Lucene search
+L

179 matches found

cve
cve
added 2023/05/25 10:0 p.m.44 views

CVE-2023-2902

CVE-2023-2902 affects NFine Rapid Development Platform (version 20230511). The issue lies in the GetTreeGridJson endpoint under SystemManage/Organize, enabling improper access controls that could be exploited remotely. Public exploit information exists per the sources, with confidentiality impact...

6.5CVSS5.4AI score0.00678EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2023/05/25 10:0 p.m.41 views

CVE-2023-2902 NFine Rapid Development Platform access control

A vulnerability was found in NFine Rapid Development Platform 20230511. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /SystemManage/Organize/GetTreeGridJson?search=false&nd=1681813520783&rows=10000&page=1&sidx=&sord=asc. The manipulation leads ...

4.3CVSS6.7AI score0.00678EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2023/05/25 9:31 p.m.14 views

CVE-2023-2901 NFine Rapid Development Platform access control

A vulnerability was found in NFine Rapid Development Platform 20230511. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /SystemManage/User/GetGridJson?search=false&nd=1680855479750&rows=50&page=1&sidx=FCreatorTime+desc&sord=asc. The...

4.3CVSS6.8AI score0.00694EPSS
Exploits1References3
cve
cve
added 2023/05/25 9:31 p.m.113 views

CVE-2023-2901

CVE-2023-2901 affects NFine Rapid Development Platform 20230511. The vulnerability exists in an unknown function of the endpoint /SystemManage/User/GetGridJson?... which leads to improper access controls. It is exploitable remotely and, per multiple sources, the exploit has been disclosed publicl...

6.5CVSS5.5AI score0.00694EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2023/05/25 9:31 p.m.23 views

CVE-2023-2901 NFine Rapid Development Platform access control

A vulnerability was found in NFine Rapid Development Platform 20230511. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /SystemManage/User/GetGridJson?search=false&nd=1680855479750&rows=50&page=1&sidx=FCreatorTime+desc&sord=asc. The...

4.3CVSS6.7AI score0.00694EPSS
Exploits1References3
nvd
nvd
added 2023/05/25 9:15 p.m.23 views

CVE-2023-2900

A vulnerability was found in NFine Rapid Development Platform 20230511. It has been classified as problematic. Affected is an unknown function of the file /Login/CheckLogin. The manipulation leads to use of weak hash. It is possible to launch the attack remotely. The complexity of an attack is...

7.5CVSS5.2AI score0.00654EPSS
Exploits1References3
prion
prion
added 2023/05/25 9:15 p.m.23 views

Information disclosure

A vulnerability was found in NFine Rapid Development Platform 20230511. It has been classified as problematic. Affected is an unknown function of the file /Login/CheckLogin. The manipulation leads to use of weak hash. It is possible to launch the attack remotely. The complexity of an attack is...

2.6CVSS7.6AI score0.00654EPSS
Exploits1References3Affected Software1
cve
cve
added 2023/05/25 9:0 p.m.59 views

CVE-2023-2900

CVE-2023-2900 affects NFine Rapid Development Platform 20230511. Affected is an unknown function of the file /Login/CheckLogin, where manipulation leads to use of a weak hash. The issue can be exploited remotely; attack complexity is high and exploitability is difficult. Public disclosure has occ...

7.5CVSS5.8AI score0.00654EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2023/05/25 9:0 p.m.36 views

CVE-2023-2900 NFine Rapid Development Platform CheckLogin weak hash

A vulnerability was found in NFine Rapid Development Platform 20230511. It has been classified as problematic. Affected is an unknown function of the file /Login/CheckLogin. The manipulation leads to use of weak hash. It is possible to launch the attack remotely. The complexity of an attack is...

3.7CVSS7.8AI score0.00654EPSS
Exploits1References3
openvas
openvas
added 2023/05/17 12:0 a.m.29 views

Fedora: Security Advisory for python-django3 (FEDORA-2023-8f9d949dbc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.0138EPSS
Exploits0References2
openvas
openvas
added 2023/05/12 12:0 a.m.19 views

Fedora: Security Advisory for python-django3 (FEDORA-2023-0d20d09f2d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.0138EPSS
Exploits0References2
fedora
fedora
added 2023/05/11 2:6 a.m.36 views

[SECURITY] Fedora 38 Update: python-django3-3.2.19-1.fc38

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

9.8CVSS6.4AI score0.0138EPSS
Exploits0
openvas
openvas
added 2023/04/29 12:0 a.m.33 views

Fedora: Security Advisory for python-django (FEDORA-2023-a53ab7c969)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.5AI score0.73274EPSS
Exploits6References2
fedora
fedora
added 2023/04/28 2:37 a.m.57 views

[SECURITY] Fedora 38 Update: python-django-4.0.10-1.fc38

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

9.8CVSS8.9AI score0.73274EPSS
Exploits6
fedora
fedora
added 2023/04/28 2:4 a.m.49 views

[SECURITY] Fedora 37 Update: python-django-4.0.10-1.fc37

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

9.8CVSS8.9AI score0.73274EPSS
Exploits6
securelist
securelist
added 2023/04/24 8:0 a.m.233 views

Tomiris called, they want their Turla malware back

Introduction We introduced Tomiris to the world in September 2021, following our investigation of a DNS-hijack against a government organization in the Commonwealth of Independent States CIS. Our initial report described links between a Tomiris Golang implant and SUNSHUTTLE which has been...

7.5CVSS9.1AI score0.99999EPSS
Exploits63
fedora
fedora
added 2023/03/11 3:40 a.m.47 views

[SECURITY] Fedora 38 Update: python-django3-3.2.18-1.fc38

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

7.5CVSS7.6AI score0.62575EPSS
Exploits0
fedora
fedora
added 2023/03/05 12:54 a.m.62 views

[SECURITY] Fedora 36 Update: python-django3-3.2.18-1.fc36

Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. It focuses on automating as much as possible and adhering to the DRY Don't Repeat Yourself principle...

7.5CVSS7.6AI score0.62575EPSS
Exploits0
fedora
fedora
added 2022/07/20 1:40 a.m.31 views

[SECURITY] Fedora 35 Update: origin-3.11.2-6.fc35

OpenShift Origin is a distribution of Kubernetes optimized for enterprise app lication development and deployment. OpenShift Origin adds developer and operational c entric tools on top of Kubernetes to enable rapid application development, easy deployment and scaling, and long-term lifecycle...

9.3CVSS8.9AI score0.0995EPSS
Exploits4
fedora
fedora
added 2022/03/26 3:34 p.m.10 views

[SECURITY] Fedora 36 Update: OpenSceneGraph-3.6.5-5.fc36

The OpenSceneGraph is an OpenSource, cross platform graphics toolkit for the development of high performance graphics applications such as flight simulators, games, virtual reality and scientific visualization. Based around the concept of a SceneGraph, it provides an object oriented framework on...

0.7AI score
Exploits0
Rows per page
Query Builder