Lucene search
+L

165 matches found

Microsoft KB
Microsoft KB
added 2019/10/30 12:0 a.m.9 views

March 5, 2019, update for Access 2010 (KB4018363)

March 5, 2019, update for Access 2010 KB4018363 This article describes update 4018363 for Microsoft Access 2010 that was released on March 5, 2019.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2010. It doesn't apply to th...

6.3AI score
Exploits0
OSV
OSV
added 2019/10/11 12:15 a.m.5 views

CVE-2019-17497

Tracker PDF-XChange Editor before 8.0.330.0 has an NTLM SSO hash theft vulnerability using crafted FDF or XFDF files a related issue to CVE-2018-4993. For example, an NTLM hash is sent for a link to \192.168.0.2\C$\file.pdf without user interaction...

6.5CVSS6.9AI score0.06474EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/08/12 12:0 a.m.5 views

PT-2019-7670 · WordPress · Wp-Database-Backup

Name of the Vulnerable Software and Affected Versions: wp-database-backup plugin versions prior to 4.3.3 Description: The issue concerns a CSRF problem in the wp-database-backup plugin for WordPress. Recommendations: For versions prior to 4.3.3, update to version 4.3.3 or later to resolve the iss...

8.8CVSS8.6AI score0.00679EPSS
Exploits0References5
CNVD
CNVD
added 2019/06/04 12:0 a.m.6 views

TheHive Elevation of Privilege Vulnerability

TheHive is a scalable open source security incident response platform. An elevation of privilege vulnerability exists in the User API in versions of TheHive prior to 2.13.4 and 3.x prior to 3.3.1, which can be exploited by an attacker with read-only or read/write access to escalate privileges to...

8.8CVSS7.3AI score0.01883EPSS
Exploits0References1
OSV
OSV
added 2018/11/28 4:29 p.m.3 views

CVE-2018-14746

Command Injection vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions could allow remote attackers to run arbitrary commands on the NAS...

9.8CVSS6AI score0.03302EPSS
Exploits0References1
OSV
OSV
added 2018/11/28 4:29 p.m.3 views

CVE-2018-14749

Buffer Overflow vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions could have unspecified impact on the NAS...

9.8CVSS5.8AI score0.01185EPSS
Exploits0References1
OSV
OSV
added 2018/06/21 1:29 p.m.7 views

CVE-2017-13072

Cross-site scripting XSS vulnerability in App Center in QNAP QTS 4.2.6 build 20171208, QTS 4.3.3 build 20171213, QTS 4.3.4 build 20171223, and their earlier versions could allow remote attackers to inject Javascript code...

6.1CVSS5.8AI score0.00772EPSS
Exploits0References1
OSV
OSV
added 2018/04/19 2:29 a.m.4 views

CVE-2018-2742

Vulnerability in the Enterprise Manager Ops Center component of Oracle Enterprise Manager Products Suite subcomponent: Framework. Supported versions that are affected are 12.2.2 and 12.3.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

7.3CVSS7.3AI score0.01905EPSS
Exploits0References3
PyPA
PyPA
added 2017/09/25 5:29 p.m.7 views

PYSEC-2017-53

Cross-site scripting XSS vulnerability in Plone 3.3.0 through 3.3.6, 4.0.0 through 4.0.10, 4.1.0 through 4.1.6, 4.2.0 through 4.2.7, 4.3.x before 4.3.7, and 5.0rc1...

6.1CVSS6.2AI score0.01221EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2017/08/31 3:29 p.m.4 views

UBUNTU-CVE-2017-14058

In FFmpeg 2.4 and 3.3.3, the readdata function in libavformat/hls.c does not restrict reload attempts for an insufficient list, which allows remote attackers to cause a denial of service infinite loop...

6.5CVSS7AI score0.02172EPSS
Exploits0References3
CNVD
CNVD
added 2017/07/20 12:0 a.m.7 views

BUFFALO WAPM-1166D and WAPM-APG600H Cross-Site Request Forgery Vulnerabilities

The BUFFALO WAPM-1166D and WAPM-APG600H are both wireless LAN access point devices from BUFFALO Japan. A cross-site request forgery vulnerability exists in the WMR-433 using firmware version 1.02 and earlier and the WMR-433W using firmware version 1.40 and earlier. A remote attacker could exploit...

8.8CVSS8.8AI score0.00774EPSS
Exploits0References1
CNVD
CNVD
added 2017/06/07 12:0 a.m.5 views

ElasticSearch X-Pack Security Information Disclosure Vulnerability

ElasticSearch X-Pack is an extension of the Elastic Stack log analysis system from the Dutch company Elasticsearch. security is one of the features used to control access rights. An information disclosure vulnerability exists in ElasticSearch X-Pack Security versions prior to 5.4.1 and versions...

4.3CVSS6.3AI score0.00733EPSS
Exploits0References1
CNVD
CNVD
added 2017/05/26 12:0 a.m.5 views

systemd-resolved denial of service vulnerability

systemd-resolved is a system service used to manage network name resolution. A denial of service vulnerability exists in systemd-resolved version 233 and earlier. A remote attacker could use this vulnerability to cause a denial of service daemon crash with a specially crafted DNS response...

7.5CVSS6.8AI score0.15422EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/03 12:0 a.m.3 views

Stored XSS Cross-Site Scripting Vulnerability in Ocean CMS Version 6.33

Ocean CMS is an open source website builder. A stored XSS cross-site scripting vulnerability exists in Ocean CMS version 6.33. An attacker can exploit the vulnerability to inject arbitrary Web script or HTML...

5.7AI score
Exploits0References1
CNVD
CNVD
added 2016/07/28 12:0 a.m.3 views

Multiple Apple Products WebKit Homologation Policy Bypass Vulnerability

Apple iOS, Safari, and tvOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices; Safari is a web browser that is the default browser that comes with Mac OS X and iOS operating systems; and tvOS is an operating system for smart TVs. webKit is an open source web...

5.4CVSS5.3AI score0.01464EPSS
Exploits0References1
CNVD
CNVD
added 2016/07/28 12:0 a.m.5 views

Multiple Apple Products WebKit Unauthorized Access Vulnerability

Apple iOS, Safari, and tvOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices; Safari is a web browser that is the default browser that comes with Mac OS X and iOS operating systems; and tvOS is an operating system for smart TVs. webKit is an open source web...

7.8CVSS6.2AI score0.04221EPSS
Exploits0References1
CNVD
CNVD
added 2016/07/28 12:0 a.m.2 views

Multiple Apple Products WebKit Denial of Service Vulnerability

Apple iOS, Safari, and tvOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices; Safari is a web browser that is the default browser that comes with Mac OS X and iOS operating systems; and tvOS is an operating system for smart TVs. webKit is an open source web...

7.1CVSS6.4AI score0.02231EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2016/07/22 12:0 a.m.3 views

PT-2016-2721 · Apple · Os X +3

Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 9.3.3 Apple OS X versions prior to 10.11.6 Apple tvOS versions prior to 9.2.2 Apple watchOS versions prior to 2.2.2 Description: The issue is caused by a buffer overflow in the ImageIO component. This can be...

8.8CVSS9.1AI score0.0485EPSS
Exploits1References15
CNVD
CNVD
added 2015/07/23 12:0 a.m.4 views

Unspecified Vulnerability in Oracle Supply Chain Products Suite Agile PLM Framework Component

Oracle Supply Chain Products Suite is a suite of supply chain solutions from Oracle that provides value chain planning, value chain execution, product lifecycle management, etc. Oracle Agile PLM Framework is one of the product lifecycle management PLM components. Oracle Agile PLM Framework is one...

4.3CVSS6.6AI score0.017EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.8 views

Vulnerabilities of the Red Hat Linux operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information

The tcl-8.3.3 package of the Red Hat Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to breaches of confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited locally...

7.2CVSS5.5AI score0.00411EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder