Lucene search
+L

425 matches found

CNNVD
CNNVD
added 2023/08/21 12:0 a.m.6 views

Danfoss AK-SM800A 安全漏洞

Danfoss AK-SM800A is a system manager from Danfoss, Denmark. Provides secure system control and monitoring A security vulnerability exists in Danfoss AK-SM800A 3.3 and earlier versions that originates from improper input validation and can be exploited by an attacker to execute arbitrary commands...

9.9CVSS8.8AI score0.00777EPSS
Exploits0References3
NVD
NVD
added 2023/07/13 8:15 p.m.20 views

CVE-2023-30563

A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session...

8.2CVSS0.00439EPSS
Exploits0References1
OSV
OSV
added 2023/07/13 8:15 p.m.3 views

CVE-2023-30563

A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session...

8.2CVSS5.8AI score0.00439EPSS
Exploits0References1
Prion
Prion
added 2023/07/13 8:15 p.m.21 views

Session fixation

A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session...

5.8CVSS8.6AI score0.00439EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/07/13 7:4 p.m.45 views

CVE-2023-30563

BD Alaris Systems Manager (SM) versions 12.3 and prior are affected by CVE-2023-30563, an improper input validation vulnerability that allows a malicious file uploaded via the System Manager User Import Function to trigger a Cross-Site Scripting (XSS) condition and hijack a user session. The CVSS...

8.2CVSS8.1AI score0.00439EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/07/13 7:4 p.m.23 views

CVE-2023-30563 Stored Cross-Site Scripting on User Import Functionality

A malicious file could be uploaded into a System Manager User Import Function resulting in a hijacked session...

8.2CVSS8.3AI score0.00439EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/07/13 12:0 a.m.6 views

BD Alaris System with Guardrails Suite MX 跨站脚本漏洞

The BD Alaris System with Guardrails Suite MX is a medical device from BD Medical BD, Inc. A security vulnerability exists in the BD Alaris System with Guardrails Suite MX, which originates from a malicious file that could be uploaded to the System Manager user import function, which could lead t...

8.2CVSS7.7AI score0.00439EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/13 12:0 a.m.4 views

PT-2023-22791 · Unknown · Systems Manager

Name of the Vulnerable Software and Affected Versions: System Manager affected versions not specified Description: A malicious file could be uploaded into a System Manager User Import Function, resulting in a hijacked session. Recommendations: At the moment, there is no information about a newer...

8.2CVSS8AI score0.00439EPSS
Exploits0References4
Rockylinux
Rockylinux
added 2023/02/22 1:8 a.m.51 views

systemd security and bug fix update

An update is available for systemd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The systemd packages contain systemd, a system and service manager for Linux,...

5.5CVSS5.8AI score0.00867EPSS
Exploits1
AlmaLinux
AlmaLinux
added 2023/01/12 12:0 a.m.50 views

Moderate: systemd security and bug fix update

The systemd packages contain systemd, a system and service manager for Linux, compatible with the SysV and LSB init scripts. It provides aggressive parallelism capabilities, uses socket and D-Bus activation for starting services, offers on-demand starting of daemons, and keeps track of processes...

5.5CVSS6.3AI score0.00412EPSS
Exploits1References4
Fedora
Fedora
added 2022/11/20 1:34 a.m.32 views

[SECURITY] Fedora 35 Update: systemd-249.13-6.fc35

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. It provides aggressive parallelization capabilities, uses sock et and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups,...

5.5CVSS6.2AI score0.00412EPSS
Exploits1
Github Security Blog
Github Security Blog
added 2022/05/24 5:35 p.m.27 views

Moodle incorrect access control

A vulnerability was found in Moodle where users with "Log in as" capability in a course context typically, course managers may gain access to some site administration capabilities by "logging in as" a System manager. This affects 3.9 to 3.9.1, 3.8 to 3.8.4, 3.7 to 3.7.7, 3.5 to 3.5.13 and earlier...

8.8CVSS6.7AI score0.01304EPSS
Exploits0References3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/16 4:3 p.m.20 views

Security Bulletin: Flex System Manager web server allows Generic XSS (CVE-2013-5438)

Summary The Flex System Manager FSM is running a web server that fails to adequately sanitize request strings of malicious JavaScript. Vulnerability Details Abstract The Flex System Manager FSM is running a web server that fails to adequately sanitize request strings of malicious JavaScript...

4.3CVSS0.6AI score0.01773EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/16 4:3 p.m.33 views

Security Bulletin: IBM Flex System Manger expired USERID password vulnerability (CVE-2013-5424)

Summary Abstract Security Bulletin: IBM Flex System Manger expired USERID password vulnerability CVE-2013-5424 Content Vulnerability Details: CVE ID: CVE-2013-5424. Description: All affected versions of the Flex System Manager FSM are vulne Vulnerability Details Abstract Security Bulletin: IBM Fl...

6.8CVSS0.4AI score0.01306EPSS
Exploits0
Rockylinux
Rockylinux
added 2022/03/15 9:11 a.m.12 views

systemd bug fix and enhancement update

An update is available for systemd. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The systemd packages contain systemd, a system and service manager for Linux,...

0.5AI score
Exploits0
Fedora
Fedora
added 2022/01/15 1:22 a.m.37 views

[SECURITY] Fedora 35 Update: systemd-249.9-1.fc35

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. It provides aggressive parallelization capabilities, uses sock et and D-Bus activation for starting services, offers on-demand starting of daemons, keeps track of processes using Linux control groups,...

5.5CVSS5.9AI score0.01561EPSS
Exploits1
HPE Security Bulletins
HPE Security Bulletins
added 2022/01/06 12:0 a.m.3 views

HPESBGN04214 rev.1 - HPE Edgeline Integrated System Manager (iSM) for Edgeline EL300 Using DNSmasq and Nginx, Multiple Vulnerabilities

Potential Security Impact: Remote: Arbitrary Code Execution, Unauthorized Data Access, memory corruption SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. HPE Edgeline EL300 Converged Edge System - Prior to v1.50 CVSS Scores: | CVE | CVSS Vector | Base Score | | --- | --- | --- | |...

9.8CVSS6.8AI score0.93307EPSS
Exploits42
CNVD
CNVD
added 2021/12/27 12:0 a.m.30 views

Netapp StorageGRID has an unspecified vulnerability

Netapp StorageGRID is an object storage solution from NetApp USA.NetApp StorageGRID has a security vulnerability that could be exploited by an attacker to escalate its privileges and modify settings in SANtricity System Manager...

4.4CVSS2.9AI score0.00259EPSS
Exploits0References1
OSV
OSV
added 2021/12/23 8:15 p.m.3 views

CVE-2021-27006

StorageGRID formerly StorageGRID Webscale versions 11.5 prior to 11.5.0.5 are susceptible to a vulnerability which may allow an administrative user to escalate their privileges and modify settings in SANtricity System Manager...

4.4CVSS5.8AI score0.00259EPSS
Exploits0References1
NVD
NVD
added 2021/12/23 8:15 p.m.23 views

CVE-2021-27006

StorageGRID formerly StorageGRID Webscale versions 11.5 prior to 11.5.0.5 are susceptible to a vulnerability which may allow an administrative user to escalate their privileges and modify settings in SANtricity System Manager...

4.4CVSS0.00259EPSS
Exploits0References1
Rows per page
Query Builder