Lucene search
K

2077 matches found

Microsoft KB
Microsoft KB
added 2016/12/13 8:0 a.m.48 views

December 13, 2016 — KB3205386 (OS Build 10586.713)

December 13, 2016 — KB3205386 OS Build 10586.713 Improvements and fixes This security update includes these additional improvements and fixes. No new operating system features are being introduced in this update. Key changes include: Improved reliability of Internet Explorer. Addressed issue with...

9.3CVSS7.4AI score0.73289EPSS
Exploits11
Veeam
Veeam
added 2016/11/25 12:0 a.m.11 views

License cannot be installed in Veeam ONE

Challenge When installing the license file, the following error message may occur: License signature is invalid Copy Cause Sometimes the license check module is unable to process the license key correctly, some certificates are missing, outdated or machine has no internet connection to verify the...

7AI score
Exploits0Affected Software1
n0where
n0where
added 2016/10/27 5:34 a.m.22 views

OWASP SSL TLS Scanning : DeepViolet

DeepViolet is a TLS/SSL scanning API written in Java. To keep DeepViolet easy to use, identify bugs, reference implementations have been developed that consume the API. If you want to see what DeepViolet can do, use it from the command line in your scripts or use the graphical tool from the comfo...

7.2AI score
Exploits0References2
OSV
OSV
added 2016/09/26 7:59 p.m.2 views

DEBIAN-CVE-2016-7052

crypto/x509/x509vfy.c in OpenSSL 1.0.2i allows remote attackers to cause a denial of service NULL pointer dereference and application crash by triggering a CRL operation...

7.5CVSS8.8AI score0.30216EPSS
Exploits1References1
ThreatPost
ThreatPost
added 2016/09/26 10:45 a.m.75 views

OpenSSL Fixes Critical Bug Introduced by Latest Update

OpenSSL today released an emergency security update after a patch in its most recent update issued last week introduced a critical vulnerability in the cryptographic library. The new flaw affects only OpenSSL 1.1.0a, which was made available last Thursday; users are urged to update to 1.1.0b...

5CVSS0.7AI score0.95707EPSS
Exploits7References3
OSV
OSV
added 2016/09/07 8:59 p.m.7 views

CVE-2016-5404

The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...

6.5CVSS6.4AI score
Exploits0References9
Prion
Prion
added 2016/09/07 8:59 p.m.22 views

Command injection

The certrevoke command in FreeIPA does not check for the "revoke certificate" permission, which allows remote authenticated users to revoke arbitrary certificates by leveraging the "retrieve certificate" permission...

4CVSS6.8AI score0.02585EPSS
Exploits0References9Affected Software2
OpenVAS
OpenVAS
added 2016/09/07 12:0 a.m.22 views

RedHat Update for ipa RHSA-2016:1797-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.7AI score0.02585EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2016/09/06 12:0 a.m.57 views

Aruba Networks / Alcatel-Lucent Private Key Disclosure

This advisory is accompanied by a blog post regarding a recap on our published "House of Keys" research study on the re-use of cryptographic secrets from 11/2015. For further information also see http://blog.sec-consult.com/2016/09/house-of-keys-9-months-later-40-worse.html SEC Consult...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2016/09/06 12:0 a.m.18 views

CentOS Update for ipa-admintools CESA-2016:1797 centos7

Check the version of ipa-admintools SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882554";...

6.5CVSS6.1AI score0.02585EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/09/06 12:0 a.m.23 views

CentOS Update for ipa-admintools CESA-2016:1797 centos6

Check the version of ipa-admintools SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882553";...

6.5CVSS6.1AI score0.02585EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/09/06 12:0 a.m.30 views

Scientific Linux Security Update : ipa on SL6.x, SL7.x i386/x86_64 (20160901)

Security Fixes : - An insufficient permission check issue was found in the way IPA server treats certificate revocation requests. An attacker logged in with the 'retrieve certificate' permission enabled could use this flaw to revoke certificates, possibly triggering a denial of service attack...

6.5CVSS6.5AI score0.02585EPSS
Exploits0References2
Cent OS
Cent OS
added 2016/09/05 9:43 p.m.62 views

ipa security update

CentOS Errata and Security Advisory CESA-2016:1797 An update for ipa is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which...

6.5CVSS6.5AI score0.02585EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2016/09/01 1:57 p.m.5 views

ipa: Insufficient privileges check in certificate revocation

An insufficient permission check issue was found in the way IPA server treats certificate revocation requests. An attacker logged in with the 'retrieve certificate' permission enabled could use this flaw to revoke certificates, possibly triggering a denial of service attack...

6.5CVSS6.7AI score0.02585EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/09/01 1:57 p.m.38 views

Moderate: Red Hat Security Advisory: ipa security update

An update for ipa is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

6.5CVSS6.5AI score0.02585EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2016/09/01 12:0 a.m.27 views

ipa security update

3.0.0-50.el6.2 - Resolves: 1351593 CVE-2016-5404 ipa: Insufficient privileges check in certificate revocation - cert-revoke: fix permission check bypass CVE-2016-5404...

6.5CVSS6.6AI score0.02585EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2016/08/18 9:4 p.m.28 views

CVE-2016-5404

An insufficient permission check issue was found in the way IPA server treats certificate revocation requests. An attacker logged in with the 'retrieve certificate' permission enabled could use this flaw to revoke certificates, possibly triggering a denial of service attack...

6.5CVSS3AI score0.02585EPSS
Exploits0References1
RubySec
RubySec
added 2016/08/18 12:0 a.m.22 views

Doorkeeper gem does not revoke tokens & uses wrong auth/auth method

Doorkeeper failed to implement OAuth 2.0 Token Revocation RFC 7009 in the following ways: 1. Public clients making valid, unauthenticated calls to revoke a token would not have their token revoked 2. Requests were not properly authenticating the client credentials but were, instead, looking at th...

9.1CVSS1AI score0.04685EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2016/08/18 12:0 a.m.1 views

Unspecified vulnerability in Red Hat IPA server

Red Hat IPA server is an authentication solution from Red Hat. A security vulnerability exists in Red Hat IPA server, which is caused by the program failing to adequately check certificates. The vulnerability can be exploited by an attacker to log in as 'retrieve certificate', revoke a certificat...

6.5CVSS6.8AI score0.02585EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/07/21 12:0 a.m.26 views

Moodle 2.6.x < 2.6.11 / 2.7.x < 2.7.8 Multiple Vulnerabilities

Binary data 9426.prm...

5.8CVSS7.6AI score0.01893EPSS
Exploits0References9
Rows per page
Query Builder