CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

75 matches found

ATTACKERKB•added 2022/04/12 8:15 p.m.•3 views

CVE-2022-29051

Missing permission checks in Jenkins Publish Over FTP Plugin 1.16 and earlier allow attackers with Overall/Read permission to connect to an FTP server using attacker-specified credentials...

4.3CVSS5.9AI score0.00699EPSS

Exploits0References2

Kitploit•added 2021/10/17 8:30 p.m.•29 views

Fapro - Free, Cross-platform, Single-file mass network protocol server simulator

FaPro is a Fake Protocol Server tool, Can easily start or stop multiple network services. The goal is to support as many protocols as possible, and support as many deep interactions as possible for each protocol. Features Supported Running Modes: Local Machine Virtual Network Supported Protocols:...

7.2AI score

Exploits0References4

OpenVAS•added 2020/11/11 12:0 a.m.•32 views

Microsoft Windows Multiple Vulnerabilities (KB4586830)

This host is missing a critical security update according to Microsoft KB4586830 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.25285EPSS

Exploits2References3

CNVD•added 2020/02/11 12:0 a.m.•1 views

Squid Information Disclosure Vulnerability (CNVD-2020-05099)

Squid is a caching and forwarding HTTP web proxy. An information disclosure vulnerability exists in versions prior to Squid 4.10. An attacker can exploit this vulnerability to obtain sensitive information from heap memory via a specially crafted FTP server...

7.5CVSS8.1AI score0.10493EPSS

Exploits0References1

OpenVAS•added 2020/01/23 12:0 a.m.•24 views

Huawei EulerOS: Security Advisory for mercurial (EulerOS-SA-2018-1112)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.5AI score0.02687EPSS

Exploits0References2

OpenVAS•added 2020/01/23 12:0 a.m.•22 views

Huawei EulerOS: Security Advisory for mercurial (EulerOS-SA-2018-1178)

9.1CVSS8.5AI score0.02687EPSS

Exploits0References2

Tenable Nessus•added 2019/12/31 12:0 a.m.•29 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : mercurial Multiple Vulnerabilities (NS-SA-2019-0234)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has mercurial packages installed that are affected by multiple vulnerabilities: - Mercurial version 4.5 and earlier contains a Incorrect Access Control CWE-285 vulnerability in Protocol server that can result in Unauthorized da...

9.8CVSS7.3AI score0.02687EPSS

Exploits0References4

Tenable Nessus•added 2019/12/02 12:0 a.m.•33 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : mercurial Multiple Vulnerabilities (NS-SA-2019-0216)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has mercurial packages installed that are affected by multiple vulnerabilities: - Mercurial version 4.5 and earlier contains a Incorrect Access Control CWE-285 vulnerability in Protocol server that can result in Unauthorized da...

9.8CVSS7.3AI score0.02687EPSS

Exploits0References4

CVE•added 2019/08/14 8:55 p.m.•149 views

CVE-2019-1225

CVE-2019-1225 is a Windows RDP server information-disclosure vulnerability caused by improper memory initialization. An attacker must remotely connect to an affected system and run a crafted application to access memory contents. Microsoft addressed the issue via a security update that fixes how ...

7.5CVSS7.8AI score0.09503EPSS

Exploits0References1Affected Software3

Cvelist•added 2019/08/14 8:55 p.m.•30 views

CVE-2019-1225 Remote Desktop Protocol Server Information Disclosure Vulnerability

...

7.5CVSS8.5AI score0.09503EPSS

Exploits0References1

OpenVAS•added 2018/07/09 12:0 a.m.•30 views

Debian: Security Advisory (DLA-1414-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.8AI score0.21512EPSS

Exploits1References3

IBM Security Bulletins•added 2018/06/18 12:8 a.m.•32 views

Security Bulletin: Samba vulnerability issue on IBM SONAS (CVE-2014-0178)

Summary A fix is available for IBM SONAS, for the security issue that an attacker could obtain sensitive information by exploiting a vulnerability in Samba protocol server Vulnerability Details CVEID: CVE-2014-0178 DESCRIPTION: Samba protocol server is used in IBM SONAS to enable file management...

3.5CVSS1.1AI score0.04468EPSS

Exploits0Affected Software1

Tenable Nessus•added 2018/05/29 12:0 a.m.•35 views

EulerOS 2.0 SP1 : mercurial (EulerOS-SA-2018-1142)

According to the versions of the mercurial package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Mercurial is a fast, lightweight source control management system designed for efficient handling of very large distributed projects. - Securi...

9.1CVSS7.3AI score0.02687EPSS

Exploits0References2

Tenable Nessus•added 2018/04/02 12:0 a.m.•28 views

Debian DLA-1331-1 : mercurial security update

Mercurial version 4.5 and earlier contains a Incorrect Access Control CWE-285 vulnerability in Protocol server that can result in Unauthorized data access. This attack appear to be exploitable via network connectivity. This vulnerability appears to have been fixed in 4.5.1. This update also fixes...

9.1CVSS7.3AI score0.02687EPSS

Exploits0References3

Debian•added 2018/03/30 3:34 p.m.•31 views

[SECURITY] [DLA 1331-1] mercurial security update

Package : mercurial Version : 2.2.2-4+deb7u7 CVE ID : CVE-2018-1000132 Debian Bug : 892964 Mercurial version 4.5 and earlier contains a Incorrect Access Control CWE-285 vulnerability in Protocol server that can result in Unauthorized data access. This attack appear to be exploitable via network...

9.1CVSS6.9AI score0.02687EPSS

Exploits0

CNVD•added 2018/03/19 12:0 a.m.•1 views

Mercurial Protocol Server Access Control Error Vulnerability

Mercurial is a software developer Matt Mackall developed a set of cross-platform distributed version control software written in Python. The software supports simultaneous processing of plain text and binary files , etc. Protocol server is one of the protocol server . An access control error...

9.1CVSS9.4AI score0.02687EPSS

Exploits0References1