Lucene search
K

5308 matches found

CNVD
CNVD
added 2020/02/28 12:0 a.m.3 views

Cisco FXOS Software Input Validation Error Vulnerability

Cisco FXOS Software is a set of firewall software from Cisco that runs in Cisco security appliances. An input validation error vulnerability exists in the CLI in Cisco FXOS Software, which arises from the program failing to perform sufficient input validation. A local attacker could exploit this...

6.7CVSS6.6AI score0.00285EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/02/27 12:0 a.m.4 views

The vulnerability of the managed-keys function in the DNS BIND server allows a attacker to cause a service failure.

The vulnerability of the managed-keys function in the DNS BIND server is related to a key validation error, especially when an unsupported algorithm is used. Exploiting this vulnerability can allow a remote attacker to cause a service failure...

4.9CVSS6.4AI score0.02264EPSS
Exploits0References5Affected Software3
CNVD
CNVD
added 2020/02/20 12:0 a.m.3 views

Input validation error vulnerability in multiple Huawei products (CNVD-2020-22010)

The Huawei HEGE-570, among others, is a smart screen device from the Chinese company Huawei Huawei. An input validation error vulnerability exists in multiple Huawei products. The vulnerability stems from the failure of the program to perform sufficient validation, and can be exploited by an...

6.1CVSS6.6AI score0.00208EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/19 12:0 a.m.2 views

Plone Trust Management Issue Vulnerability

Plone is an open source content management system CMS built on the Zope application server. An input validation error vulnerability exists in Plone. The vulnerability stems from a network system or product that does not properly validate incoming data. No detailed vulnerability details are...

6.1CVSS7AI score0.00923EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/18 12:0 a.m.2 views

Multiple Microsemi Products Input Validation Error Vulnerability

Microsemi Symmetricom SyncServer S100 and others are a network time server from Microsemi, USA. A security vulnerability exists in several Symmetricom products that stems from the program's failure to properly handle authentication of callbacks. An attacker could exploit the vulnerability to...

7.5CVSS7AI score0.00911EPSS
Exploits1References1
CNVD
CNVD
added 2020/02/17 12:0 a.m.2 views

Nextcloud Input Validation Error Vulnerability

Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. Nextcloud is vulnerable to an input validation error. The vulnerability originates from a network system or product that does not properly validate incoming...

4.9CVSS6.9AI score0.01472EPSS
Exploits1References1
CNVD
CNVD
added 2020/02/17 12:0 a.m.3 views

HP System Event Utility Input Validation Error Vulnerability

HP System is a system event utility component. A security vulnerability exists in HP System Event Utility versions prior to 1.4.33. A local attacker can exploit this vulnerability to execute arbitrary code via the HP System Event Utility system service...

7.8CVSS7.5AI score0.01478EPSS
Exploits5References1
CNVD
CNVD
added 2020/02/12 12:0 a.m.3 views

Python Input Validation Error Vulnerability

Python is an open source, object-oriented programming language from the Python Software Foundation. The language is extensible, supports modules and packages, and supports multiple platforms. An input validation error vulnerability exists in Python. The vulnerability originates from a networked...

5.5CVSS9.4AI score0.01345EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/12 12:0 a.m.4 views

IBM MQ Input Validation Error Vulnerability (CNVD-2020-13052)

IBM MQ IBM WebSphere MQ is a messaging middleware product from IBM. The product is mainly for the service-oriented architecture SOA to provide a reliable and proven messaging backbone. An input validation error vulnerability exists in IBM MQ and IBM MQ Appliance. An attacker could exploit this...

6.5CVSS6.6AI score0.01764EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/12 12:0 a.m.4 views

IBM MQ Appliance Input Validation Error Vulnerability

The IBM MQ Appliance is an all-in-one appliance for rapid deployment of enterprise-class messaging middleware from IBM USA. An input validation error vulnerability exists in the IBM MQ Appliance. The vulnerability originates from a network system or product that does not properly validate incomin...

8.4CVSS6.8AI score0.00353EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/12 12:0 a.m.4 views

Multiple Siemens Products Input Validation Error Vulnerability (CNVD-2020-23037)

Siemens Scalance X-200 is an industrial Ethernet switch from Siemens, Germany. An input validation error vulnerability exists in multiple Siemens products, which can be exploited by attackers to hijack click-through actions by other users...

5.4CVSS7AI score0.00825EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/12 12:0 a.m.4 views

IBM MQ Input Validation Error Vulnerability (CNVD-2020-13051)

IBM MQ IBM WebSphere MQ is a messaging middleware product from IBM. The product is mainly for the service-oriented architecture SOA to provide a reliable and proven messaging backbone. An input validation error vulnerability exists in IBM MQ version 9.0 LTS, version 8.0 and IBM MQ Appliance versi...

5.9CVSS6.7AI score0.01281EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/11 12:0 a.m.2 views

F5 BIG-IP Input Validation Error Vulnerability (CNVD-2020-10452)

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing and other functions. A security vulnerability exists in F5 BIG-IP. The vulnerability stems from a network system or product that does not properly...

7.5CVSS6.9AI score0.01044EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/11 12:0 a.m.2 views

Input Validation Error Vulnerability in Multiple Qualcomm Products (CNVD-2020-09966)

Qualcomm SDX24 and others are products of Qualcomm Incorporated, U.S.A. The SDX24 is a modem.The SDM630 is a central processing unit CPU product.The SDM660 is a central processing unit CPU product.The SDM660 is a central processing unit CPU product.The SDM660 is a central processing unit CPU...

7.8CVSS6.9AI score0.00204EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/11 12:0 a.m.0 views

Joyent Node.js Input Validation Error Vulnerability

Joyent Node.js is the United States Joyent company's set of web applications built on top of the Google V8 JavaScript engine platform. The platform is primarily used for building highly scalable applications and writing code that can handle tens of thousands of simultaneous connections to a singl...

9.8CVSS9.2AI score0.20041EPSS
Exploits1References1
CNVD
CNVD
added 2020/02/11 12:0 a.m.2 views

Multiple Qualcomm Products Input Validation Error Vulnerability (CNVD-2020-09961)

Qualcomm SDX24 and others are products of Qualcomm Incorporated, U.S.A. The SDX24 is a modem.The QCS605 is a central processing unit CPU product.The SDM439 is a central processing unit CPU product.The QCS605 is a central processing unit CPU product.The QCS605 is a central processing unit CPU...

7.8CVSS6.9AI score0.00202EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/10 12:0 a.m.1 views

Git Input Validation Error Vulnerability

Git is a free, open source distributed version control system. An input validation error vulnerability exists in Git. The vulnerability originates from a network system or product that does not properly validate incoming data. No details of the vulnerability are provided at this time...

3.6CVSS9.2AI score0.00427EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/01/31 12:0 a.m.402 views

PHP 7.2.x < 7.2.27 / PHP 7.3.x < 7.3.14 / 7.4.x < 7.4.2 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is either 7.2.x prior to 7.2.27, 7.3.x prior to 7.3.14, or 7.4.x prior to 7.4.2. It is, therefore, affected by multiple vulnerabilities: - An buffer overflow on the mbflfiltconvbig5wchar function. An unauthenticated,...

9.1CVSS7.6AI score0.08888EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2020/01/24 12:0 a.m.207 views

PHP 7.4.x < 7.4.1 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is prior to 7.2.26, 7.3.x prior to 7.3.13, or 7.4.x prior to 7.4.1. It is, therefore, affected by multiple vulnerabilities: - An arbitrary file read vulnerability exists in link and DirectoryIterator class due to imprope...

9.8CVSS7.7AI score0.08818EPSS
Exploits5References8
CNVD
CNVD
added 2020/01/23 12:0 a.m.1 views

Cisco Email Security Appliance zip decompression engine denial of service vulnerability

The Cisco Email Security Appliance ESA is an all-in-one appliance that defends against spam, advanced malware, phishing, and data loss.Cisco AsyncOS is the base operating system OS, device drivers, memory management, process scheduling, and a collection of all application and scanning software. A...

6.5CVSS6.7AI score0.01087EPSS
Exploits0References1
Rows per page
Query Builder