CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2024/07/10 7:15 a.m.•23 views

CVE-2024-36450

5.4CVSS0.0024EPSS

Cvelist•added 2024/07/10 7:1 a.m.•17 views

CVE-2024-36452

Cross-site request forgery vulnerability exists in ajaxterm module of Webmin versions prior to 2.003. If this vulnerability is exploited, unintended operations may be performed when a user views a malicious page while logged in. As a result, data within a system may be referred, a webpage may be...

0.00146EPSS

CVE•added 2024/07/10 7:1 a.m.•53 views

CVE-2024-36452

CVE-2024-36452 concerns Webmin’s ajaxterm module (Webmin prior to 2.003). The vulnerability is a cross-site request forgery (CSRF) that allows an attacker, by luring a logged‑in user to view a crafted page, to cause unintended operations. Documented impacts include potential data exposure, altera...

3.1CVSS6.8AI score0.00146EPSS

Exploits0References2Affected Software1

Cvelist•added 2024/07/10 7:1 a.m.•18 views

CVE-2024-36451

Improper handling of insufficient permissions or privileges vulnerability exists in ajaxterm module of Webmin prior to 2.003. If this vulnerability is exploited, a console session may be hijacked by an unauthorized user. As a result, data within a system may be referred, a webpage may be altered,...

0.00149EPSS

Vulnrichment•added 2024/07/10 7:1 a.m.•24 views

CVE-2024-36451

6.8AI score0.00149EPSS

Cvelist•added 2024/07/10 7:1 a.m.•22 views

CVE-2024-36450

0.0024EPSS

CVE•added 2024/07/10 7:1 a.m.•66 views

CVE-2024-36450

Webmin is affected by CVE-2024-36450 due to a cross-site scripting flaw in sysinfo.cgi present in Webmin versions prior to 1.910. Exploitation can cause arbitrary scripts to run in the victim’s browser, with potential session ID exposure, webpage alteration, or server disruption. The vulnerabilit...

5.4CVSS6.5AI score0.0024EPSS

Exploits0References2Affected Software1

OSV•added 2024/05/02 2:15 p.m.•1 views

DEBIAN-CVE-2024-30251

aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. In affected versions an attacker can send a specially crafted POST multipart/form-data request. When the aiohttp server processes it, the server will enter an infinite loop and be unable to process any further request...

7.5CVSS6.6AI score0.0034EPSS

Exploits0References1

OSV•added 2024/05/02 2:15 p.m.•2 views

AZL-43369 CVE-2024-30251 affecting package python-aiohttp 3.6.2-3

7.5CVSS6.6AI score0.0034EPSS

Exploits0References1

Microsoft KB•added 2022/01/04 12:0 a.m.•2 views

KB5010215: Windows Server 2012 R2 stops responding after installing the December 14, 2021 update

KB5010215: Windows Server 2012 R2 stops responding after installing the December 14, 2021 update Summary After you install the December 14, 2021 Windows update on a server that is running Windows Server 2012 R2, the server may stop responding. Additionally, you may experience a black screen, slow...

6.9AI score

NVD•added 2018/02/19 9:29 p.m.•8 views

CVE-2018-5763

An issue was discovered in OXID eShop Enterprise Edition before 5.3.7 and 6.x before 6.0.1. By entering specially crafted URLs, an attacker is able to bring the shop server to a standstill and hence, it stops working. This is only valid if OXID High Performance Option is activated and Varnish is...

5.9CVSS5.6AI score0.00366EPSS

Exploits0References1

Tenable Nessus•added 2011/09/07 12:0 a.m.•36 views

Fedora 14 : dhcp-4.2.0-23.P2.fc14 (2011-10705)

This update fixes a pair of defects that could cause the server to halt upon processing certain packets. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much ...

Tenable Nessus•added 2011/08/29 12:0 a.m.•35 views

Exploits6References5

Fedora 15 : dhcp-4.2.1-10.P1.fc15 (2011-10740)

Tenable Nessus•added 2011/08/23 12:0 a.m.•39 views

Exploits0References4

Fedora 16 : dhcp-4.2.2-1.fc16 (2011-10667)

Oracle linux•added 2011/08/15 12:0 a.m.•34 views

Exploits0References4

dhcp security update

12:4.1.1-19.P1.1 - A pair of defects cause the server to halt upon processing certain packets CVE-2011-2748, CVE-2011-2749, 729883...

7.8CVSS1.4AI score0.87787EPSS

Tenable Nessus•added 2011/08/15 12:0 a.m.•25 views

FreeBSD : isc-dhcp-server -- server halt upon processing certain packets (510b630e-c43b-11e0-916c-00e0815b8da8)

ISC reports : A pair of defects cause the server to halt upon processing certain packets. The patch is to properly discard or process those packets. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML...

7.8CVSS6.3AI score0.87787EPSS

Exploits0References3

FreeBSD•added 2011/08/10 12:0 a.m.•37 views

isc-dhcp-server -- server halt upon processing certain packets

ISC reports: A pair of defects cause the server to halt upon processing certain packets. The patch is to properly discard or process those packets...

Packet Storm•added 2000/11/19 12:0 a.m.•33 views

tetrinet-1.13.dos.txt

Hi, I found a bug in Tetrinet v1.13 PUBLIC RELEASE. If you connect with telnet on the Tetrinet port, and press 'enter' once, keeping the connection idle, will halt all other processes. No one else will be able to connect, send msgs, etc. The players normally see the status of the other players, b...

7.4AI score