Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.6 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-46711)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46711 advisory. - In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: fix ID 0 endp usage after...

4.7CVSS6.7AI score0.00216EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/11/26 8:17 p.m.10 views

CVE-2024-43784 Re-creating a deleted user in lakeFS will re-enable previous user credentials that existed prior to it's deletion

lakeFS is an open-source tool that transforms object storage into a Git-like repository. Existing lakeFS users who have issued credentials to users who have been deleted are affected by this vulnerability. When creating a new user with the same username as a deleted user, that user will inherit a...

5.7CVSS7.1AI score0.00341EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2024/11/26 7:58 p.m.18 views

Re-creating a deleted user in lakeFS will re-enable previous user credentials that existed prior to its deletion

Impact Existing lakeFS users who have issued credentials to users who have been deleted. Creating a new user with the same username, that user will inherit all of the previous user's credentials lakeFS needs to delete user credentials upon user deletion. Patches Has the problem been patched? What...

5.7CVSS6.9AI score0.00341EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2024/06/25 2:16 p.m.56 views

CVE-2024-37085

VMware ESXi contains an authentication bypass vulnerability. A malicious actor with sufficient Active Directory AD permissions can gain full access to an ESXi host that was previously configured to use AD for user management...

6.8CVSS0.2677EPSS
Exploits0References1
NVD
NVD
added 2023/10/25 6:17 p.m.14 views

CVE-2023-37911

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Starting in version 9.4-rc-1 and prior to versions 14.10.8 and 15.3-rc-1, when a document has been deleted and re-created, it is possible for users with view right on the re-created document b...

6.5CVSS6.3AI score0.00752EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2023/10/25 5:19 p.m.21 views

CVE-2023-37911 org.xwiki.platform:xwiki-platform-oldcore may leak data through deleted and re-created documents

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. Starting in version 9.4-rc-1 and prior to versions 14.10.8 and 15.3-rc-1, when a document has been deleted and re-created, it is possible for users with view right on the re-created document b...

6.5CVSS6.5AI score0.00752EPSS
Exploits1References6
Code423n4
Code423n4
added 2022/03/21 12:0 a.m.9 views

Processes refinance operations may call malicious code by re-created refinancer contract

Lines of code Vulnerability details Impact When an attacker borrower proposes a new term, the attacker can let a lender accept the malicious term which the lender doesn't expect. It uses delegatecall in acceptNewTerms of MapleLoanInternals.sol. Though a lender can manually check refinancer contra...

7.2AI score
Exploits0
Rows per page
Query Builder