Lucene search
+L

6 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-9077

Malware in sbrugna...

2.1CVSS6.4AI score0.00362EPSS
Exploits0References3
osv
osv
added 2023/08/23 3:37 p.m.20 views

CVE-2023-40273 Session fixation in Apache Airflow web interface

The session fixation vulnerability allowed the authenticated user to continue accessing Airflow webserver even after the password of the user has been reset by the admin - up until the expiry of the session of the user. Other than manually cleaning the session database for database session backen...

8CVSS7AI score0.01366EPSS
Exploits0References5
nessus
nessus
added 2019/05/20 12:0 a.m.22 views

Debian DLA-1790-1 : lemonldap-ng security update

Erratum: bad versions An attack vector was discovered by lemonldap-ng developers. When the SAML or CAS service provider is enable and the administrator has chosen to store SAML/CAS tokens in the session database, an attacker can open an anonymous session to connect to any protected application th...

9.8CVSS8.1AI score0.02798EPSS
Exploits1References3
openvas
openvas
added 2019/05/19 12:0 a.m.98 views

Debian: Security Advisory (DLA-1790-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.02798EPSS
Exploits1References3
debian
debian
added 2019/05/18 7:12 p.m.166 views

[SECURITY] [DLA 1791-1] lemonldap-ng security update

Package : lemonldap-ng Version : 1.9.7-3+deb9u1 CVE ID : CVE-2019-12046 Debian Bug : 928944 An attack vector was discovered by the lemonldap-ng developers. When the SAML or CAS service provider is enabled and the administrator has chosen to store the SAML/CAS tokens in the session database, an...

9.8CVSS9.4AI score0.02798EPSS
Exploits1
cvelist
cvelist
added 2014/12/15 5:27 p.m.25 views

CVE-2014-9252

Zenoss Core through 5 Beta 3 stores cleartext passwords in the session database, which might allow local users to obtain sensitive information by reading database entries, aka ZEN-15416...

7.2AI score0.00362EPSS
Exploits0References2
Rows per page
Query Builder