18 matches found
CVE-2019-5475
The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...
flatpak bug fix and enhancement update
An update is available for mozilla-filesystem, sbc, dbus-glib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list These packages will be released only via the...
Important: Red Hat Security Advisory: RHV-H security, bug fix, enhancement update (redhat-virtualization-host) 4.3.13
An update for redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Exploit for OS Command Injection in Sonatype Nexus_Repository_Manager
CVE-2019-5475 CVE-2019-5475 and CVE-2019-15588: RCE command...
OS Command Injection in Nexus Yum Repository Plugin
The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...
GHSA-G5M7-57PH-J6P8 OS Command Injection in Nexus Yum Repository Plugin
The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...
Remote Code Execution
nexus-yum-repository-plugin is vulnerable to remote code execution. An attacker with administrative access to nxrm is able to execute arbitrary OS commands on the system by setting the path of createrepo or mergerepo to an OS command in the XML input...
CVE-2019-5475
The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...
Remote code execution
The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...
CVE-2019-5475
CVE-2019-5475 is an OS command injection in the Nexus Yum Repository Plugin (Nexus Repository Manager) that can lead to Remote Code Execution. The vulnerability occurs in the Yum: Configuration capability when the capability’s payload data is not properly sanitized, allowing an attacker with admi...
CVE-2019-5475
The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...
[SECURITY] Fedora 26 Update: python-copr-1.84-1.fc26
COPR is lightweight build system. It allows you to create new project in We bUI, and submit new builds and COPR will create yum repository from latest build s. This package contains python interface to access Copr service. Mostly useful for developers only...
[SECURITY] Fedora 27 Update: python-copr-1.84-1.fc27
COPR is lightweight build system. It allows you to create new project in We bUI, and submit new builds and COPR will create yum repository from latest build s. This package contains python interface to access Copr service. Mostly useful for developers only...
CentOS Update for sos CESA-2013:1121 centos5
Check for the Version of sos OpenVAS Vulnerability Test CentOS Update for sos CESA-2013:1121 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...
Scientific Linux Security Update : sos on SL5.x (noarch) (20130730)
The sosreport utility collected the Kickstart configuration file '/root /anaconda-ks.cfg', but did not remove the root user's password from it before adding the file to the resulting archive of debugging information. An attacker able to access the archive could possibly use this flaw to obtain th...
RHEL 5 : sos (RHSA-2013:1121)
An updated sos package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...
Low: Red Hat Security Advisory: sos security update
An updated sos package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...
sos security, bug fix, and enhancement update
2.2-17.0.1.el6 - Direct traceroute to linux.oracle.com John Haxby orabug 11713272 - Allow '-' in ticket SR numbers John Haxby - Disable --upload option as it will not work with Oracle support - Check oraclelinux-release instead of redhat-release to get OS version John Haxby bug 11681869 - Remove ...