CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

OSV•added 2024/02/13 2:29 p.m.•7 views

SUSE-SU-2024:0460-1 Security update for rekor

This update for rekor fixes the following issues: update to 1.3.5 jscSLE-23476: - Additional unique index correction - Remove timestamp from checkpoint - Drop conditional when verifying entry checkpoint - Fix panic for DSSE canonicalization - Change Redis value for locking mechanism - give log...

5.9CVSS6.7AI score0.54214EPSS

Exploits3References3

SUSE CVE•added 2023/02/15 5:27 a.m.•1 views

SUSE CVE-2014-5251

The MySQL token driver in OpenStack Identity Keystone 2014.1.x before 2014.1.2.1 and Juno before Juno-3 stores timestamps with the incorrect precision, which causes the expiration comparison for tokens to fail and allows remote authenticated users to retain access via an expired token...

4.9CVSS6.7AI score0.0031EPSS

Exploits0References4

Veracode•added 2019/01/15 9:0 a.m.•23 views

Authentication Bypass

openstack-keystone is vulnerable to authentication bypass. Remote authenticated users are able to retain access via an expired token due to the token driver storing timestamps with incorrect precision, which causes timestamp expiration time comparisons for tokens to fail...

4.9CVSS6.3AI score0.0031EPSS

Exploits0References9Affected Software1

Tenable Nessus•added 2015/11/24 12:0 a.m.•40 views

Oracle Linux 7 : wireshark (ELSA-2015-2393)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-2393 advisory. - Related: CVE-2015-6244 - Resolves: CVE-2015-3182 - Resolves: CVE-2015-6243 CVE-2015-6244 CVE-2015-6245 CVE-2015-6246 CVE-2015-6248 - Resolves:...

7.8CVSS6.5AI score0.03569EPSS

Exploits0References22

OSV•added 2014/08/25 2:55 p.m.•1 views

DEBIAN-CVE-2014-5251

4.9CVSS6.7AI score0.0031EPSS

Exploits0References1