Lucene search
K

736 matches found

FreeBSD
FreeBSD
added 2021/06/01 12:0 a.m.27 views

pglogical -- shell command injection in pglogical.create_subscription()

2ndQuadrant reports: Fix pgdump/pgrestore execution CVE-2021-3515 Correctly escape the connection string for both pgdump and pgrestore so that exotic database and user names are handled correctly. Reported by Pedro Gallegos...

7.2CVSS1.4AI score0.0046EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/05/18 12:0 a.m.30 views

openSUSE Security Update : cifs-utils (openSUSE-2021-639)

This update for cifs-utils fixes the following security issues : - CVE-2021-20208: Fixed a potential kerberos auth leak escaping from container. bsc1183239 - CVE-2020-14342: Fixed a shell command injection vulnerability in mount.cifs. bsc1174477 This update for cifs-utils fixes the following issu...

7CVSS6.2AI score0.00652EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2021/05/03 12:0 a.m.25 views

SUSE SLES15 Security Update : cifs-utils (SUSE-SU-2021:1455-1)

This update for cifs-utils fixes the following security issues : CVE-2021-20208: Fixed a potential kerberos auth leak escaping from container. bsc1183239 CVE-2020-14342: Fixed a shell command injection vulnerability in mount.cifs. bsc1174477 This update for cifs-utils fixes the following issues :...

7CVSS6.3AI score0.00652EPSS
Exploits1References9
OPENSUSE Linux
OPENSUSE Linux
added 2021/05/01 12:0 a.m.39 views

Security update for cifs-utils (important)

openSUSE Security Update: Security update for cifs-utils Announcement ID: openSUSE-SU-2021:0639-1 Rating: important References: 1152930 1174477 1183239 1184815 Cross-References: CVE-2020-14342 CVE-2021-20208 CVSS scores: CVE-2020-14342 NVD : 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H...

6.1CVSS7.6AI score0.00652EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/05/01 12:0 a.m.17 views

openSUSE: Security Advisory for cifs-utils (openSUSE-SU-2021:0639-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7CVSS7.2AI score0.00652EPSS
Exploits1References2
OSV
OSV
added 2021/04/30 7:23 p.m.7 views

OPENSUSE-SU-2021:0639-1 Security update for cifs-utils

This update for cifs-utils fixes the following security issues: - CVE-2021-20208: Fixed a potential kerberos auth leak escaping from container. bsc1183239 - CVE-2020-14342: Fixed a shell command injection vulnerability in mount.cifs. bsc1174477 This update for cifs-utils fixes the following issue...

7CVSS6.9AI score0.00652EPSS
Exploits1References7
OSV
OSV
added 2021/04/30 9:58 a.m.5 views

SUSE-SU-2021:1455-1 Security update for cifs-utils

This update for cifs-utils fixes the following security issues: - CVE-2021-20208: Fixed a potential kerberos auth leak escaping from container. bsc1183239 - CVE-2020-14342: Fixed a shell command injection vulnerability in mount.cifs. bsc1174477 This update for cifs-utils fixes the following issue...

7CVSS6.9AI score0.00652EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2014:1658-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.06858EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2020:2728-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.8AI score0.00652EPSS
Exploits1References4
VulnCheck KEV
VulnCheck KEV
added 2021/01/14 12:0 a.m.4 views

VulnCheck KEV: CVE-2018-10823

An issue was discovered on D-Link DWR-116 through 1.06, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. An authenticated attacker may execute arbitrary code by injecting the shell command into the chkisg.htm page Sip...

9CVSS7.7AI score0.78191EPSS
Exploits5References1
CNNVD
CNNVD
added 2021/01/04 12:0 a.m.6 views

NEC Multiple Products Operating System Command Injection Vulnerability

The NEC UNIVERGE SV8500 and NEC UNIVERGE SV9500 are both an IP phone device from NEC Corporation of Japan. A security vulnerability exists in multiple NEC products that could allow a remote attacker to execute arbitrary shell commands on the target system. The following products and versions are...

10CVSS7.6AI score0.01803EPSS
Exploits0References4
NVD
NVD
added 2020/12/11 4:15 p.m.30 views

CVE-2020-12149

The configuration backup/restore function in Silver Peak Unity ECOSTM ECOS appliance software was found to directly incorporate the user-controlled config filename in a subsequent shell command, allowing an attacker to manipulate the resulting command by injecting valid OS command input. This...

8.5CVSS6.6AI score0.01311EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/12/10 12:0 a.m.28 views

Virtuozzo 7 : patch (VZLSA-2019-2964)

An update for patch is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.3CVSS7.4AI score0.0453EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.26 views

SUSE SLES12 Security Update : cifs-utils (SUSE-SU-2020:2728-1)

This update for cifs-utils fixes the following issues : CVE-2020-14342: Fixed a shell command injection vulnerability in mount.cifs bsc1174477. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to...

7CVSS6.2AI score0.00652EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.43 views

SUSE SLED15 / SLES15 Security Update : cifs-utils (SUSE-SU-2020:2729-1)

This update for cifs-utils fixes the following issues : CVE-2020-14342: Fixed a shell command injection vulnerability in mount.cifs bsc1174477. Fixed an invalid free in mount.cifs; bsc1152930. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE...

7CVSS6.2AI score0.00652EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2020/11/12 12:0 a.m.30 views

Fedora 33 : cifs-utils (2020-ea0b9caac3)

New upstream release : - fixes CVE-2020-14342 cifs-utils: shell command injection in mount.cifs - adds smb2-quota tool - adds mount.smb3 as a symlink to mount.cifs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...

7CVSS6.1AI score0.00652EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/11/12 12:0 a.m.32 views

Fedora 32 : cifs-utils (2020-cfdd73f1b4)

New upstream release : - fixes CVE-2020-14342 cifs-utils: shell command injection in mount.cifs - adds smb2-quota tool - adds mount.smb3 as a symlink to mount.cifs Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...

7CVSS6.1AI score0.00652EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/10/05 12:0 a.m.23 views

openSUSE Security Update : cifs-utils (openSUSE-2020-1579)

This update for cifs-utils fixes the following issues : - CVE-2020-14342: Fixed a shell command injection vulnerability in mount.cifs bsc1174477. - Fixed an invalid free in mount.cifs; bsc1152930. This update was imported from the SUSE:SLE-15-SP1:Update update project. C Tenable Network Security,...

7CVSS6AI score0.00652EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2020/10/01 12:0 a.m.7 views

openSUSE: Security Advisory for cifs-utils (openSUSE-SU-2020:1579-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7CVSS7.2AI score0.00652EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2020/09/30 12:0 a.m.60 views

Security update for cifs-utils (moderate)

openSUSE Security Update: Security update for cifs-utils Announcement ID: openSUSE-SU-2020:1579-1 Rating: moderate References: 1152930 1174477 Cross-References: CVE-2020-14342 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...

7CVSS7AI score0.00652EPSS
Exploits1References2
Rows per page
Query Builder