Lucene search
K

14 matches found

OSV
OSV
added 2026/05/06 2:42 p.m.6 views

BIT-JAVA-MIN-2021-2341

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows...

4.3CVSS6.9AI score0.04238EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-41797

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.0077EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-24756

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bareos is open source software for backup, archiving, and recovery of data for operating systems. When Bareos Director = 18.2 but prior to 21.1.0, 20.0.6, and...

7.5CVSS7.3AI score0.01906EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:9 p.m.16 views

CVE-2022-39309

GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 leak the symmetric key used to encrypt/decrypt any secure variables/secrets in GoCD configuration to authenticated agent...

6.5CVSS6.3AI score0.0077EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:7 p.m.20 views

CVE-2022-39310

GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 can allow one authenticated agent to impersonate another agent, and thus receive work packages for other agents due to...

6.5CVSS6AI score0.00615EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/21 12:0 a.m.3 views

Yandex Browser 安全漏洞

Yandex Browser is a desktop version of a web browser from the Russian company Yandex. A security vulnerability exists in Yandex Browser Lite for Android prior to version 21.1.0, which originates from a remote attacker and can result in a denial of service...

8.3CVSS6.6AI score0.0067EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:40 p.m.22 views

CVE-2022-39311

GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 are vulnerable to remote code execution on the server from a malicious or compromised agent. The Spring RemoteInvocation...

9.1CVSS7.8AI score0.01579EPSS
Exploits0References1
NVD
NVD
added 2022/10/14 8:15 p.m.26 views

CVE-2022-39310

GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 can allow one authenticated agent to impersonate another agent, and thus receive work packages for other agents due to...

6.5CVSS0.00615EPSS
Exploits0References3
Prion
Prion
added 2022/10/14 8:15 p.m.25 views

Improper access control

GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 can allow one authenticated agent to impersonate another agent, and thus receive work packages for other agents due to...

4CVSS6AI score0.00615EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/14 12:0 a.m.6 views

CVE-2022-39311 Compromised agents may be able to execute remote code on GoCD Server

GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 are vulnerable to remote code execution on the server from a malicious or compromised agent. The Spring RemoteInvocation...

9.1CVSS9.4AI score0.01579EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/10/14 12:0 a.m.6 views

CVE-2022-39309 GoCD server secret encryption/decryption key leaked to agents during material serialization

GoCD is a continuous delivery server. GoCD helps you automate and streamline the build-test-release cycle for continuous delivery of your product. GoCD versions prior to 21.1.0 leak the symmetric key used to encrypt/decrypt any secure variables/secrets in GoCD configuration to authenticated agent...

4.9CVSS6.1AI score0.0077EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/05/11 12:0 a.m.6 views

Progress Software WhatsUp Gold 安全漏洞

Progress Software WhatsUp Gold is a network monitoring software from Progress Software, Inc. It is used to monitor the entire network infrastructure as well as applications, configurations and network traffic. A security vulnerability exists in Progress Software WhatsUp Gold versions 21.1.0 throu...

6.5CVSS6.5AI score0.03914EPSS
Exploits0References3
Cvelist
Cvelist
added 2021/09/28 5:40 p.m.45 views

CVE-2021-41318

In Progress WhatsUp Gold prior to version 21.1.0, an application endpoint failed to adequately sanitize malicious input. which could allow an unauthenticated attacker to execute arbitrary code in a victim's browser...

6.9AI score0.05881EPSS
Exploits4References2
CNNVD
CNNVD
added 2021/09/28 12:0 a.m.5 views

Progress Software Corporation Progress WhatsUp Gold 跨站脚本漏洞

Progress Software Corporation Progress WhatsUp Gold is a network monitoring software from Progress Software Corporation, USA. It is used to monitor the entire network infrastructure as well as applications, configurations and network traffic. Progress WhatsUp Gold suffers from a cross-site...

6.1CVSS6.5AI score0.05881EPSS
Exploits4References5
Rows per page
Query Builder