Lucene search
+L

11 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/07/09 7:26 a.m.7 views

Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses an application is vulnerable to a reflected file download (RFD) attack.

Summary Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses an application is vulnerable to a reflected file download RFD attack.The filename is derived from user-supplied input but sanitized by the application. Vulnerability Details CVEID:CVE-2025-41234 DESCRIPTION:...

6.5CVSS6.5AI score0.00533EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2023/02/28 8:7 a.m.34 views

Moderate: Red Hat Security Advisory: pcs security update

An update for pcs is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

8.8CVSS6.8AI score0.00642EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/02/28 12:0 a.m.28 views

AlmaLinux 9 : pcs (ALSA-2023:0974)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:0974 advisory. - Sinatra is a domain-specific language for creating web applications in Ruby. An issue was discovered in Sinatra 2.0 before 2.2.3 and 3.0 before 3.0.4. An...

8.8CVSS7.1AI score0.00642EPSS
Exploits1References2
Rockylinux
Rockylinux
added 2023/02/22 1:8 a.m.36 views

pcs security update

An update is available for pcs. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The pcs packages provide a command-line configuration system for the Pacemaker an...

8.8CVSS8.5AI score0.00642EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2023/02/21 9:0 a.m.20 views

Moderate: Red Hat Security Advisory: pcs security update

An update for pcs is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

8.8CVSS6.8AI score0.00642EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/01/30 2:42 p.m.35 views

Moderate: Red Hat Security Advisory: pcs security update

An update for pcs is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.8AI score0.00642EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/01/30 2:32 p.m.42 views

Moderate: Red Hat Security Advisory: pcs security update

An update for pcs is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.8AI score0.00642EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2023/01/24 8:47 a.m.38 views

Moderate: Red Hat Security Advisory: pcs security update

An update for pcs is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support, Red Hat Enterprise Linux 8.2 Telecommunications Update Service, and Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impa...

8.8CVSS6.8AI score0.00642EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/11/28 12:0 a.m.2 views

CVE-2022-45442 Sinatra vulnerable to Reflected File Download attack

Sinatra is a domain-specific language for creating web applications in Ruby. An issue was discovered in Sinatra 2.0 before 2.2.3 and 3.0 before 3.0.4. An application is vulnerable to a reflected file download RFD attack that sets the Content-Disposition header of a response when the filename is...

8.8CVSS7AI score0.00642EPSS
Exploits1References5
CVE
CVE
added 2022/08/03 12:0 a.m.158 views

CVE-2022-36359

The vulnerability CVE-2022-36359 affects the Django HTTP FileResponse class, with Django 3.2 before 3.2.15 and 4.0 before 4.0.7 vulnerable to a reflected file download (RFD) attack. The attack can occur when the filename is derived from user-supplied input, as it sets the Content-Disposition head...

8.8CVSS8.3AI score0.00657EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2020/01/16 12:0 a.m.17 views

PT-2020-2651 · Oracle +2 · Oracle Retail Order Broker +2

Name of the Vulnerable Software and Affected Versions: Spring Framework versions 5.0.x prior to 5.0.16 Spring Framework versions 5.1.x prior to 5.1.13 Spring Framework versions 5.2.x prior to 5.2.3 Oracle Retail Order Broker affected versions not specified Description: The issue exists due to...

9.8CVSS7.2AI score0.88077EPSS
Exploits24References526
Rows per page
Query Builder