Lucene search
K

463 matches found

Rockylinux
Rockylinux
added 2024/12/19 4:18 a.m.19 views

scap-security-guide bug fix and enhancement update

An update is available for scap-security-guide. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The scap-security-guide project provides a guide for configuratio...

6.9AI score
Exploits0
HackRead
HackRead
added 2024/12/18 10:49 p.m.9 views

Biggest Crypto Scam Tactics in 2024 and How to Avoid Them

Stay alert to crypto scams with our guide to 2024's top threats, including phishing, malware, Ponzi schemes, and…...

7.3AI score
Exploits0
OSV
OSV
added 2024/11/18 1:24 p.m.12 views

SUSE-SU-2024:4019-1 Security update for SUSE Manager Client Tools

This update fixes the following issues: golang-github-lusitaniae-apacheexporter was updated from version 1.0.1 to 1.0.8: - Security issues fixed: CVE-2023-3978: Fixed security bug in x/net dependency in version 1.0.2 bsc1213933 - Bugs fixed: Require Go 1.20 when building for RedHat derivatives...

6.1CVSS7.7AI score0.00843EPSS
Exploits0References21
Akamai Blog
Akamai Blog
added 2024/11/14 2:0 p.m.7 views

The Definitive Guide to Linux Process Injection

...

7.3AI score
Exploits0
Akamai Blog
Akamai Blog
added 2024/11/06 1:0 p.m.4 views

Rails Without Derails: Thwarting Code Injection Attacks

...

7.3AI score
Exploits0
Rockylinux
Rockylinux
added 2024/09/17 12:54 a.m.48 views

scap-security-guide bug fix and enhancement update

An update is available for scap-security-guide. This update affects Rocky Linux 8, Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The scap-security-guide project provides a guide f...

7.5AI score
Exploits0
Github Security Blog
Github Security Blog
added 2024/07/30 8:47 p.m.22 views

TensorFlow has segfault in array_ops.upper_bound

Impact arrayops.upperbound causes a segfault when not given a rank 2 tensor. Patches We have patched the issue in GitHub commit 915884fdf5df34aaedd00fc6ace33a2cfdefa586. The fix will be included in TensorFlow 2.13. We will also cherrypick this commit in TensorFlow 2.12.1. For more information...

7.5CVSS6.6AI score0.00429EPSS
Exploits0References5Affected Software3
Citrix
Citrix
added 2024/07/14 12:0 a.m.38 views

Netscaler CVE & Security Guide

Introduction Begin with an introduction to the main issue topic, explaining its significance and how the hub article serves as a central resource for related information. Overview of the Issue Provide a brief yet comprehensive overview of the issue, outlining the common challenges and key points...

9.4CVSS9.7AI score0.99999EPSS
Exploits93
Github Security Blog
Github Security Blog
added 2024/05/27 11:35 p.m.19 views

silverstripe/framework allows upload of dangerous file types

Some potentially dangerous file types exist in File.allowedextensions which could allow a malicious CMS user to upload files that then get executed in the security context of the website. We have removed the ability to upload .css, .js, .potm, .dotm, .xltm and .jar files in the default...

7.2AI score
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2024/05/01 4:40 p.m.76 views

XMLUnit for Java has Insecure Defaults when Processing XSLT Stylesheets

Impact When performing XSLT transformations XMLUnit for Java did not disable XSLT extension functions by default. Depending on the XSLT processor being used this could allow arbitrary code to be executed when XMLUnit is used to transform data with a stylesheet who's source can not be trusted. If...

4CVSS8.1AI score0.00216EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/05/01 4:40 p.m.29 views

GHSA-CHFM-68VV-PVW5 XMLUnit for Java has Insecure Defaults when Processing XSLT Stylesheets

Impact When performing XSLT transformations XMLUnit for Java did not disable XSLT extension functions by default. Depending on the XSLT processor being used this could allow arbitrary code to be executed when XMLUnit is used to transform data with a stylesheet who's source can not be trusted. If...

4CVSS7.9AI score0.00216EPSS
Exploits0References5
Rockylinux
Rockylinux
added 2024/03/12 3:42 p.m.25 views

scap-security-guide bug fix and enhancement update

An update is available for scap-security-guide. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the SCAP...

6.8AI score
Exploits0
Nvidia
Nvidia
added 2023/11/30 12:0 a.m.23 views

Security Notice: Triton Inference Server - November 2023

This notice is regarding Triton Inference Server. Go to NVIDIA Product Security. December 4, 2023: Triton Inference Server is designed for flexibility and allows developers to create and deploy inferencing solutions in various ways. Triton Inference Server enables teams to deploy any AI model fro...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/11/20 2:2 a.m.9 views

lunigal.fr Cross Site Scripting vulnerability OBB-3786859

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.3AI score
Exploits0
Rockylinux
Rockylinux
added 2023/11/11 11:0 p.m.36 views

scap-security-guide bug fix and enhancement update

An update is available for scap-security-guide. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rock...

7AI score
Exploits0
Cvelist
Cvelist
added 2023/08/21 6:55 a.m.41 views

CVE-2022-46751 Apache Ivy: XML External Entity vulnerability in Apache Ivy

Improper Restriction of XML External Entity Reference, XML Injection aka Blind XPath Injection vulnerability in Apache Software Foundation Apache Ivy.This issue affects any version of Apache Ivy prior to 2.5.2. When Apache Ivy prior to 2.5.2 parses XML files - either its own configuration, Ivy...

8.6AI score0.01855EPSS
Exploits0References5
Microsoft KB
Microsoft KB
added 2023/08/08 7:0 a.m.85 views

August 8, 2023—KB5029304 (Security-only update)

August 8, 2023—KB5029304 Security-only update REMINDER Windows 8.1 reached end of support on January 10, 2023, at which point technical assistance and software updates are no longer provided. If you have devices running Windows 8.1, we recommend upgrading them to a more current, in-service, and...

9.8CVSS7.4AI score0.99083EPSS
Exploits5
CISA
CISA
added 2023/06/06 12:0 p.m.4 views

CISA and Partners Release Joint Guide to Securing Remote Access Software

Today, CISA, Federal Bureau of Investigation FBI, the National Security Agency NSA, Multi-State Information Sharing and Analysis Center MS-ISAC, and the Israel National Cyber Directorate INCD released the Guide to Securing Remote Access Software. This new joint guide is the result of a...

7.2AI score
Exploits0References5
Github Security Blog
Github Security Blog
added 2023/03/27 9:5 p.m.37 views

TensorFlow Denial of Service vulnerability

Impact A malicious invalid input crashes a tensorflow model Check Failed and can be used to trigger a denial of service attack. To minimize the bug, we built a simple single-layer TensorFlow model containing a Convolution3DTranspose layer, which works well with expected inputs and can be deployed...

6.5CVSS6.6AI score0.00432EPSS
Exploits1References5Affected Software2
Github Security Blog
Github Security Blog
added 2023/03/24 9:58 p.m.30 views

TensorFlow vulnerable to seg fault in `tf.raw_ops.Print`

Impact When the parameter summarize of tf.rawops.Print is zero, the new method SummarizeArray will reference to a nullptr, leading to a seg fault. python import tensorflow as tf tf.rawops.Printinput = tf.constant1, 1, 1, 1,dtype=tf.int32, data = False, False, False, False, False, False, False,...

7.5CVSS7.2AI score0.00391EPSS
Exploits0References4Affected Software3
Rows per page
Query Builder