Lucene search
K

192 matches found

Veracode
Veracode
added 2019/01/15 9:10 a.m.19 views

Remote Code Execution (RCE)

redhat-support-plugin-rhev is vulnerable to remote code execution. It was found that redhat-support-plugin-rhev passed a user-specified path and file name directly to the command line in the log viewer component. This could allow users with the SuperUser role on any Entity to execute arbitrary...

9.1CVSS9.6AI score0.03438EPSS
Exploits0References7Affected Software1
WPVulnDB
WPVulnDB
added 2018/06/25 12:0 a.m.20 views

JS Support Ticket < 2.0.6 - CSRF

The JS Help Desk – Best Help Desk & Support Plugin WordPress plugin was affected by a CSRF security vulnerability...

6.8CVSS1.3AI score0.00681EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2018/05/22 2:48 a.m.72 views

Important: Red Hat Security Advisory: rhvm-setup-plugins security update

An update for rhvm-setup-plugins is now available for Red Hat Virtualization Engine 4.2. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.5CVSS7.1AI score0.60631EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2018/01/05 3:46 p.m.83 views

(RHSA-2018:0052) Important: rhevm-setup-plugins security, bug fix, and enhancement update

The rhevm-setup-plugins package adds functionality exclusive only to Red Hat Virtualization Manager, and is not available for the upstream ovirt-engine. It includes the configuration of the Red Hat Support plugin, copying downstream-only artifacts to the ISO domain, and links to the knowledgebase...

5.6CVSS6.2AI score0.74041EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2016/03/11 12:0 a.m.29 views

RHEL 6 : redhat-support-plugin-rhev (RHSA-2016:0426)

Updated redhat-support-plugin-rhev packages that fix a security flaw and a bug are now available. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for each...

9.1CVSS8.7AI score0.03438EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2016/03/09 8:20 p.m.4 views

redhat-support-plugin-rhev: Remote code execution by SuperUser role on hosts in RHEV

It was found that redhat-support-plugin-rhev passed a user-specified path and file name directly to the command line in the log viewer component. This could allow users with the SuperUser role on any Entity to execute arbitrary commands on any host in the RHEV environment...

9.1CVSS6.1AI score0.03438EPSS
Exploits0References4
CNVD
CNVD
added 2016/02/08 12:0 a.m.1 views

Red Hat redhat-support-plugin-rhev local code execution vulnerability

Red Hat redhat-support-plugin-rhev is a technology preview feature that seamlessly integrates access to Red Hat Subscription Services from the Red Hat Enterprise Virtualization Management Portal. A security vulnerability in Red Hat redhat-support-plugin-rhev allows local attackers to exploit the...

9.1CVSS7.1AI score0.03438EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/04/17 12:0 a.m.27 views

Oracle Enterprise Manager Cloud Control Unspecified Vulnerability (April 2015 CPU)

The version of Oracle Enterprise Manager Cloud Control installed on the remote host is affected by an unspecified flaw in the My Oracle Support Plugin subcomponent of the Enterprise Manager Base Platform component. A remote attacker can exploit this to impact the integrity of the system. Note tha...

4.3CVSS5.6AI score0.01451EPSS
Exploits0References2
NVD
NVD
added 2015/04/16 4:59 p.m.28 views

CVE-2015-0473

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control MOS 12.1.0.5 and 12.1.0.6 allows remote attackers to affect integrity via unknown vectors related to My Oracle Support Plugin...

4.3CVSS5.8AI score0.01451EPSS
Exploits0References2
Prion
Prion
added 2015/04/16 4:59 p.m.17 views

Code injection

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control MOS 12.1.0.5 and 12.1.0.6 allows remote attackers to affect integrity via unknown vectors related to My Oracle Support Plugin...

4.3CVSS6.3AI score0.01451EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/04/16 4:0 p.m.41 views

CVE-2015-0473

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control MOS 12.1.0.5 and 12.1.0.6 allows remote attackers to affect integrity via unknown vectors related to My Oracle Support Plugin...

5.8AI score0.01451EPSS
Exploits0References2
CVE
CVE
added 2015/04/16 4:0 p.m.53 views

CVE-2015-0473

CVE-2015-0473 affects Oracle Enterprise Manager Grid Control (MOS) Base Platform, specifically the Enterprise Manager Base Platform component in MOS 12.1.0.5 and 12.1.0.6. The vulnerability is described as unspecified, with remote attackers able to impact integrity via unknown vectors related to ...

4.3CVSS6AI score0.01451EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder