CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2021/04/07 12:0 a.m.•59 views

Debian DSA-4886-1 : chromium - security update

Several vulnerabilites have been discovered in the chromium web browser. - CVE-2021-21159 Khalil Zhani discovered a buffer overflow issue in the tab implementation. - CVE-2021-21160 Marcin Noga discovered a buffer overflow issue in WebAudio. - CVE-2021-21161 Khalil Zhani discovered a buffer...

8.8CVSS7.9AI score0.26525EPSS

Exploits26References83

AlmaLinux•added 2021/04/06 1:34 p.m.•8 views

selinux-policy bug fix and enhancement update

The selinux-policy packages contain the rules that govern how confined processes run on the system. Bug Fixes and Enhancements: Cannot use the graphical user interface when pamttyaudit.so is enabled BZ1938216...

1.6AI score

Exploits0

OSV•added 2021/04/05 5:15 p.m.•2 views

CVE-2020-4997

IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 192914...

5.4CVSS5.7AI score0.00502EPSS

CNNVD•added 2021/04/05 12:0 a.m.•3 views

IBM InfoSphere Information Server 跨站脚本漏洞

IBM InfoSphere Information Server is a data integration platform that includes a range of products that enable you to understand, cleanse, monitor, transform, and transfer data, as well as collaborate to bridge the gap between business and IT. A cross-site scripting vulnerability exists in IBM...

5.4CVSS5.6AI score0.00502EPSS

CNNVD•added 2021/04/05 12:0 a.m.•6 views

IBM Edge 跨站脚本漏洞

IBM Edge Application Manager is an application from IBM Corporation, USA. It provides powerful solutions to address the need to deliver enterprise computing power at the edge of the cloud, closer to where the data is created and at the edge of the enterprise where action needs to be taken. A...

CNNVD•added 2021/04/02 12:0 a.m.•6 views

Cohesity DataPlatform 访问控制错误漏洞

Cohesity DataPlatform is a suite of platforms from Cohesity for managing ancillary data and applications. The platform is primarily used for data backup, instant recovery, and more. Cohesity DataPlatform An access control error vulnerability exists that allows an attacker to access a Cohesity...

5.9CVSS6.1AI score0.01015EPSS

Prion•added 2021/03/31 5:15 p.m.•22 views

Design/Logic Flaw

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3, on systems with Advanced WAF or BIG-IP ASM provisioned, the Traffic Management User Interface TMUI, also referred to as the...

9CVSS7AI score0.08838EPSS

Exploits1References1Affected Software14

RedHat Linux•added 2021/03/31 12:59 p.m.•94 views

Moderate: Red Hat Security Advisory: RHV-H enhancement and security update (redhat-virtualization-host) 4.3.14

An update for redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS7.1AI score0.03235EPSS

Exploits0References5

CNVD•added 2021/03/31 12:0 a.m.•8 views

IBM Jazz Foundation Cross-Site Scripting Vulnerability (CNVD-2021-31965)

IBM Jazz Foundation is a next-generation collaboration platform for software delivery technology from International Business Machines Corporation IBM. IBM Jazz Foundation suffers from a cross-site scripting vulnerability that allows a user to embed arbitrary JavaScript code in the Web UI, which c...

5.4CVSS6.1AI score0.00502EPSS

Exploits0References1

OSV•added 2021/03/30 5:15 p.m.•3 views

CVE-2021-20447

IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 196623...

5.4CVSS5.9AI score0.00502EPSS

OSV•added 2021/03/30 5:15 p.m.•1 views

CVE-2021-20520

5.4CVSS6.7AI score

CNNVD•added 2021/03/30 12:0 a.m.•4 views

IBM Jazz Foundation 跨站脚本漏洞

CNNVD•added 2021/03/30 12:0 a.m.•5 views

IBM Jazz Foundation 跨站脚本漏洞

BDU FSTEC•added 2021/03/30 12:0 a.m.•40 views

The vulnerability of the Traffic Management User Interface (TMUI) of BIG-IP application protection tools allows a hacker to execute arbitrary commands, create or delete files.

The vulnerability of the Traffic Management User Interface TMUI of BIG-IP application protection tools is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands, create or delete files remotely...

10CVSS8AI score0.13672EPSS

Exploits1References6Affected Software14

CNNVD•added 2021/03/30 12:0 a.m.•3 views

IBM Jazz Foundation 跨站脚本漏洞

CNNVD•added 2021/03/30 12:0 a.m.•4 views

IBM Jazz Foundation 跨站脚本漏洞