Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-35629

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00914EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/05/07 9:24 p.m.31 views

CVE-2025-46821 Envoy vulnerable to bypass of RBAC uri_template permission

Envoy is a cloud-native edge/middle/service proxy. Prior to versions 1.34.1, 1.33.3, 1.32.6, and 1.31.8, Envoy's URI template matcher incorrectly excludes the character from a set of valid characters in the URI path. As a result URI path containing the character will not match a URI template...

5.3CVSS0.0022EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/05/06 2:32 p.m.27 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.22 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability scoring System CVSS base score, which gives a detailed severity rating, ...

7.5CVSS6.7AI score0.01966EPSS
Exploits2References15
RedHat Linux
RedHat Linux
added 2025/05/06 2:32 p.m.24 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.22 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability scoring System CVSS base score, which gives a detailed severity rating, ...

7.5CVSS6.7AI score0.01966EPSS
Exploits2References15
RedHat Linux
RedHat Linux
added 2025/05/06 2:31 p.m.21 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.22 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability scoring System CVSS base score, which gives a detailed severity rating, ...

7.5CVSS6.7AI score0.01966EPSS
Exploits2References15
RedHat Linux
RedHat Linux
added 2025/05/06 2:28 p.m.18 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.22 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.6AI score0.01966EPSS
Exploits2References14
Tenable Nessus
Tenable Nessus
added 2025/05/06 12:0 a.m.8 views

RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.4.22 (RHSA-2025:4549)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:4549 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

7.5CVSS6.6AI score0.01966EPSS
Exploits2References20
Tenable Nessus
Tenable Nessus
added 2025/04/21 12:0 a.m.17 views

RHEL 8 : Red Hat JBoss Enterprise Application Platform 8.0.7 (RHSA-2025:3989)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:3989 advisory. Red Hat JBoss Enterprise Application Platform 8 is a platform for Java applications based on the WildFly application runtime. This release o...

6.5CVSS6AI score0.00648EPSS
Exploits0References23
RedHat Linux
RedHat Linux
added 2025/04/17 2:38 p.m.24 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.0.7 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 8.0. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5CVSS6.2AI score0.00648EPSS
Exploits0References18
RedHat Linux
RedHat Linux
added 2025/04/01 1:6 p.m.20 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.21 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.1CVSS6.7AI score0.01966EPSS
Exploits4References8
Vulnrichment
Vulnrichment
added 2023/11/08 12:56 a.m.22 views

CVE-2023-4061 Wildfly-core: management user rbac permission allows unexpected reading of system-properties to an unauthorized actor

A flaw was found in wildfly-core. A management user could use the resolve-expression in the HAL Interface to read possible sensitive information from the Wildfly system. This issue could allow a malicious user to access the system and obtain possible sensitive information from the system...

6.5CVSS6AI score0.00834EPSS
Exploits0References6
Cvelist
Cvelist
added 2023/11/08 12:56 a.m.48 views

CVE-2023-4061 Wildfly-core: management user rbac permission allows unexpected reading of system-properties to an unauthorized actor

A flaw was found in wildfly-core. A management user could use the resolve-expression in the HAL Interface to read possible sensitive information from the Wildfly system. This issue could allow a malicious user to access the system and obtain possible sensitive information from the system...

6.5CVSS6.5AI score0.00834EPSS
Exploits0References6
Veracode
Veracode
added 2023/09/15 7:36 a.m.12 views

Improper Authorization

@strapi/plugin-content-manager is vulnerable to Improper Authorization. The vulnerability is due to Field level permissions not being respected in the relationship title, as there are no RBAC permission checks to read the field in relations.js...

6.8CVSS6.6AI score0.00534EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2022/06/13 11:15 p.m.15 views

CVE-2022-32562

An issue was discovered in Couchbase Server before 7.0.4. Operations may succeed on a collection using stale RBAC permission...

8.8CVSS0.00914EPSS
Exploits0References3
Prion
Prion
added 2022/06/13 11:15 p.m.17 views

Code injection

An issue was discovered in Couchbase Server before 7.0.4. Operations may succeed on a collection using stale RBAC permission...

6.5CVSS8.6AI score0.00914EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2022/06/13 10:15 p.m.18 views

CVE-2022-32562

An issue was discovered in Couchbase Server before 7.0.4. Operations may succeed on a collection using stale RBAC permission...

8.8AI score0.00914EPSS
Exploits0References3
Rapid7 Blog
Rapid7 Blog
added 2021/10/12 1:0 p.m.28 views

Have You Checked the New Kubernetes RBAC Swiss Army Knife?

Kubernetes Role-Based Access Control RBAC is a method of regulating access to computer or network resources based on the roles of individual users within your organization. RBAC authorization uses the rbac.authorization.k8s.io API group to drive authorization decisions, allowing you to dynamicall...

6.9AI score
Exploits0
Rows per page
Query Builder