Lucene search
+L

12 matches found

Debian
Debian
added 2024/10/13 6:22 p.m.10 views

[SECURITY] [DSA 5791-1] python-reportlab security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5791-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 13, 2024 https://www.debian.org/security/faq -...

7.8CVSS7.2AI score0.02123EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2024/10/13 12:0 a.m.23 views

Debian dsa-5791 : python-reportlab-doc - security update

The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5791 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5791-1 [email protected] https://www.debian.org/security/ Moritz...

7.8CVSS7.3AI score0.02123EPSS
Exploits6References4
Debian
Debian
added 2024/09/17 8:50 p.m.15 views

[SECURITY] [DSA 5771-1] php-twig security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5771-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 17, 2024 https://www.debian.org/security/faq -...

8.6CVSS6.4AI score0.00833EPSS
Exploits0
myhack58
myhack58
added 2019/06/26 12:0 a.m.487 views

Ann Day honey network capture“use of the ElasticSearch Groovy vulnerability Monroe coin(Dog)mining”event analysis-vulnerability warning-the black bar safety net

1, Overview 2019 6 May 13, Ann Day honey network capture to use CVE-2015-1427ElasticSearch Groovyremote command execution vulnerability attacks. The vulnerability principle is Elaticsearch groovy as a scripting language, and based on the use of black and white lists of the sandbox mechanism to...

7.5CVSS9.8AI score0.99906EPSS
Exploits19
Tenable Nessus
Tenable Nessus
added 2019/01/22 12:0 a.m.141 views

EulerOS Virtualization 2.5.1 : ghostscript (EulerOS-SA-2019-1016)

According to the versions of the ghostscript package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - It was discovered that the ghostscript .tempfile function did not properly handle file permissions. An attacker could possibl...

9.8CVSS7.4AI score0.92499EPSS
Exploits8References18
ArchLinux
ArchLinux
added 2016/04/01 12:0 a.m.55 views

jre7-openjdk: sandbox escape

It was discovered that the security fix for CVE-2013-5838 was incomplete and still allowed remote attackers to escape the Java security sandbox mechanism. The root problem is that the Reflection API does not properly guarantee type safety when Method Handle objects were invoked across two differe...

9.3CVSS2.8AI score0.05765EPSS
Exploits0References2
ArchLinux
ArchLinux
added 2016/04/01 12:0 a.m.62 views

jdk7-openjdk: sandbox escape

It was discovered that the security fix for CVE-2013-5838 was incomplete and still allowed remote attackers to escape the Java security sandbox mechanism. The root problem is that the Reflection API does not properly guarantee type safety when Method Handle objects were invoked across two differe...

9.3CVSS2.8AI score0.05765EPSS
Exploits0References2
ArchLinux
ArchLinux
added 2016/03/29 12:0 a.m.49 views

jre8-openjdk: sandbox escape

It was discovered that the security fix for CVE-2013-5838 was incomplete and still allowed remote attackers to escape the Java security sandbox mechanism. The root problem is that the Reflection API does not properly guarantee type safety when Method Handle objects were invoked across two differe...

9.3CVSS2.8AI score0.05765EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2016/02/18 12:0 a.m.27 views

KLA10760 Security bypass vulnerabilities in Google Chrome

An unspecified vulnerability was found in Google Chrome. By exploiting this vulnerability malicious users can bypass same origin policy and sandbox mechanism protection. This vulnerability can be exploited remotely via an unknown vectors. Original advisories Google Chrome releases blog Related...

10CVSS9.6AI score0.02639EPSS
Exploits0References3
myhack58
myhack58
added 2015/07/09 12:0 a.m.43 views

Hacking Team attack code analysis Part 3 : the Adobe Font Driver kernel driver elevation of privilege vulnerability-vulnerability warning-the black bar safety net

In order to in IE and Chrome bypassing its sandbox mechanism to completely control the user's system, Hacking Team also utilizes a Windows kernel driver: the Adobe Font Driveratmfd.dllin the presence of a font 0day vulnerability to achieve privilege escalation and bypass the sandbox mechanism. Th...

8.9AI score
Exploits0
UbuntuCve
UbuntuCve
added 2015/02/25 12:0 a.m.26 views

CVE-2015-0820

Mozilla Firefox before 36.0 does not properly restrict transitions of JavaScript objects from a non-extensible state to an extensible state, which allows remote attackers to bypass a Caja Compiler sandbox protection mechanism or a Secure EcmaScript sandbox protection mechanism via a crafted web...

2.6CVSS6.9AI score0.01731EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.19 views

Debian Security Advisory DSA 1364-1 (vim)

The remote host is missing an update to vim announced via advisory DSA 1364-1. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7.6CVSS9.5AI score0.04179EPSS
Exploits2References1
Rows per page
Query Builder