Lucene search
K

51 matches found

Malwarebytes
Malwarebytes
added 2019/09/19 3:54 p.m.66 views

CEOs offer their own view of a US data privacy law

Last week, the chief executives of more than 50 mid- and large-sized companies urged Congress to pass a national data privacy law to regulate how companies collect, use, and share Americans’ data. Buried deep within the chief executives’ recommendations for such a law, presented as a policy...

0.2AI score
Exploits0
CNVD
CNVD
added 2019/08/08 12:0 a.m.5 views

Cisco IOS XR Input Validation Error Vulnerability (CNVD-2019-46438)

Cisco IOS XR is a set of operating systems developed by the American company Cisco Cisco for its network equipment. An input validation error vulnerability exists in the Intermediate System-to-Intermediate System IS-IS routing protocol feature in Cisco IOS XR versions prior to 6.6.3, which arises...

7.4CVSS6.6AI score0.00447EPSS
Exploits0References1
OSV
OSV
added 2019/08/07 10:15 p.m.3 views

CVE-2019-1918

A vulnerability in the implementation of Intermediate SystemtoIntermediate System ISIS routing protocol functionality in Cisco IOS XR Software could allow an unauthenticated attacker who is in the same IS-IS area to cause a denial of service DoS condition. The vulnerability is due to incorrect...

7.4CVSS7.1AI score0.00525EPSS
Exploits0References1
Prion
Prion
added 2018/06/04 7:29 p.m.12 views

Hardcoded credentials

html-janitor node module suffers from an External Control of Critical State Data vulnerability via user-control of the 'sanitized' variable causing sanitization to be bypassed...

4.3CVSS6.2AI score0.01038EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2018/06/04 7:29 p.m.34 views

CVE-2017-0928

html-janitor node module suffers from an External Control of Critical State Data vulnerability via user-control of the 'sanitized' variable causing sanitization to be bypassed...

6.1CVSS6.2AI score0.01038EPSS
Exploits0References2
OSV
OSV
added 2018/06/04 7:29 p.m.22 views

CVE-2017-0928

html-janitor node module suffers from an External Control of Critical State Data vulnerability via user-control of the 'sanitized' variable causing sanitization to be bypassed...

6.1CVSS6.5AI score
Exploits0References2
Cvelist
Cvelist
added 2018/06/04 7:0 p.m.31 views

CVE-2017-0928

html-janitor node module suffers from an External Control of Critical State Data vulnerability via user-control of the 'sanitized' variable causing sanitization to be bypassed...

6.2AI score0.01038EPSS
Exploits0References2
CNVD
CNVD
added 2018/01/12 12:0 a.m.5 views

Apache Geode cluster information disclosure vulnerability

Apache Geode cluster is the Apache Software Foundation's platform for providing real-time and consistent access to data for data-intensive applications in distributed cloud architectures. An information disclosure vulnerability exists in Apache Geode cluster. An attacker could exploit this...

7.1CVSS6.3AI score0.02075EPSS
Exploits3References1
OSV
OSV
added 2016/11/10 6:59 a.m.3 views

CVE-2016-7199

Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to bypass the Same Origin Policy and obtain sensitive window-state information via a crafted web site, aka "Microsoft Browser Information Disclosure Vulnerability."...

3.1CVSS5.8AI score0.13089EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2016/06/16 12:0 a.m.261 views

IBM Storwize SSL/TLS RC4 Stream Cipher Key Invariance (Bar Mitzvah)

According to its self-reported version number, the IBM Storwize server running on the remote host is affected by a security feature bypass vulnerability, known as Bar Mitzvah, due to improper combination of state data with key data by the RC4 cipher algorithm during the initialization phase. A...

5CVSS5.8AI score0.74006EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2010/02/09 12:0 a.m.4 views

PT-2010-2100 · Linux +1 · Kvm +1

Name of the Vulnerable Software and Affected Versions: KVM version 83 Description: The issue arises from the pit ioport read function in the Programmable Interval Timer PIT emulation, specifically in the i8254.c file. This function does not properly utilize the pit state data structure, allowing...

7.2CVSS6AI score0.02718EPSS
Exploits1References19
Rows per page
Query Builder