Lucene search
K

1305 matches found

Tenable Nessus
Tenable Nessus
added 2023/07/13 12:0 a.m.22 views

RHEL 7 : rh-nodejs14-nodejs (RHSA-2023:4039)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4039 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language...

7.5CVSS6.5AI score0.01577EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2023/07/13 12:0 a.m.27 views

RHEL 8 : nodejs:16 (RHSA-2023:4033)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4033 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language...

7.5CVSS6.5AI score0.01577EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2023/07/12 8:33 a.m.38 views

Important: Red Hat Security Advisory: nodejs:18 security update

An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.6CVSS6.7AI score0.01577EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2023/07/12 8:33 a.m.43 views

Important: Red Hat Security Advisory: nodejs:16 security update

An update for the nodejs:16 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.5AI score0.01577EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/07/12 8:33 a.m.3 views

c-ares: Insufficient randomness in generation of DNS query IDs

A vulnerability was found in c-ares. This issue occurs when /dev/urandom or RtlGenRandom are unavailable, c-ares will use rand to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand, so it will generate predictable output...

6.5CVSS7.3AI score0.00905EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/07/12 8:32 a.m.5 views

c-ares: Insufficient randomness in generation of DNS query IDs

A vulnerability was found in c-ares. This issue occurs when /dev/urandom or RtlGenRandom are unavailable, c-ares will use rand to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand, so it will generate predictable output...

6.5CVSS7.3AI score0.00905EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/07/12 8:27 a.m.6 views

c-ares: Insufficient randomness in generation of DNS query IDs

A vulnerability was found in c-ares. This issue occurs when /dev/urandom or RtlGenRandom are unavailable, c-ares will use rand to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand, so it will generate predictable output...

6.5CVSS7.3AI score0.00905EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/07/12 8:17 a.m.5 views

c-ares: Insufficient randomness in generation of DNS query IDs

A vulnerability was found in c-ares. This issue occurs when /dev/urandom or RtlGenRandom are unavailable, c-ares will use rand to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand, so it will generate predictable output...

6.5CVSS7.3AI score0.00905EPSS
Exploits0References5
AlmaLinux
AlmaLinux
added 2023/07/12 12:0 a.m.46 views

Important: nodejs:16 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: c-ares: 0-byte UDP payload Denial of Service CVE-2023-32067 c-ares: Buffer Underwrite in aresinetnetpton CVE-2023-31130 c-ares: Insufficient...

7.5CVSS8.5AI score0.01577EPSS
Exploits0References10
OSV
OSV
added 2023/07/12 12:0 a.m.28 views

ALSA-2023:4035 Important: nodejs:18 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: c-ares: 0-byte UDP payload Denial of Service CVE-2023-32067 c-ares: buffer overflow in configsortlist due to missing string length check...

8.6CVSS7.4AI score0.01577EPSS
Exploits1References12
OSV
OSV
added 2023/06/24 6:53 p.m.39 views

RLSA-2023:3577 Important: nodejs:18 security update

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: c-ares: 0-byte UDP payload Denial of Service CVE-2023-32067 c-ares: Buffer Underwrite in aresinetnetpton CVE-2023-31130 c-ares: Insufficient...

7.5CVSS7AI score0.01577EPSS
Exploits0References5
OSV
OSV
added 2023/06/19 12:0 a.m.1 views

UBUNTU-CVE-2023-3247

In PHP versions 8.0. before 8.0.29, 8.1. before 8.1.20, 8.2. before 8.2.7 when using SOAP HTTP Digest Authentication, random value generator was not checked for failure, and was using narrower range of values than it should have. In case of random generator failure, it could lead to a disclosure ...

4.3CVSS6.8AI score0.00709EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/06/14 8:43 a.m.6 views

c-ares: Insufficient randomness in generation of DNS query IDs

A vulnerability was found in c-ares. This issue occurs when /dev/urandom or RtlGenRandom are unavailable, c-ares will use rand to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand, so it will generate predictable output...

6.5CVSS7.3AI score0.00905EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/06/14 8:43 a.m.49 views

Important: Red Hat Security Advisory: nodejs security update

An update for nodejs is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS6.5AI score0.01577EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/06/14 7:33 a.m.38 views

Important: Red Hat Security Advisory: nodejs:18 security update

An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.5AI score0.01577EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/06/14 7:33 a.m.6 views

c-ares: Insufficient randomness in generation of DNS query IDs

A vulnerability was found in c-ares. This issue occurs when /dev/urandom or RtlGenRandom are unavailable, c-ares will use rand to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand, so it will generate predictable output...

6.5CVSS7.3AI score0.00905EPSS
Exploits0References5
Code423n4
Code423n4
added 2023/06/14 12:0 a.m.12 views

Clone LlamaCore and LlamaPolicy in LlamaFactory.sol may fail or DOS

Lines of code Vulnerability details Impact LlamaFactory uses Clones.cloneDeterministic to create new LlamaCore and LlamaPolicy contracts. The address of the new PrivatePool depends solely on the name parameter keccak256abi.encodePackedname provided by the administrator when calling the deploy...

6.7AI score
Exploits0
OpenVAS
OpenVAS
added 2023/06/14 12:0 a.m.18 views

Debian: Security Advisory (DSA-5425-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS7AI score0.00709EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/06/14 12:0 a.m.17 views

Debian: Security Advisory (DSA-5424-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS7AI score0.00709EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/06/14 12:0 a.m.30 views

RHEL 9 : nodejs (RHSA-2023:3586)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3586 advisory. Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language...

7.5CVSS6.5AI score0.01577EPSS
Exploits0References10
Rows per page
Query Builder