Lucene search
K

4 matches found

OSV
OSV
added 2026/03/22 3:16 a.m.4 views

UBUNTU-CVE-2026-33550

SOGo before 5.12.5 does not renew the OTP if a user disables/enables it, and has a too short length only 12 digits instead of the 20 recommended...

2.6CVSS5.8AI score0.00135EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/01/05 2:0 a.m.4 views

mod_md: Apache HTTP Server: mod_md (ACME), unintended retry intervals

An integer overflow flaw has been discovered in the Apache HTTP server. The integer overflow in the case of failed ACME certificate renewal leads, after a number of failures 30 days in default configurations, to the backoff timer becoming 0. Attempts to renew the certificate then are repeated...

7.5CVSS5.8AI score0.00417EPSS
Exploits0References5
HashiCorp Security Advisories
HashiCorp Security Advisories
added 2021/05/20 7:29 p.m.4 views

Vault Renewed Nearly-Expired Leases With Incorrect Non-Expiring TTLs

Summary Vault and Vault Enterprise “Vault” allowed the renewal of nearly-expired token leases and dynamic secret leases specifically, those within 1 second of their maximum TTL, which caused them to be incorrectly treated as non-expiring during subsequent use. This vulnerability, CVE-2021-32923,...

7.4CVSS6.9AI score0.01376EPSS
Exploits0Affected Software1
OSV
OSV
added 2018/12/12 4:29 p.m.3 views

CVE-2018-1485

IBM BigFix Platform 9.2.0 through 9.2.14 and 9.5 through 9.5.9 does not renew a session variable after a successful authentication which could lead to session fixation/hijacking vulnerability. This could force a user to utilize a cookie that may be known to an attacker. IBM X-Force ID: 140970...

4.3CVSS5.8AI score0.01014EPSS
Exploits0References2
Rows per page
Query Builder