Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2023/09/05 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-2635)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.02211EPSS
Exploits7References2
Amazon
Amazon
added 2023/07/26 12:0 a.m.5 views

Medium: curl

Issue Overview: libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the now freed hash. This flaw risks inserting sensitive heap-based data into t...

7.5CVSS6.9AI score0.02489EPSS
Exploits3
Github Security Blog
Github Security Blog
added 2023/05/23 7:54 p.m.214 views

Administration Console authentication bypass in openfire xmppserver

An important security issue affects a range of versions of Openfire, the cross-platform real-time collaboration server based on the XMPP protocol that is created by the Ignite Realtime community. Impact Openfire's administrative console the Admin Console, a web-based application, was found to be...

8.6CVSS7AI score0.99999EPSS
Exploits15References11Affected Software1
Github Security Blog
Github Security Blog
added 2023/04/20 9:33 p.m.243 views

Spring Boot Security Bypass with Wildcard Pattern Matching on Cloud Foundry

In Spring Boot versions 3.0.0 - 3.0.5, 2.7.0 - 2.7.10, and older unsupported versions, an application that is deployed to Cloud Foundry could be susceptible to a security bypass. Users of affected versions should apply the following mitigation: 3.0.x users should upgrade to 3.0.6+. 2.7.x users...

9.8CVSS6AI score0.01122EPSS
Exploits0References11Affected Software1
CNNVD
CNNVD
added 2023/04/20 12:0 a.m.23 views

Spring Framework 安全漏洞

Spring Framework is the U.S. Spring team of a set of open source Java, JavaEE application framework. The framework helps developers build high-quality applications. Spring Boot has a security vulnerability that stems from a security bypass using wildcard pattern matching...

9.8CVSS8AI score0.01122EPSS
Exploits0References6
Rows per page
Query Builder