-20792 · Unknown · Kiali-Operator

Name of the Vulnerable Software and Affected Versions: kiali-operator versions prior to 1.33.0 kiali-operator versions prior to 1.24.7 Description: An incorrect access control flaw was found in the kiali-operator. This flaw allows an attacker with a basic level of access to the cluster to deploy ...

8.8CVSS7AI score0.00969EPSS
Exploits0References8
OSV
OSV
added 2017/01/06 9:59 p.m.3 views

CVE-2016-4306

Multiple information leaks exist in various IOCTL handlers of the Kaspersky Internet Security KLDISK driver. Specially crafted IOCTL requests can cause the driver to return out-of-bounds kernel memory, potentially leaking sensitive information such as privileged tokens or kernel memory addresses...

5.5CVSS5.8AI score0.0067EPSS
Exploits2References4
ATTACKERKB
ATTACKERKB
added 2017/01/06 9:59 p.m.3 views

CVE-2016-4306

Multiple information leaks exist in various IOCTL handlers of the Kaspersky Internet Security KLDISK driver. Specially crafted IOCTL requests can cause the driver to return out-of-bounds kernel memory, potentially leaking sensitive information such as privileged tokens or kernel memory addresses...

5.5CVSS5.5AI score0.0067EPSS
Exploits2References5Affected Software1
Rows per page
Query Builder