4 matches found
OpenStack 安全漏洞
OpenStack is a cloud platform management program of the National Aeronautics and Space Administration NASA. OpenStack has a security vulnerability that stems from plain text passwords being saved in /var/log/messages...
CloudBees Jenkins Configuration as Code plugin log information leakage vulnerability
CloudBees Jenkins Hudson Labs is the United States CloudBees company's set of Java-based development of continuous integration tools. The product is mainly used to monitor the continuous software release/testing projects and some timed tasks . Configuration as Code Plugin is used in which a Jenki...
PT-2017-6533 · Red Hat +1 · Abrt +2
Name of the Vulnerable Software and Affected Versions: Automatic Bug Reporting Tool ABRT affected versions not specified Description: The issue concerns the event scripts in ABRT, which use world-readable permission on a copy of the sosreport file in problem directories. This allows local users t...
Junos Space Network Management Platform Event Viewer Syslog Communication Log Messages Cross-Site Scripting Vulnerability
Junos Space Network Management Platform is a network management platform solution. A cross-site scripting vulnerability in the Junos Space Network Management Platform's handling of special syslog communication log messages could be exploited by remote attackers to inject malicious script or HTML...