Lucene search
K

11 matches found

Cvelist
Cvelist
added 2026/06/18 6:39 p.m.15 views

CVE-2026-47846

Bitnami Cassandra container images are affected by a retained default superuser vulnerability. When a custom administrator account is configured via the CASSANDRAUSER environment variable, the container initialization script creates the new superuser account but fails to drop the built-in cassand...

9.8CVSS0.00338EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/07 3:49 a.m.8 views

CVE-2026-40982

Spring Cloud Config allows applications to serve arbitrary text and binary files through the spring-cloud-config-server module. A malicious user, or attacker, can send a request using a specially crafted URL that can lead to a directory traversal attack. Spring Cloud Config 3.1.x: affected from...

9.1CVSS5.9AI score0.00727EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/09/09 12:0 a.m.5 views

PT-2023-8876 · Unknown +9 · Openpmix Pmix +9

Name of the Vulnerable Software and Affected Versions: OpenPMIx PMIx versions 4.2.6 and earlier, 5.0.x before 5.0.1 Description: The issue is related to a race condition during the execution of library code with UID 0, allowing attackers to obtain ownership of arbitrary files. This can potentiall...

8.1CVSS7AI score0.01121EPSS
Exploits0References72
SUSE CVE
SUSE CVE
added 2023/02/15 5:49 a.m.4 views

SUSE CVE-2012-0101

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x and 5.1.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0087 and CVE-2012-0102...

4CVSS6AI score0.03006EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2019/06/11 12:0 a.m.11 views

PT-2019-12716 · Otrs +2 · Otrs +3

Name of the Vulnerable Software and Affected Versions: Open Ticket Request System OTRS versions 7.0.x through 7.0.7 Open Ticket Request System OTRS Community Edition versions 6.0.x through 6.0.19 Open Ticket Request System OTRS Community Edition versions 5.0.x through 5.0.36 Description: An issue...

9.8CVSS7AI score0.99019EPSS
Exploits29References165
CNVD
CNVD
added 2018/06/27 12:0 a.m.2 views

Pivotal Spring Framework Cross Domain Request Vulnerability

Pivotal Spring Framework is the United States Pivotal Software's set of open source Java, Java EE application framework. The framework helps developers build high-quality applications . A security vulnerability exists in Pivotal Spring Framework versions 5.0.x prior to 5.0.7, 4.3.x prior to 4.3.1...

7.5CVSS5.7AI score0.03244EPSS
Exploits0References1
CNVD
CNVD
added 2018/05/02 12:0 a.m.4 views

IBM API Connect Cross-Site Scripting Vulnerability (CNVD-2018-08943)

IBM API Connect aka APIConnect is an integrated solution for managing the API lifecycle from IBM USA. The solution supports creating, running, managing and securing APIs, microservices and more. A cross-site scripting vulnerability exists in IBM API Connect versions 5.0.0.0 through 5.0.6.5, 5.0.7...

5.4CVSS6AI score0.00968EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/14 12:0 a.m.4 views

Fortinet FortiManager Information Disclosure Vulnerability

Fortinet FortiManager is a centralized network security management platform from Fortinet. The platform supports centralized management of any number of Fortinet devices and can group devices into different management domains ADOM to further simplify multi-device security deployment and managemen...

7.5CVSS7.4AI score0.01965EPSS
Exploits0References1
CNVD
CNVD
added 2017/08/14 12:0 a.m.4 views

Fortinet FortiManager SQL Injection Vulnerability

Fortinet FortiManager is a centralized network security management platform from Fortinet. The platform supports centralized management of any number of Fortinet devices and can group devices into different management domains ADOM to further simplify multi-device security deployment and managemen...

9.8CVSS10AI score0.02343EPSS
Exploits0References1
OSV
OSV
added 2016/04/18 12:59 a.m.3 views

UBUNTU-CVE-2016-0847

The Telecom Component in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to spoof the originating telephone number of a call via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26864502...

8.4CVSS7.2AI score0.00233EPSS
Exploits0References5
Prion
Prion
added 2009/11/30 5:30 p.m.40 views

Code injection

mysqld in MySQL 5.0.x before 5.0.88 and 5.1.x before 5.1.41 does not 1 properly handle errors during execution of certain SELECT statements with subqueries, and does not 2 preserve certain nullvalue flags during execution of statements that use the GeomFromWKB function, which allows remote...

4CVSS6AI score0.16263EPSS
Exploits3References22Affected Software1
Rows per page
Query Builder