Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-13478

Malware in sbrugna...

8.8CVSS5.8AI score0.0044EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-3864

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was discovered in all quay-2 versions before quay-3.0.0, in the Quay web GUI where POST requests include a specific parameter which is used as a...

8.8CVSS7.2AI score0.0044EPSS
Exploits0References1
NVD
NVD
added 2020/01/21 4:15 p.m.26 views

CVE-2019-3864

A vulnerability was discovered in all quay-2 versions before quay-3.0.0, in the Quay web GUI where POST requests include a specific parameter which is used as a CSRF token. The token is not refreshed for every request or when a user logged out and in again. An attacker could use a leaked token to...

8.8CVSS6.5AI score0.0044EPSS
Exploits0References1
Prion
Prion
added 2020/01/21 4:15 p.m.23 views

Cross site request forgery (csrf)

A vulnerability was discovered in all quay-2 versions before quay-3.0.0, in the Quay web GUI where POST requests include a specific parameter which is used as a CSRF token. The token is not refreshed for every request or when a user logged out and in again. An attacker could use a leaked token to...

6.8CVSS8.7AI score0.0044EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/21 3:44 p.m.26 views

CVE-2019-3864

A vulnerability was discovered in all quay-2 versions before quay-3.0.0, in the Quay web GUI where POST requests include a specific parameter which is used as a CSRF token. The token is not refreshed for every request or when a user logged out and in again. An attacker could use a leaked token to...

5.4CVSS8.8AI score0.0044EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2019/11/04 1:25 a.m.25 views

CVE-2019-3864

A vulnerability was discovered in the Quay web GUI where POST requests include a specific parameter which is used as a CSRF token. The token is not refreshed for every request or when a user logged out and in again. An attacker could use a leaked token to gain access to the system using the user'...

8.8CVSS2.1AI score0.0044EPSS
Exploits0References3
Rows per page
Query Builder