Lucene search
K

43 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.11 views

Unity Linux 20.1070e Security Update: maven (UTSA-2026-017745)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017745 advisory. Apache Maven will follow repositories that are defined in a dependencys Project Object Model pom which may be surprising to some users, resulting in potential risk i...

9.1CVSS5.8AI score0.08691EPSS
Exploits2References4
OSV
OSV
added 2026/03/10 8:44 a.m.3 views

BIT-MAVEN-2021-26291 block repositories using http by default

Apache Maven will follow repositories that are defined in a dependency’s Project Object Model pom which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository...

9.1CVSS5.7AI score0.08691EPSS
Exploits2References44
Tenable Nessus
Tenable Nessus
added 2025/12/04 12:0 a.m.4 views

Adobe Experience Manager (AEM) CRX Namespace Editor Panel Detected

This plugin detects the presence of the Adobe Experience Manager AEM CRX Namespace Editor panel on a web application. The CRX Namespace Editor panel is part of the AEM's content repository management interface, allowing administrators to manage namespaces and node types within the repository...

6.8AI score
Exploits0
Fedora
Fedora
added 2025/11/14 1:28 a.m.6 views

[SECURITY] Fedora 43 Update: gh-2.83.0-1.fc43

A command-line interface to GitHub for use in your terminal or your scripts. gh is a tool designed to enhance your workflow when working with GitHub. It provides a seamless way to interact with GitHub repositories and perform vari ous actions right from the command line, eliminating the need to...

7.5CVSS7.1AI score0.00613EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-0596

Malware in sbrugna...

3.5CVSS6.4AI score0.00765EPSS
Exploits0References3
Fedora
Fedora
added 2025/09/19 1:16 a.m.6 views

[SECURITY] Fedora 41 Update: gh-2.79.0-1.fc41

A command-line interface to GitHub for use in your terminal or your scripts. gh is a tool designed to enhance your workflow when working with GitHub. It provides a seamless way to interact with GitHub repositories and perform vari ous actions right from the command line, eliminating the need to...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/16 12:0 a.m.25 views

CBL Mariner 2.0 Security Update: CBL-Mariner Releases / javapackages-bootstrap / maven (CVE-2021-26291)

The version of CBL-Mariner Releases / javapackages-bootstrap / maven installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-26291 advisory. - Apache Maven will follow repositories that are defined in a...

9.1CVSS7.1AI score0.08691EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2021-26291

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Apache Maven will follow repositories that are defined in a dependency's Project Object Model pom which may be surprising to some users, resulting in potential...

9.1CVSS6.8AI score0.08691EPSS
Exploits2References4
CNNVD
CNNVD
added 2025/02/14 12:0 a.m.4 views

FeMiner wms 安全漏洞

FeMiner wms is a repository management system for individual developers of Front End Miner FeMiner in China. A security vulnerability exists in FeMiner wms version 1.0, which stems from the inclusion of a path traversal vulnerability...

7.5CVSS6.8AI score0.0099EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2024/06/04 1:0 p.m.4 views

SUSE CVE-2021-26291

Apache Maven will follow repositories that are defined in a dependency's Project Object Model pom which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository...

7.4CVSS7.2AI score0.08691EPSS
Exploits2References7
OSV
OSV
added 2024/02/22 9:36 p.m.7 views

GHSA-FVV5-H29G-F6W5 User with ci:ReadAction permissions and write permissions to one path in a repository may copy objects from any path in the repository

Impact A bug in permissions validation allows a user with the ci:ReadAction permission to skip read checks when copying an object. If they additionally have read and write permission to path in the repository, they can copy an otherwise unreadable object and read it. In order to be affected and...

5.3CVSS6.9AI score
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2023/08/01 12:0 a.m.4 views

The vulnerability of GitLab’s repository management system, related to the lack of protective measures for the website structure, allows attackers to execute arbitrary code.

The vulnerability of Gitlab’s repository management system is related to the lack of measures taken to protect the structure of the web interface. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS6.7AI score0.00612EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2023/05/03 2:58 p.m.88 views

Moderate: Red Hat Security Advisory: RHUI 4.4.0 release - Security Fixes, Bug Fixes, and Enhancements Update

An updated version of Red Hat Update Infrastructure RHUI is now available. RHUI 4.4 fixes several security and operational bugs, and introduces multiple new features. Red Hat Update Infrastructure RHUI offers a highly scalable, highly redundant framework that enables you to manage repositories an...

7.5CVSS6.6AI score0.62575EPSS
Exploits1References22
Tenable Nessus
Tenable Nessus
added 2023/01/16 12:0 a.m.57 views

Ubuntu 22.10 : Apache Maven vulnerability (USN-5805-1)

The remote Ubuntu 22.10 host has packages installed that are affected by a vulnerability as referenced in the USN-5805-1 advisory. It was discovered that Apache Maven followed repositories that are defined in a dependencys Project Object Model pom even if the repositories weren't encryptedh http...

9.1CVSS7.7AI score0.08691EPSS
Exploits2References2
NVD
NVD
added 2021/04/23 3:15 p.m.20 views

CVE-2021-26291

Apache Maven will follow repositories that are defined in a dependency’s Project Object Model pom which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository...

9.1CVSS0.08691EPSS
Exploits2References43
OSV
OSV
added 2021/04/23 3:15 p.m.4 views

DEBIAN-CVE-2021-26291

Apache Maven will follow repositories that are defined in a dependency’s Project Object Model pom which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository...

9.1CVSS7AI score0.08691EPSS
Exploits2References1
Prion
Prion
added 2021/04/23 3:15 p.m.30 views

Design/Logic Flaw

Apache Maven will follow repositories that are defined in a dependency’s Project Object Model pom which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository...

6.4CVSS8.8AI score0.08691EPSS
Exploits2References44Affected Software4
OSV
OSV
added 2021/04/23 3:15 p.m.2 views

UBUNTU-CVE-2021-26291

Apache Maven will follow repositories that are defined in a dependency’s Project Object Model pom which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository...

9.1CVSS6.7AI score0.08691EPSS
Exploits2References12
AlpineLinux
AlpineLinux
added 2021/04/23 3:15 p.m.33 views

CVE-2021-26291

Apache Maven will follow repositories that are defined in a dependency’s Project Object Model pom which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository...

9.1CVSS9.1AI score0.08691EPSS
Exploits2
UbuntuCve
UbuntuCve
added 2021/04/23 3:15 p.m.72 views

CVE-2021-26291

Apache Maven will follow repositories that are defined in a dependency’s Project Object Model pom which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository...

9.1CVSS6.8AI score0.08691EPSS
Exploits2References11
Rows per page
Query Builder