Lucene search
+L

4 matches found

snyk
snyk
added 2026/04/17 1:38 a.m.4 views

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization via the asset download process. An attacker can access the full contents of private note assets by sending unauthenticated requests to the /api/notes/noteID/assets/assetID endpoint when valid note and asset IDs are...

8.2CVSS5.5AI score0.00409EPSS
Exploits0References2
nessus
nessus
added 2026/01/31 12:0 a.m.4 views

EulerOS Virtualization 2.10.0 : aide (EulerOS-SA-2026-1153)

According to the versions of the aide package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : AIDE is an advanced intrusion detection environment. Prior to version 0.19.2, there is an improper output neutralization vulnerability...

6.2CVSS5.9AI score0.00231EPSS
Exploits2References3
osv
osv
added 2025/09/12 2:25 p.m.4 views

OESA-2025-2262 aide security update

Security Fixes: A vulnerability was found in AIDE up to 0.19.1 and classified as problematic.Using CWE to declare the problem leads to CWE-117. The product does not neutralize or incorrectly neutralizes output that is written to logs.Impacted is integrity.Upgrading to version 0.19.2 eliminates th...

6.2CVSS6.2AI score0.00231EPSS
Exploits2References3
osv
osv
added 2025/09/05 12:40 p.m.5 views

OESA-2025-2112 aide security update

Security Fixes: A vulnerability was found in AIDE up to 0.19.1 and classified as problematic.Using CWE to declare the problem leads to CWE-117. The product does not neutralize or incorrectly neutralizes output that is written to logs.Impacted is integrity.Upgrading to version 0.19.2 eliminates th...

6.2CVSS6.3AI score0.00231EPSS
Exploits2References3
Rows per page
Query Builder