Lucene search
K

88 matches found

Vulnrichment
Vulnrichment
added 2022/06/14 9:22 a.m.12 views

CVE-2022-32259

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.1. The system images for installation or update of the affected application contain unit test scripts with sensitive information. An attacker could gain information about testing architecture and also tamper with...

6.5CVSS6.7AI score0.00597EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/06/14 9:22 a.m.24 views

CVE-2022-32259

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.1. The system images for installation or update of the affected application contain unit test scripts with sensitive information. An attacker could gain information about testing architecture and also tamper with...

6.5CVSS6.7AI score0.00597EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/06/14 12:0 a.m.4 views

Siemens SINEMA Remote Connect Server 安全漏洞

SINEMA Remote Connect is a remote network management platform that makes it easy to manage tunnel connections VPNs between headquarters, service technicians, and installed machines or plants.A security vulnerability exists in Siemens SINEMA Remote Connect Server, which stems from a system image...

6.5CVSS5.7AI score0.00597EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/06/14 12:0 a.m.4 views

PT-2022-21184 · Siemens · Sinema Remote Connect Server

Name of the Vulnerable Software and Affected Versions: SINEMA Remote Connect Server versions prior to V3.1 Description: A vulnerability has been identified where system images for installation or update of the affected application contain unit test scripts with sensitive information. An attacker...

6.5CVSS6.7AI score0.00597EPSS
Exploits0References4
Code423n4
Code423n4
added 2021/11/15 12:0 a.m.10 views

XVader.sol : loss of user funds during 'leave' function

Handle shri4net Vulnerability details Impact Unintended Fee is charged to user while using 'leave' function in XVader.sol as part of the voting/governance. Proof of Concept Ref contracts/x-vader/XVader.sol, function leave Ref contracts/tokens/Vader.sol, function transfer Example, User locks 100...

7.1AI score
Exploits0
Akamai Blog
Akamai Blog
added 2021/09/08 7:0 a.m.24 views

Jest Mocks—Unit Testing for EdgeWorkers

In case you haven’t already been working with EdgeWorkers, it allows you to run JavaScript code across more than 4,200 locations for proximity to users and fast application response times. With more and more application functionality moving to the edge, it’s increasingly important to ensure that...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2021/03/02 12:0 a.m.9 views

The vulnerability of the JUnit4 library, related to the lack of protection for service data, allows attackers to disclose protected information.

The vulnerability of the JUnit4 library is related to the lack of protection for service data. Exploiting this vulnerability can allow an attacker to disclose the protected information...

5.5CVSS6.4AI score0.01695EPSS
Exploits1References6Affected Software7
OSV
OSV
added 2020/11/06 3:58 p.m.7 views

SUSE-SU-2020:3245-1 Security update for Salt

This update fixes the following issues: salt: - Fix disk.blkid to avoid unexpected keyword argument 'pubuser' bsc1177867 - Ensure virt.update stoponreboot is updated with its default value - Do not break package building for systemd OSes - Drop wrong mock from chroot unit test - Support systemd...

9.8CVSS7.4AI score0.99585EPSS
Exploits5References14
OSV
OSV
added 2020/07/21 12:40 a.m.16 views

SUSE-SU-2020:1974-1 Security update for salt

This update for salt contains the following fixes: - Fix for TypeError in Tornado importer bsc1174165 - Require python3-distro only for TW bsc1173072 - Update to Salt version 3000: See release notes: https://docs.saltstack.com/en/latest/topics/releases/3000.html - Add docker.logout to docker...

9.8CVSS7.9AI score0.96405EPSS
Exploits25References16
Oracle linux
Oracle linux
added 2020/06/01 12:0 a.m.84 views

bind security update

32:9.11.4-16.P2.6 - Fix EDNS512 loops on broken servers 32:9.11.4-16.P2.5 - Add CVE tests to codebase 32:9.11.4-16.P2.4 - Limit number of queries triggered by a request CVE-2020-8616 - Fix invalid tsig request CVE-2020-8617 32:9.11.4-16.P2.3 - Disable atomic operations on ppc64, ppc64le, aarch64,...

8.6CVSS2.5AI score0.93422EPSS
Exploits6
OSV
OSV
added 2020/03/24 2:52 p.m.7 views

SUSE-SU-2020:0763-1 Security Beta update for Salt

This update fixes the following issues: salt: - Requiring python3-distro only for openSUSE/SLE = 15 - Use full option name instead of undocumented abbreviation for zypper - Python-distro is only needed for Python 3.7. Removing it for Python 2 - Fixed a local privilege escalation to root bsc115746...

8.4CVSS9.3AI score0.00386EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2019/12/27 4:38 p.m.21 views

CVE-2019-19847

An off-by-one vulnerability was found in libspiro in the way a double array is first declared in a unit test and then accessed by the library itself. Applications that make use of libspiro in the same way as the example code in the test suite may be vulnerable to this flaw. A remote attacker coul...

8.1CVSS6.3AI score0.01365EPSS
Exploits1References3
OSV
OSV
added 2019/11/18 6:15 a.m.5 views

UBUNTU-CVE-2019-19049

A memory leak in the unittestdataadd function in drivers/of/unittest.c in the Linux kernel before 5.3.10 allows attackers to cause a denial of service memory consumption by triggering offdtunflattentree failures, aka CID-e13de8fe0d6a. NOTE: third parties dispute the relevance of this because...

7.5CVSS7.1AI score0.03551EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2019/11/14 12:0 a.m.52 views

bind security and bug fix update

32:9.11.4-26.P2 - Permit explicit disabling of RSAMD5 in FIPS mode 1737407 32:9.11.4-25.P2 - Fix CVE-2018-5745 - Fix CVE-2019-6465 32:9.11.4-24.P2 - Do not override random numbers provider in DHCP 1668682 32:9.11.4-23.P2 - Report errors on invalid IDN 2008 names 1679307 32:9.11.4-22.P2 - Fix...

5.9CVSS2.3AI score0.037EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2019/10/04 8:56 p.m.20 views

CVE-2008-5704

src/unittest.c in gpsdrive aka gpsdrive-scripts 2.10pre4 might allow local users to overwrite arbitrary files via a symlink attack on the /tmp/gpsdrive-unit-test/proc temporary file, a different vector than CVE-2008-4959 and CVE-2008-5380...

7.6CVSS6.3AI score0.01185EPSS
Exploits1References3
Oracle linux
Oracle linux
added 2019/02/11 12:0 a.m.89 views

runc security update

1.0.0-19.rc5.git4bb1fe4.0.3.el7 - Apply patch for CVE-2019-5736 Wiekus Beukes 1.0.0-19.rc5.git4bb1fe4.0.2.el7 - update Go version to 1.10.8, fix version string Laszlo Laca Peter 1.0.0-19.rc5.git4bb1fe4.0.1.el7 - Tuning .spec file 2:1.0.0-19.rc5.git4bb1fe4 - release v1.0.0rc5...

9.3CVSS0.4AI score0.9857EPSS
Exploits33
w3af
w3af
added 2017/11/22 6:51 p.m.58 views

xml_file

This plugin writes the framework messages to an XML report file. One configurable parameter exists: outputfile Plugin type Output Options Name | Type | Default Value | Description | Help ---|---|---|---|--- outputfile | outputfile | report.xml | File name where this plugin will write to | No...

7.2AI score
Exploits0
Oracle linux
Oracle linux
added 2017/08/07 12:0 a.m.31 views

GStreamer security, bug fix, and enhancement update

clutter-gst2 2.0.18-1 - Update to 2.0.18 - Remove obsolete patches - Use license macro for COPYING - Resolves: 1386833 gnome-video-effects 0.4.3-1 - Update to 0.4.3 - Resolves: 1386968 0.4.1-5 - Fix URL rhbz1380981 gstreamer-plugins-bad-free 0.10.23-23 - Rebuild with hardened flags Resolves:...

7.5CVSS0.1AI score0.04717EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/02/03 12:0 a.m.50 views

SUSE SLED12 / SLES12 Security Update : ceph (SUSE-SU-2017:0367-1)

This update for ceph fixes the following issues : - CVE-2016-5009: moncommand with empty prefix could crash monitor bsc987144 - Invalid commandd in SOC7 with ceph bsc1008894 - Performance fix was missing in SES4 bsc1005179 - ceph build problems on ppc64le bsc982141 - ceph make build unit test...

6.5CVSS6.1AI score0.0248EPSS
Exploits0References14
OSV
OSV
added 2016/09/11 9:59 p.m.5 views

UBUNTU-CVE-2016-3874

CORE/HDD/src/wlanhddwext.c in the Qualcomm Wi-Fi driver in Android before 2016-09-05 on Nexus 5X devices does not properly validate the arguments array, which allows attackers to gain privileges via a crafted application that sends a WEUNITTESTCMD command, aka Android internal bug 29944562 and...

7.8CVSS7.2AI score0.0082EPSS
Exploits0References5
Rows per page
Query Builder