Lucene search
K

168 matches found

RedHat Linux
RedHat Linux
added 2017/02/02 8:39 p.m.8 views

jboss: jbossas: unsafe chown of server.log in jboss init script allows privilege escalation

It was discovered that the jboss init script performed unsafe file handling which could result in local privilege escalation...

7.8CVSS7.3AI score0.00366EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/02/02 8:36 p.m.5 views

jboss: jbossas: unsafe chown of server.log in jboss init script allows privilege escalation

It was discovered that the jboss init script performed unsafe file handling which could result in local privilege escalation...

7.8CVSS7.3AI score0.00366EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/02/02 8:33 p.m.5 views

jboss: jbossas: unsafe chown of server.log in jboss init script allows privilege escalation

It was discovered that the jboss init script performed unsafe file handling which could result in local privilege escalation...

7.8CVSS7.3AI score0.00366EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/02/02 8:23 p.m.5 views

admin-cli: Potential EAP resource starvation DOS attack via GET requests for server log files

An EAP feature to download server log files allows logs to be available via GET requests making them vulnerable to cross-origin attacks. An attacker could trigger the user's browser to request the log files consuming enough resources that normal server functioning could be impaired...

6.5CVSS7.3AI score0.02693EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/01/18 9:52 p.m.11 views

admin-cli: Potential EAP resource starvation DOS attack via GET requests for server log files

An EAP feature to download server log files allows logs to be available via GET requests making them vulnerable to cross-origin attacks. An attacker could trigger the user's browser to request the log files consuming enough resources that normal server functioning could be impaired...

6.5CVSS7.3AI score0.02693EPSS
Exploits0References4
ICS
ICS
added 2017/01/10 12:0 a.m.56 views

OSIsoft PI Coresight and PI Web API

CVSS V3 6.1 Vendor: OSIsoft Equipment: PI Coresight, PI Web API Vulnerability: Information Exposure Through Server Log Files AFFECTED PRODUCTS OSIsoft reports that the vulnerability affects the following versions: PI Coresight 2016 R2 and earlier versions, and PI Web API 2016 R2 when deployed usi...

7.8CVSS0.7AI score0.00374EPSS
Exploits0References27
ICS
ICS
added 2017/01/10 12:0 a.m.39 views

OSIsoft PI Coresight and PI Web API (Update A)

CVSS V3 6.1 Vendor: OSIsoft Equipment: PI Coresight, PI Web API Vulnerability: Information Exposure Through Server Log Files UPDATED INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-17-010-01 OSIsoft PI Coresight and PI Web API that was published January 10,...

7.8CVSS8AI score0.00374EPSS
Exploits0References3
NVD
NVD
added 2016/07/21 10:14 a.m.20 views

CVE-2016-5437

Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Log...

4.9CVSS5.5AI score0.02151EPSS
Exploits0References5
OSV
OSV
added 2016/07/21 10:14 a.m.8 views

CVE-2016-5437

Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Log...

4.9CVSS5.9AI score
Exploits0References5
Prion
Prion
added 2016/07/21 10:14 a.m.24 views

Design/Logic Flaw

Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Log...

4CVSS6.1AI score0.02151EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2016/07/21 10:0 a.m.15 views

CVE-2016-5437

Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Log...

5.9AI score0.02151EPSS
Exploits0References5
Cvelist
Cvelist
added 2016/07/21 10:0 a.m.25 views

CVE-2016-5437

Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Log...

5.4AI score0.02151EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2016/07/20 10:20 a.m.21 views

CVE-2016-5437

Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Log...

4.9CVSS5.9AI score0.02151EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2016/07/20 12:0 a.m.25 views

CVE-2016-5437

Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Log...

4.9CVSS6.7AI score0.02151EPSS
Exploits0References3
OSV
OSV
added 2016/07/20 12:0 a.m.3 views

UBUNTU-CVE-2016-5437

Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Log...

4.9CVSS6.7AI score0.02151EPSS
Exploits0References4
Kitploit
Kitploit
added 2015/02/02 7:59 p.m.39 views

PhEmail - Automate Sending Phishing Emails

PhEmail is a python open source phishing email tool that automates the process of sending phishing emails as part of a social engineering test. The main purpose of PhEmail is to send a bunch of phishing emails and prove who clicked on them without attempting to exploit the web browser or email...

7.2AI score
Exploits0References1
seebug.org
seebug.org
added 2015/01/12 12:0 a.m.18 views

用友旗下某服务器日志平台泄露用户隐私及企业数据

简要描述: RT,好在量不大。 详细说明: http://223.203.195.109:8080/log 漏洞证明:...

7.1AI score
Exploits0
Fedora
Fedora
added 2015/01/05 7:38 a.m.32 views

[SECURITY] Fedora 20 Update: denyhosts-2.6-29.fc20.1

DenyHosts is a Python script that analyzes the sshd server log messages to determine which hosts are attempting to hack into your system. It also determines what user accounts are being targeted. It keeps track of the frequency of attempts from each host and, upon discovering a repeated attack...

5CVSS0.4AI score0.08896EPSS
Exploits0
ThreatPost
ThreatPost
added 2014/10/01 2:49 p.m.10 views

Joomla Re-Issues Security Update After Patches Glitch

Users of the Joomla content management system have been on a patching roller coaster the past 24 hours with one set of patches for critical vulnerabilities being pulled last night before being re-issued today. The Joomla update, bringing the CMS up to version 3.3.6, is a security update addressin...

1.6AI score
Exploits0References3
Fedora
Fedora
added 2014/09/09 10:15 p.m.17 views

[SECURITY] Fedora 20 Update: webalizer-2.23_08-1.fc20

The Webalizer is a Web server log analysis program. It is designed to scan Web server log files in various formats and produce usage statistics in HTML format for viewing through a browser. It produces professional looking graphs which make analyzing when and where your Web traffic is coming from...

0.7AI score
Exploits0
Rows per page
Query Builder