6 matches found
CVE-2009-4998
The Workplace aka WP component in IBM FileNet P8 Application Engine P8AE 3.5.1 before 3.5.1-019 and 4.0.2.x before 4.0.2.7-P8AE-FP007, in certain FileTracker configurations, does not apply a security policy to the first document added during a session, which might allow remote attackers to bypass...
CVE-2022-29471
Browse restriction bypass vulnerability in Bulletin of Cybozu Garoon allows a remote authenticated attacker to obtain the data of Bulletin...
FreeBSD : jenkins -- multiple vulnerabilities (3c6f8270-3210-4e2f-ba72-a9cdca7417a0)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 3c6f8270-3210-4e2f-ba72-a9cdca7417a0 advisory. Jenkins Security Advisory: Exposure of multi-line secrets through error messages in Jenkins It...
Moderate: Red Hat Security Advisory: Cryostat security update
Updated RHEL-8 based Cryostat container images are now available Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
Debian DLA-1650-1 : rssh security update
The ESnet security team discovered a vulnerability in rssh, a restricted shell that allows users to perform only scp, sftp, cvs, svnserve Subversion, rdist and/or rsync operations. Missing validation in the scp support could result in the bypass of this restriction, allowing the execution of...
Design/Logic Flaw
Microsoft .NET Framework 2.0 SP2, 3.5.1, and 4 does not properly validate the System.Net.Sockets trust level, which allows remote attackers to obtain sensitive information or trigger arbitrary outbound network traffic via 1 a crafted XAML browser application aka XBAP, 2 a crafted ASP.NET...