Lucene search
+L

548 matches found

NCSC
NCSC
added 2021/03/26 12:0 a.m.13 views

Vulnerabilities fixed in NetApp products

NetApp has fixed multiple vulnerabilities in various Netapp products. The vulnerabilities allow an unauthenticated remote malicious party potentially able to launch attacks leading to the following categories of damage: Denial-of-Service DoS Manipulation of data Access to sensitive data NetApp ha...

8.3CVSS7AI score0.17611EPSS
Exploits4
NCSC
NCSC
added 2021/03/23 12:0 a.m.7 views

Vulnerabilities fixed in Tivoli Netcool/OMNIbus

IBM Tivoli Netcool / OMNIbusGUI is vulnerable to stored cross-site scripting XSS. This security vulnerability CVE-2021-20336 allows users insert arbitrary JavaScript code into the Web interface, thereby altering the intended functionality, potentially lead to the release of login credentials with...

9.8CVSS8.8AI score0.95922EPSS
Exploits11
NCSC
NCSC
added 2021/03/15 12:0 a.m.4 views

Vulnerabilities fixed in Google Chrome

Vulnerabilities have been fixed in Google Chrome. A malicious person could potentially exploit the vulnerabilities to cause a denial-of-service cause or execute arbitrary code with the privileges of the logged in user. As usual, Google is disclosing little information regarding the details of the...

8.8CVSS7.7AI score0.26525EPSS
Exploits3
NCSC
NCSC
added 2021/03/12 12:0 a.m.3 views

Vulnerabilities fixed in NetBSD

The developers of NetBSD have fixed a number of vulnerabilities fixed in NetBSD's IP stack. Because packet IDs are not randomly are not randomly generated by default, a malicious party can predict the IP traffic. predict, allowing the malicious party to launch a man-in-the-middle attack to obtain...

6.8AI score
Exploits0
NCSC
NCSC
added 2021/03/11 12:0 a.m.4 views

Vulnerabilities fixed in IBM DB2

IBM has fixed two vulnerabilities in DB2. A local malicious party could exploit the vulnerabilities to cause a denial-of-service, or execute arbitrary code on the underlying system with root privileges. To do this, however, the malicious party must have local access to the vulnerable system. IBM...

8.4CVSS7.2AI score0.00564EPSS
Exploits0
NCSC
NCSC
added 2021/03/10 12:0 a.m.4 views

Vulnerability fixed in GNU git

GNU has fixed a vulnerability in git. A malicious person could exploit the vulnerability to create a rogue repository from which scripts are automatically executed upon check out. This allows the malicious party to execute arbitrary code with permissions of git on the vulnerable system. GNU has...

8CVSS7.7AI score0.88644EPSS
Exploits5
NCSC
NCSC
added 2021/03/10 12:0 a.m.4 views

Vulnerability fixed in Websphere Application Server

IBM has fixed a vulnerability in Websphere Application Server. A malicious party could exploit the vulnerability to gain access to sensitive data via Directory Traversal to gain access to sensitive data. IBM has released updates to fix the vulnerability in Websphere Application Server. For more...

6.5CVSS6.8AI score0.02252EPSS
Exploits0
NCSC
NCSC
added 2021/03/10 12:0 a.m.5 views

Vulnerabilities fixed in Adobe Connect

Adobe has fixed vulnerabilities in Adobe Connect. A malicious party could potentially exploit the vulnerabilities remotely to execute arbitrary code under the privileges of the application. In addition, the vulnerabilities can be exploited to performing a Cross-Site Scripting XSS attack. A such...

7.8CVSS6.8AI score0.03738EPSS
Exploits0
NCSC
NCSC
added 2021/03/09 12:0 a.m.137 views

Vulnerabilities fixed in SAP products

Vulnerabilities have been fixed in SAP products. The vulnerabilities enable a malicious person to launch attacks that lead to the following categories of damage: Cross-Site Request Forgery XSRF. Bypassing authentication Bypassing security measure Remote code execution User Rights SAP designates...

10CVSS7.4AI score0.98266EPSS
Exploits10
NCSC
NCSC
added 2021/03/05 12:0 a.m.4 views

Vulnerability fixed in Xerox products

A vulnerability has been fixed in Xerox Phaser, WorkCentre and VersaLink. The vulnerability allows a malicious person to execute arbitrary code under the user's privileges. Xerox did not release any substantive details about this vulnerability. No CVE attribute has been assigned to this...

7.2AI score
Exploits0
NCSC
NCSC
added 2021/03/04 12:0 a.m.4 views

Vulnerability fixed in OpenSSH

A vulnerability has been fixed in OpenSSH. The vulnerability allows a malicious party with access to the SSH agent socket to cause a Denial-of-Service and potentially execute arbitrary code. execute. No CVE attribute has been reserved for this vulnerability yet. The developers of OpenSSH have...

7.1AI score
Exploits0
NCSC
NCSC
added 2021/03/03 12:0 a.m.7 views

Vulnerability fixed in Juniper JunOS

A vulnerability has been fixed in Juniper JunOS. The vulnerability allows a malicious person with access to the network in which the system resides is able to cause a denial-of-service. Juniper has released updates to fix the vulnerability. More information can be found on the page below:...

6.5CVSS6.5AI score0.00794EPSS
Exploits1
NCSC
NCSC
added 2021/03/03 12:0 a.m.3 views

Vulnerabilities fixed in Google Chrome

Vulnerabilities have been fixed in Google Chrome. The vulnerabilities allow a malicious person to launch attacks that lead to the following categories of damage: Denial-of-Service DoS Circumvention of security measure Remote code execution User rights Access to sensitive data As usual, Google...

8.8CVSS7.2AI score0.26525EPSS
Exploits24
NCSC
NCSC
added 2021/03/02 12:0 a.m.6 views

Serious vulnerabilities fixed in Microsoft Exchange Server

Vulnerabilities have been fixed in Microsoft Exchange Server. A combination of several vulnerabilities allow a malicious person remotely able to execute arbitrary code under SYSTEM privileges Microsoft states that the vulnerabilities with attribute CVE-2021-26855, CVE-2021-26857, CVE-2021-26858 a...

9.8CVSS7.3AI score0.99999EPSS
Exploits69
NCSC
NCSC
added 2021/02/25 12:0 a.m.13 views

Vulnerabilities fixed in Cisco Nexus 9000 series

Cisco has fixed vulnerabilities in Nexus 9000 Series Fabric Switches. The vulnerabilities allow an unauthenticated remote malicious party able to cause a denial-of-service cause and to bypass a security measure. Cisco categorizes these vulnerabilities according to the CVSSv3 method with a highest...

8.6CVSS6.8AI score0.01476EPSS
Exploits0
NCSC
NCSC
added 2021/02/24 12:0 a.m.6 views

Vulnerability fixed in Huawei S5700

A vulnerability has been fixed in the Huawei S5700 switch. The vulnerability allows a malicious party to cause a denial-of-service cause. Huawei has made little information made available. Huawei has released updates to fix the vulnerability. More information can be found on the page below:...

5.3CVSS6.5AI score0.00715EPSS
Exploits0
NCSC
NCSC
added 2021/02/23 12:0 a.m.4 views

Vulnerability fixed in Atlassian Jira

A vulnerability has been fixed in Jira. The vulnerability allows unauthenticated a malicious person to gain access to system data Atlassian has released updates to fix the vulnerability. fix. More information can be found on the page below: https://jira.atlassian.com/browse/JRASERVER-72014...

5.3CVSS6.7AI score0.23086EPSS
Exploits0
NCSC
NCSC
added 2021/02/18 12:0 a.m.4 views

Vulnerability fixed in BIND

A vulnerability has been fixed in ISC BIND. A malicious party could potentially exploit the vulnerability to cause a denial-of-service cause. This vulnerability can only be exploited when BIND is configured to make use of GSS-TSIG. This is not the default configuration. In environments where BIND...

8.1CVSS6.8AI score0.64161EPSS
Exploits0
NCSC
NCSC
added 2021/02/17 12:0 a.m.4 views

Multiple vulnerabilities fixed in Google Chrome

Vulnerabilities have been fixed in Google Chrome. A malicious person could potentially exploit the vulnerabilities to cause a denial-of-service cause or execute arbitrary code with the privileges of the logged in user. As usual, Google is disclosing little information regarding the details of the...

9.6CVSS7.7AI score0.09458EPSS
Exploits8
NCSC
NCSC
added 2021/02/15 12:0 a.m.23 views

Vulnerabilities fixed in Jira

Vulnerabilities have been fixed in JIRA. The vulnerabilities allow a malicious person to perform a Cross-Site Scripting attack and to obtain system data. Atlassian categorizes these vulnerabilities according to the CVSSv3 method with a highest score of 8.2. Atlassian has released updates to addre...

6.1CVSS6.2AI score0.02001EPSS
Exploits0
Rows per page
Query Builder