Lucene search
K

1850 matches found

Microsoft CVE
Microsoft CVE
added 2020/09/08 7:0 a.m.43 views

Microsoft Dynamics 365 (on-premises) Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Dynamics 365 on-premises when the server fails to properly sanitize web requests to an affected Dynamics server. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the SQL service account. A...

8.8CVSS3.7AI score0.0335EPSS
Exploits0
OSV
OSV
added 2020/09/07 10:24 a.m.5 views

OPENSUSE-SU-2020:1376-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: - CVE-2020-14361: Fix XkbSelectEvents integer underflow bsc1174910 ZDI-CAN-11573. - CVE-2020-14362: Fix XRecordRegisterClients Integer underflow bsc1174913 ZDI-CAN-11574. This update was imported from the SUSE:SLE-15-SP2:Update update...

7.8CVSS7.8AI score0.00613EPSS
Exploits0References5
Veracode
Veracode
added 2020/09/03 5:32 a.m.13 views

Remote Code Execution

pomelo-monitor is vulnerable to remote code execution. An attacker could run arbitrary commands on the server due to lack of validation...

4.9AI score
Exploits0
NVD
NVD
added 2020/09/02 5:15 a.m.18 views

CVE-2020-5622

Shadankun Server Security Type excluding normal blocking method types Ver.1.5.3 and earlier allows remote attackers to cause a denial of service which may result in not being able to add newly detected attack source IP addresses as blocking targets for about 10 minutes via a specially crafted...

7.5CVSS7.4AI score0.01296EPSS
Exploits0References2
Prion
Prion
added 2020/09/02 5:15 a.m.13 views

Design/Logic Flaw

Shadankun Server Security Type excluding normal blocking method types Ver.1.5.3 and earlier allows remote attackers to cause a denial of service which may result in not being able to add newly detected attack source IP addresses as blocking targets for about 10 minutes via a specially crafted...

5CVSS7.3AI score0.01296EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/09/02 4:35 a.m.29 views

CVE-2020-5622

Shadankun Server Security Type excluding normal blocking method types Ver.1.5.3 and earlier allows remote attackers to cause a denial of service which may result in not being able to add newly detected attack source IP addresses as blocking targets for about 10 minutes via a specially crafted...

7.4AI score0.01296EPSS
Exploits0References2
CVE
CVE
added 2020/09/02 4:35 a.m.32 views

CVE-2020-5622

CVE-2020-5622 affects Shadankun Server Security Type up to version 1.5.3. The vulnerability describes a denial-of-service condition where, under certain conditions (overlapping internal Rule IDs and highly concurrent attack requests), the system cannot add newly detected attack source IP addresse...

7.5CVSS7.3AI score0.01296EPSS
Exploits0References2Affected Software1
Trend Micro Simply Security
Trend Micro Simply Security
added 2020/09/01 12:5 p.m.11 views

The Life Cycle of a Compromised (Cloud) Server

Trend Micro Research has developed a go-to resource for all things related to cybercriminal underground hosting and infrastructure. Today we released the second in this three-part series of reports which detail the what, how, and why of cybercriminal hosting see the first part here. As part of th...

0.3AI score
Exploits0
OSV
OSV
added 2020/09/01 6:23 a.m.9 views

SUSE-SU-2020:2401-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: - CVE-2020-14361: Fix XkbSelectEvents integer underflow bsc1174910 ZDI-CAN-11573. - CVE-2020-14362: Fix XRecordRegisterClients Integer underflow bsc1174913 ZDI-CAN-11574...

7.8CVSS7.6AI score0.00613EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2020/08/31 12:0 a.m.58 views

JVN#42665874: "Shadankun Server Security Type" vulnerable to denial-of-service (DoS)

"Shadankun Server Security Type" provided by Cyber Security Cloud , Inc. contains a denial-of-service DoS vulnerability. When "Rule id"s assigned by the product's internal script overlap, it would not be able to add newly detected attack source IP addresses as the blocking targets CWE-703. The...

7.5CVSS7.4AI score0.01296EPSS
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2020/08/27 12:0 a.m.15 views

Basics of Keeping Kubernetes Clusters Secure Part 1

With Kubernetes’ popularity and high adoption rates, its security should always be prioritized. We provide vital tips and recommendations on keeping the master node, the API server, etcd, RBAC, and network policies secure...

2AI score
Exploits0
Veracode
Veracode
added 2020/08/20 2:26 a.m.41 views

Remote Code Execution (RCE)

mysql is vulnerable to remote code execution. The vulnerability exists in the Server Security Privileges through multiple unspecified vulnerabilities...

7.2CVSS3.6AI score0.02035EPSS
Exploits0References6Affected Software1
Veracode
Veracode
added 2020/08/20 2:26 a.m.22 views

Arbitrary Code Execution

mysql is vulnerable to arbitrary code execution. The vulnerability exists in server security privileges through multiple unspecified vulnerabilities...

7.2CVSS4.3AI score0.02118EPSS
Exploits0References6Affected Software1
Veracode
Veracode
added 2020/08/20 2:26 a.m.23 views

Authorization Bypass

mysql is vulnerable to authorization bypass. The vulnerability exists in server security roles through multiple unspecified vulnerabilities...

5.5CVSS3AI score0.02023EPSS
Exploits0References6Affected Software1
Veracode
Veracode
added 2020/08/20 2:26 a.m.25 views

Denial Of Service (DoS)

mysql is vulnerable to denial of service DoS. The vulnerability exists in server security audit through an unspecified vulnerability...

4.9CVSS2.7AI score0.02277EPSS
Exploits0References6Affected Software1
CNVD
CNVD
added 2020/08/05 12:0 a.m.3 views

Red Hat CloudForms Path Traversal Vulnerability

Red Hat CloudForms is a hybrid infrastructure management platform from Red Hat, Inc. The platform provides deployment, management, and other capabilities across virtual machines, clouds, containers, and physical infrastructure. A path traversal vulnerability exists in Red Hat CloudForms, which...

6.5CVSS6.6AI score0.00877EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/08/04 4:0 p.m.25 views

CVE-2020-14631

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Audit. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successf...

4CVSS1.8AI score0.02277EPSS
Exploits0References4
Check Point Advisories
Check Point Advisories
added 2020/07/28 12:0 a.m.15 views

Cisco Adaptive Security Appliance Directory Traversal (CVE-2020-3452)

A directory traversal vulnerability exists in Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense. Successful exploitation of this vulnerability could allow an attacker to obtain sensitive information from the affected server...

5CVSS4.4AI score0.99992EPSS
Exploits24
NVD
NVD
added 2020/07/15 6:15 p.m.15 views

CVE-2020-14656

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Locking. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attac...

4.9CVSS0.01931EPSS
Exploits0References4
OSV
OSV
added 2020/07/15 6:15 p.m.0 views

UBUNTU-CVE-2020-14651

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Roles. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successf...

5.5CVSS6.7AI score0.02023EPSS
Exploits0References4
Rows per page
Query Builder