Lucene search
K

4 matches found

OSV
OSV
added 2025/01/09 8:16 p.m.3 views

CVE-2024-13291 Basic HTTP Authentication - Critical - Access bypass - SA-CONTRIB-2024-057

Incorrect Authorization vulnerability in Drupal Basic HTTP Authentication allows Forceful Browsing.This issue affects Basic HTTP Authentication: from 7.X-1.0 before 7.X-1.4...

7.3CVSS7.1AI score0.00311EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2019/07/11 12:0 a.m.6 views

PT-2019-18409 · Avaya · Avaya Control Manager

Name of the Vulnerable Software and Affected Versions: Avaya Control Manager versions 7.x and 8.0.x prior to 8.0.4.0 Description: A SQL injection issue in the reporting component could allow an unauthenticated attacker to execute arbitrary SQL commands and retrieve sensitive data related to other...

10CVSS9.9AI score0.01456EPSS
Exploits0References5
OSV
OSV
added 2018/01/18 2:29 a.m.3 views

CVE-2018-2644

Vulnerability in the Oracle Argus Safety component of Oracle Health Sciences Applications subcomponent: Worklist. Supported versions that are affected are 7.x, 8.0.x and 8.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Argus...

6.1CVSS5.8AI score0.00842EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2013/07/03 3:38 p.m.9 views

tomcat: Limited DoS in chunked transfer encoding input filter

Apache Tomcat 6.x before 6.0.37 and 7.x before 7.0.30 does not properly handle chunk extensions in chunked transfer coding, which allows remote attackers to cause a denial of service by streaming data...

5CVSS7.4AI score0.11001EPSS
Exploits1References4
Rows per page
Query Builder