Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2023/05/19 12:0 a.m.35 views

FreeBSD : curl -- multiple vulnerabilities (a4f8bb03-f52f-11ed-9859-080027083a05)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the a4f8bb03-f52f-11ed-9859-080027083a05 advisory. - The vulnerability exists due to a use-after-free error when checking the SSH sha256...

7.5CVSS6.5AI score0.02658EPSS
Exploits4References9
OSV
OSV
added 2023/05/17 6:0 a.m.11 views

UBUNTU-CVE-2023-28319

A use after free vulnerability exists in curl v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the now freed hash. This flaw...

7.5CVSS7.1AI score0.02489EPSS
Exploits1References3
OSV
OSV
added 2020/12/29 11:57 a.m.3 views

MGASA-2020-0475 Updated kdeconnect-kde packages improve security

For the pairing procedure, the GUI component only presented the friendly 'deviceName' to identify peer devices, which is completely under attacker control. Furthermore the 'deviceName' is transmitted in cleartext in UDP broadcast messages for all other nodes in the network segment to see. Therefo...

7.4AI score
Exploits0References4
Mageia
Mageia
added 2020/12/29 11:57 a.m.14 views

Updated kdeconnect-kde packages improve security

For the pairing procedure, the GUI component only presented the friendly 'deviceName' to identify peer devices, which is completely under attacker control. Furthermore the 'deviceName' is transmitted in cleartext in UDP broadcast messages for all other nodes in the network segment to see. Therefo...

1.1AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.42 views

SUSE SLED15 / SLES15 Security Update : libssh2_org (SUSE-SU-2020:3551-1)

This update for libssh2org fixes the following issues : Version update to 1.9.0: bsc1178083, jscSLE-16922 Enhancements and bugfixes : - adds ECDSA keys and host key support when using OpenSSL - adds ED25519 key and host key support when using OpenSSL 1.1.1 - adds OpenSSH style key file reading -...

9.3CVSS7.6AI score0.09219EPSS
Exploits1References23
Rows per page
Query Builder