Lucene search
K

8 matches found

OSV
OSV
added 2022/09/28 12:0 a.m.19 views

CVE-2022-39251 Matrix Javascript SDK vulnerable to Olm/Megolm protocol confusion

Matrix Javascript SDK is the Matrix Client-Server SDK for JavaScript. Prior to version 19.7.0, an attacker cooperating with a malicious homeserver can construct messages that legitimately appear to have come from another person, without any indication such as a grey shield. Additionally, a...

8.6CVSS8.3AI score0.00865EPSS
Exploits0References7
Cvelist
Cvelist
added 2019/12/16 7:19 p.m.25 views

CVE-2019-18259

In Omron PLC CJ series, all versions and Omron PLC CS series, all versions, an attacker could spoof arbitrary messages or execute commands...

9.5AI score0.0211EPSS
Exploits0References1
CNVD
CNVD
added 2016/05/04 12:0 a.m.4 views

Android Conscrypt Elevation of Privilege Vulnerability

Android is a Linux-based open-source operating system developed by Google and the Open Handheld Alliance OHA, of which Concrypt is a component that uses OpenSSL to provide Java security. An elevation of privilege vulnerability exists in Conscrypt in versions prior to Android 6.x, 2016-05-01. A...

7.6CVSS6.7AI score0.00391EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2014/02/11 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-2100-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.8AI score0.14809EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2012/12/31 12:0 a.m.6 views

PT-2012-6296 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.5.5 Description: The issue concerns the netlink sendmsg function in the Linux kernel, which fails to validate the dst pid field. This allows local users to potentially spoof Netlink messages, although the exac...

7.8CVSS6.6AI score0.05794EPSS
Exploits5References227
NVD
NVD
added 2007/08/16 6:17 p.m.12 views

CVE-2007-4374

Babo Violent 2 2.08.00 does not validate the sender field of a chat message composed by a client, which allows remote authenticated users to spoof messages...

4CVSS6.2AI score0.00962EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2006/09/07 7:4 p.m.38 views

CVE-2006-4624

CRLF injection vulnerability in Utils.py in Mailman before 2.1.9rc1 allows remote attackers to spoof messages in the error log and possibly trick the administrator into visiting malicious URLs via CRLF sequences in the URI...

2.6CVSS5.9AI score0.02754EPSS
Exploits0References1
CVE
CVE
added 2002/06/11 4:0 a.m.50 views

CVE-2002-0472

CVE-2002-0472 affects MSN Messenger Service 3.6 and possibly other versions, where weak authentication during client message exchange enables remote spoofing of messages from other users. The OpenVAS entry for Windows Messenger (MSN/Windows Messenger family) classifies this as multiple vulnerabil...

5CVSS7AI score0.11877EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder