Lucene search
K

5 matches found

Imperva Blog
Imperva Blog
added 2023/12/29 7:48 p.m.33 views

Imperva defends customers against recent vulnerabilities in Apache OFBiz

On December 26, researchers from SonicWall Capture Labs discovered an authentication bypass vulnerability in Apache OFBiz, tracked as CVE-2023-51467. This bug has a CVSS score of 9.8 and allows attackers to achieve server-side request forgery SSRF by bypassing the program’s authentication. This...

7.5CVSS8.6AI score0.96001EPSS
Exploits16
OSV
OSV
added 2023/01/17 7:1 p.m.10 views

GSD-2023-1001292 x86/MCE/AMD: Clear DFR errors found in THR handler

x86/MCE/AMD: Clear DFR errors found in THR handler This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/01/17 6:25 p.m.10 views

GSD-2023-1000944 x86/MCE/AMD: Clear DFR errors found in THR handler

x86/MCE/AMD: Clear DFR errors found in THR handler This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.87 by commit...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.3 views

PT-2023-34369 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.163 Description: A potential security issue has been identified in the Linux Kernel related to the handling of DFR errors in the THR handler on x86/AMD systems. The actual impact and attack plausibility ha...

7.4AI score
Exploits0References1
Microsoft Malware Protection
Microsoft Malware Protection
added 2016/12/14 6:55 p.m.454 views

Twin zero-day attacks: PROMETHIUM and NEODYMIUM target individuals in Europe

Targeted attacks are typically carried out against individuals to obtain intellectual property and other valuable data from target organizations. These individuals are either directly in possession of the targeted information or are able to connect to networks where the information resides...

10CVSS1AI score0.94354EPSS
Exploits6
Rows per page
Query Builder