CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14823 matches found

Pen Test Partners Blog•added 2024/03/06 6:12 a.m.•50 views

Living off the land with native SSH and split tunnelling

TL;DR Attackers can use Microsoft native SSH client to forward out internal network traffic Windows native SSH is common The attack only needs minimal set-up and commands Quicker and more cost effective for an attacker than using C2 infrastructure Reduces likelihood of Blue team detection...

7.6AI score

Exploits0

Tenable Nessus•added 2024/03/06 12:0 a.m.•98 views

RHEL 7 / 8 / 9 : Red Hat JBoss Enterprise Application Platform 7.4 (RHSA-2024:1196)

The remote Redhat Enterprise Linux 7 / 8 / 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:1196 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This asynchrono...

5.9CVSS6.9AI score0.93305EPSS

Exploits4References8

OpenVAS•added 2024/03/06 12:0 a.m.•10 views

Lucee Detection Consolidation

Consolidation of Lucee detections. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only include"pluginfeedinfo.inc"; ifdescription...

7.3AI score

Exploits0References1

Tenable Nessus•added 2024/03/06 12:0 a.m.•37 views

RHEL 8 : Red Hat JBoss Enterprise Application Platform 8.0.1 (RHSA-2024:1192)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1192 advisory. Red Hat JBoss Enterprise Application Platform 8 is a platform for Java applications based on the WildFly application runtime. This release o...

8.8CVSS7.4AI score0.93305EPSS

Exploits5References13

Tenable Nessus•added 2024/03/06 12:0 a.m.•54 views

RHEL 9 : Red Hat JBoss Enterprise Application Platform 8.0.1 (RHSA-2024:1193)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1193 advisory. Red Hat JBoss Enterprise Application Platform 8 is a platform for Java applications based on the WildFly application runtime. This release o...

8.8CVSS7.4AI score0.93305EPSS

Exploits5References13

RedHat Linux•added 2024/03/05 6:18 p.m.•67 views

Moderate: Red Hat Security Advisory: openssh security update

An update for openssh is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

6.5CVSS7AI score0.93305EPSS

Exploits11References3

Tenable Nessus•added 2024/03/05 12:0 a.m.•33 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 : libgit2 vulnerabilities (USN-6678-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6678-1 advisory. It was discovered that libgit2 mishandled equivalent filenames on NTFS partitions. If a user or automated...

9.8CVSS7.8AI score0.0511EPSS

Exploits0References6

OSV•added 2024/03/05 12:0 a.m.•31 views

ALSA-2024:1150 Moderate: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

5.9CVSS6.8AI score0.93305EPSS

Exploits4References4

OSV•added 2024/03/05 12:0 a.m.•31 views

ALSA-2024:1130 Moderate: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: ssh: Prefix truncation attack on Binary Packet Protocol BPP CVE-2023-48795 openssh: potential...

6.5CVSS7.3AI score0.93305EPSS

Exploits11References6

OpenVAS•added 2024/03/05 12:0 a.m.•57 views

CentOS: Security Advisory for openssh (CESA-2023:4382)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.76768EPSS

Exploits10References2

Tenable Nessus•added 2024/03/05 12:0 a.m.•45 views

RHEL 9 : buildah (RHSA-2024:1150)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:1150 advisory. The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working...

5.9CVSS7AI score0.93305EPSS

Exploits4References5