Lucene search
+L

130 matches found

CVE
CVE
added 2022/12/22 12:0 a.m.159 views

CVE-2022-22757

CVE-2022-22757 concerns Mozilla Firefox and involves the Remote Agent used in WebDriver not validating the Host or Origin headers. This could allow a website to connect back locally to the user's browser to take control, specifically when WebDriver is enabled (not the default). Affected products ...

6.5CVSS6.9AI score0.00233EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/12/22 12:0 a.m.41 views

CVE-2022-22757

Remote Agent, used in WebDriver, did not validate the Host or Origin headers. This could have allowed websites to connect back locally to the user's browser to control it. This bug only affected Firefox when WebDriver was enabled, which is not the default configuration.. This vulnerability affect...

7.3AI score0.00233EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2022/12/22 12:0 a.m.70 views

CVE-2022-22757

Remote Agent, used in WebDriver, did not validate the Host or Origin headers. This could have allowed websites to connect back locally to the user's browser to control it. This bug only affected Firefox when WebDriver was enabled, which is not the default configuration.. This vulnerability affect...

6.5CVSS8.2AI score0.00233EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2022/12/22 12:0 a.m.70 views

CVE-2022-22757

Remote Agent, used in WebDriver, did not validate the Host or Origin headers. This could have allowed websites to connect back locally to the user's browser to control it. This bug only affected Firefox when WebDriver was enabled, which is not the default configuration.. This vulnerability affect...

6.5CVSS7.2AI score0.00233EPSS
Exploits0
GithubExploit
GithubExploit
added 2022/12/08 1:52 a.m.53 views

Exploit for Incorrect Authorization in Cacti

CVE-2022-46169 CVE-2022-46169 Cacti remoteagent.php Unauthen...

9.8CVSS7.9AI score0.99826EPSS
Exploits48
NCSC
NCSC
added 2022/12/08 12:0 a.m.4 views

Vulnerability fixed in Cacti

Vulnerabilities have been fixed in Cacti. The vulnerabilities allow a malicious party to access system data and to execute arbitrary code under the user's privileges. An unauthenticated malicious party can gain access to the remoteagent.php file. By bypassing the authentication of this file...

9.8CVSS7.8AI score0.99826EPSS
Exploits48
NVD
NVD
added 2022/12/05 9:15 p.m.24 views

CVE-2022-46169

Cacti is an open source platform which provides a robust and extensible operational monitoring and fault management framework for users. In affected versions a command injection vulnerability allows an unauthenticated user to execute arbitrary code on a server running Cacti, if a specific data...

9.8CVSS0.99826EPSS
Exploits48References5
OSV
OSV
added 2022/12/05 9:15 p.m.2 views

DEBIAN-CVE-2022-46169

Cacti is an open source platform which provides a robust and extensible operational monitoring and fault management framework for users. In affected versions a command injection vulnerability allows an unauthenticated user to execute arbitrary code on a server running Cacti, if a specific data...

9.8CVSS9.2AI score0.99826EPSS
Exploits48References1
OSV
OSV
added 2022/12/05 9:15 p.m.11 views

UBUNTU-CVE-2022-46169

Cacti is an open source platform which provides a robust and extensible operational monitoring and fault management framework for users. In affected versions a command injection vulnerability allows an unauthenticated user to execute arbitrary code on a server running Cacti, if a specific data...

9.8CVSS7.6AI score0.99826EPSS
Exploits48References8
Vulnrichment
Vulnrichment
added 2022/12/05 8:48 p.m.27 views

CVE-2022-46169 Unauthenticated Command Injection

Cacti is an open source platform which provides a robust and extensible operational monitoring and fault management framework for users. In affected versions a command injection vulnerability allows an unauthenticated user to execute arbitrary code on a server running Cacti, if a specific data...

9.8CVSS8.4AI score0.99826EPSS
Exploits48References4
OpenVAS
OpenVAS
added 2022/08/02 12:0 a.m.10 views

Veritas Backup Exec Remote Agent Detection Consolidation

Consolidation of Veritas Backup Exec Remote Agent detections. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only include"pluginfeedinfo.inc";...

7.5AI score
Exploits0References1
CNVD
CNVD
added 2022/04/06 12:0 a.m.112 views

IBM UrbanCode Deploy Encryption Issue Vulnerability

IBM UrbanCode Deploy UCD is a suite of application automation deployment tools from IBM. The tool is based on an application deployment automation management information model, and through remote agent technology to automate the deployment of complex applications in different environments, etc. I...

7.5CVSS2.2AI score0.00692EPSS
Exploits0References1
Atlassian
Atlassian
added 2022/03/31 12:45 p.m.278 views

Bamboo remote agent: Multiple vulnerabilities in log4j < 1.2.7-atlassian-16

The version of log4j used by the Bamboo remote agent has been updated from version 1.2.7-atlassian-15 to 1.2.7-atlassian-16 to address the following vulnerabilities: CVE-2020-9493|https://vulners.com/cve/CVE-2020-9493 and CVE-2022-23307|https://vulners.com/cve/CVE-2022-23307 Apache Chainsaw is...

9.8CVSS5.9AI score0.66537EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/02/15 12:0 a.m.23 views

Ubuntu: Security Advisory (USN-5284-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS8.4AI score0.00926EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2022/02/14 3:13 p.m.125 views

USN-5284-1: Firefox vulnerabilities

Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, bypass security restrictions, obtain sensitive information, or execute arbitrary code. CVE-2022-0511,...

9.6CVSS8AI score0.00926EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/02/10 12:0 a.m.20 views

Mozilla Firefox Security Advisories (MFSA2022-04, MFSA2022-05) - Windows

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

9.6CVSS7.8AI score0.00926EPSS
Exploits2References1
UbuntuCve
UbuntuCve
added 2022/02/09 12:0 a.m.105 views

CVE-2022-22757

Remote Agent, used in WebDriver, did not validate the Host or Origin headers. This could have allowed websites to connect back locally to the user's browser to control it. This bug only affected Firefox when WebDriver was enabled, which is not the default configuration.. This vulnerability affect...

6.5CVSS6.8AI score0.00233EPSS
Exploits0References3
OSV
OSV
added 2022/02/09 12:0 a.m.4 views

UBUNTU-CVE-2022-22757

Remote Agent, used in WebDriver, did not validate the Host or Origin headers. This could have allowed websites to connect back locally to the user's browser to control it. This bug only affected Firefox when WebDriver was enabled, which is not the default configuration.. This vulnerability affect...

6.5CVSS7.3AI score0.00233EPSS
Exploits0References4
Mozilla
Mozilla
added 2022/02/08 12:0 a.m.401 views

Security Vulnerabilities fixed in Firefox 97 — Mozilla

A Time-of-Check Time-of-Use bug existed in the Maintenance Updater Service that could be abused to grant Users write access to an arbitrary directory. This could have been used to escalate to SYSTEM access.This bug only affects Firefox on Windows. Other operating systems are unaffected. If a user...

9.6CVSS0.3AI score0.00926EPSS
Exploits2References13Affected Software1
CNNVD
CNNVD
added 2022/02/08 12:0 a.m.14 views

Mozilla Firefox 访问控制错误漏洞

Mozilla Firefox is an open source Web browser from the Mozilla Foundation in the U.S. An access control error vulnerability exists in Mozilla Firefox, which stems from the Remote Agent used in WebDriver not validating the Host or Origin header. An attacker could exploit the vulnerability to force...

6.5CVSS7.7AI score0.00233EPSS
Exploits0References8
Rows per page
Query Builder