Lucene search
K

7921 matches found

Prion
Prion
added 2016/07/22 2:59 p.m.16 views

Design/Logic Flaw

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a 1 NVMe or 2 MMC drive, which allows local users to obtain sensitive information via unspecified vectors. NOTE: this vulnerability exists because of an...

2.1CVSS3.6AI score0.00373EPSS
Exploits0References7Affected Software2
NVD
NVD
added 2016/07/22 2:59 p.m.20 views

CVE-2015-8946

ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors...

3.3CVSS3.2AI score0.00353EPSS
Exploits0References5
Cvelist
Cvelist
added 2016/07/22 2:0 p.m.25 views

CVE-2015-8946

ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local users to obtain sensitive information via unspecified vectors...

3.1AI score0.00353EPSS
Exploits0References5
Kitploit
Kitploit
added 2016/07/19 11:12 p.m.57 views

nightHawkResponse - Incident Response Forensic Framework

Custom built application for asynchronus forensic data presentation on an Elasticsearch backend. This application is designed to ingest a Mandiant Redline "collections" file and give flexibility in search/stack and tagging. The application was born out of the inability to control multiple...

7.3AI score
Exploits0References3
n0where
n0where
added 2016/07/14 3:26 p.m.21 views

Incident Response Forensic Framework: nightHawk Response

Incident Response Forensic Framework Custom built application for asynchronus forensic data presentation on an ElasticSearch backend. This application is designed to ingest a Mandiant Redline “collections” file and give flexibility in search/stack and tagging. The application was born out of the...

7.3AI score
Exploits0References1
OwnCloud
OwnCloud
added 2016/07/13 7:0 p.m.501 views

Incorrect setup of external storage - ownCloud

The external storage functionality as implemented in ownCloud 9.0.x before 9.0.2 is improperly setting up external storages when multiple groups have been granted access to an external storage and a user is member of both groups. The storage class is setup without any setup information, leading t...

7.1AI score
Exploits0Affected Software1
OwnCloud
OwnCloud
added 2016/07/13 2:0 a.m.530 views

Server: Incorrect setup of external storage

The external storage functionality as implemented in ownCloud 9.0.x before 9.0.2 is improperly setting up external storages when multiple groups have been granted access to an external storage and a user is member of both groups. The storage class is setup without any setup information, leading t...

6.8AI score
Exploits0Affected Software1
Citrix
Citrix
added 2016/07/13 12:0 a.m.10 views

Error "Citrix License Server unavailable. Check the License Server to Make Sure It Is Running"

When setting up XenDesktop 7.1 or higher, the licensing node displays the following error message, "Citrix License Server unavailable. Check the license server to make sure it is running." Reference Screenshot:...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2016/07/12 12:0 a.m.30 views

Bug Tracker 2.7.1 Information Disclosure

======================================================================== | Title : Bug Tracker V 2.7.1 database disclosure vulnerability | Author : indoushka | email : [email protected] | Tested on: windows 8.1 Français V.Pro | Vendor : https://www.twbsd.org/demo/...

7.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2016/07/11 12:0 a.m.5 views

The vulnerability of the Android operating system, which allows a hacker to bypass security measures and delete data

The vulnerability of the Setup Wizard component in the Android operating system is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker acting locally to bypass security measures and delete data...

6.6CVSS6.3AI score0.00168EPSS
Exploits0References2Affected Software1
Kitploit
Kitploit
added 2016/07/08 10:13 p.m.21 views

AntiRansom - Fighting against Ransomware using Honeypots

AntiRansom is a tool capable of detect and stop attacks of Ransomware using honeypots. First, Anti Ransom creates a random decoy folder with many useless random documents Excel, PDF and then it monitors the folder waiting for changes. When a change is detected, AntiRansom tries to identify wich...

7.6AI score
Exploits0
CNVD
CNVD
added 2016/07/05 12:0 a.m.4 views

phpMyAdmin BBCode injection vulnerability

phpMyAdmin is a free, web-based MySQL database management tool developed by the phpMyAdmin team. The tool is capable of creating and deleting databases, creating, deleting, and modifying database tables, executing SQL script commands, and more. A security vulnerability exists in the...

6.1CVSS9.8AI score0.01549EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/07/04 12:0 a.m.26 views

Symphony CMS Session Fixation Vulnerability

Symphony CMS is prone to a session fixation vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.6CVSS7.5AI score0.09421EPSS
Exploits5References1
OSV
OSV
added 2016/07/03 1:59 a.m.2 views

DEBIAN-CVE-2016-5730

phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to obtain sensitive information via vectors involving 1 an array value to FormDisplay.php, 2 incorrect data to validate.php, 3 unexpected data to Validator.php, 4 a missing config directory...

5.3CVSS6.9AI score0.02616EPSS
Exploits0References1
NVD
NVD
added 2016/07/03 1:59 a.m.22 views

CVE-2016-5701

setup/frames/index.inc.php in phpMyAdmin 4.0.10.x before 4.0.10.16, 4.4.15.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to conduct BBCode injection attacks against HTTP sessions via a crafted URI...

6.1CVSS6.5AI score0.01549EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2016/07/03 1:59 a.m.33 views

CVE-2016-5701

setup/frames/index.inc.php in phpMyAdmin 4.0.10.x before 4.0.10.16, 4.4.15.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to conduct BBCode injection attacks against HTTP sessions via a crafted URI...

6.1CVSS6.9AI score0.01549EPSS
Exploits0References2
OSV
OSV
added 2016/07/03 1:59 a.m.7 views

UBUNTU-CVE-2016-5730

phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to obtain sensitive information via vectors involving 1 an array value to FormDisplay.php, 2 incorrect data to validate.php, 3 unexpected data to Validator.php, 4 a missing config directory...

5.3CVSS6.8AI score0.02616EPSS
Exploits0References3
Cvelist
Cvelist
added 2016/07/03 1:0 a.m.25 views

CVE-2016-5701

setup/frames/index.inc.php in phpMyAdmin 4.0.10.x before 4.0.10.16, 4.4.15.x before 4.4.15.7, and 4.6.x before 4.6.3 allows remote attackers to conduct BBCode injection attacks against HTTP sessions via a crafted URI...

7.6AI score0.01549EPSS
Exploits0References7
CVE
CVE
added 2016/06/25 9:0 p.m.46 views

CVE-2016-4824

The CVE-2016-4824 issue affects Corega CG-WLR300GNV and CG-WLR300GNV-W wireless routers. The WPS PIN authentication implementation does not limit the number of attempts, enabling authenticated brute-force attempts from within wireless range to recover the PIN and gain network access. Affected com...

5.3CVSS5.4AI score0.01385EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2016/06/25 9:0 p.m.21 views

CVE-2016-4824

The Wi-Fi Protected Setup WPS implementation on Corega CG-WLR300GNV and CG-WLR300GNV-W devices does not restrict the number of PIN authentication attempts, which makes it easier for remote attackers to obtain network access via a brute-force attack...

5.4AI score0.01385EPSS
Exploits0References3
Rows per page
Query Builder