Lucene search
K

10 matches found

Cvelist
Cvelist
added 2025/01/31 3:25 p.m.23 views

CVE-2025-23215 PMD Designer's release key passphrase (GPG) available on Maven Central in cleartext

PMD is an extensible multilanguage static code analyzer. The passphrase for the PMD and PMD Designer release signing keys are included in jar published to Maven Central. The private key itself is not known to have been compromised itself, but given its passphrase is, it must also be considered...

9.3CVSS0.00315EPSS
Exploits0References3
OSV
OSV
added 2023/03/23 5:15 p.m.4 views

CVE-2023-20082

A vulnerability in Cisco IOS XE Software for Cisco Catalyst 9300 Series Switches could allow an authenticated, local attacker with level-15 privileges or an unauthenticated attacker with physical access to the device to execute persistent code at boot time and break the chain of trust. This...

6.8CVSS6.6AI score0.00375EPSS
Exploits0References1
OSV
OSV
added 2019/05/16 5:29 p.m.3 views

CVE-2018-12556

The signature verification routine in install.sh in yarnpkg/website through 2018-06-05 only verifies that the yarn release is signed by any arbitrary key in the local keyring of the user, and does not pin the signature to the yarn release key, which allows remote attackers to sign tampered yarn...

5.9CVSS5.8AI score0.01775EPSS
Exploits0References6
OSV
OSV
added 2019/05/16 5:29 p.m.1 views

UBUNTU-CVE-2018-12556

The signature verification routine in install.sh in yarnpkg/website through 2018-06-05 only verifies that the yarn release is signed by any arbitrary key in the local keyring of the user, and does not pin the signature to the yarn release key, which allows remote attackers to sign tampered yarn...

5.9CVSS6.8AI score0.01775EPSS
Exploits0References9
Packet Storm
Packet Storm
added 2015/10/14 12:0 a.m.49 views

X11 Keyboard Command Injection

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "\x0a", '2' = "\x0b", '3' = "\x0c", '4' = "\x0d", '5' = "\x0e", '6' = "\x0f", '7' = "\x10", '&' = "\x10", '8' = "\x11", '9' = "\x12",...

0.1AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.13 views

.NET Framework 4.6.x/4.7 servicing

Detectoid for .NET Framework 4.6.x & 4.7.x product servicing based on release key value floor is 4.6.2 RTM, ceiling is 4.7.1 RTM and servicing releases...

2.9AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.14 views

.NET Framework 4.6.x/4.7.x servicing

Detectoid for .NET Framework 4.6.x & 4.7.x product servicing based on release key value floor is 4.6.2 RTM, ceiling is 4.7.2 RTM and servicing releases...

2.9AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.12 views

.NET Framework 4.6.2 servicing

Detectoid for .NET Framework 4.6.2 product servicing based on release key value floor is 4.6.2 RTM, ceiling is 4.6.3 first pre-release build...

4.2AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.12 views

.NET Framework 4.6.2/4.7.x servicing

Detectoid for .NET Framework 4.6.2 & 4.7.x product servicing based on release key value floor is 4.6.2 RTM, ceiling is 4.7.2 RTM and servicing releases...

2.9AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.15 views

.NET Framework 4.8.1 RTM servicing

Detectoid for .NET Framework 4.8.1 product servicing based on release key value Using the last insertion release key for build 09032.00...

2.8AI score
Exploits0
Rows per page
Query Builder