Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:30 a.m.9 views

CVE-2019-5475

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...

9CVSS7.3AI score0.18396EPSS
Exploits5References1
Rockylinux
Rockylinux
added 2022/09/12 7:30 a.m.14 views

flatpak bug fix and enhancement update

An update is available for mozilla-filesystem, sbc, dbus-glib. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list These packages will be released only via the...

0.9AI score
Exploits0
RedHat Linux
RedHat Linux
added 2021/02/03 10:39 a.m.156 views

Important: Red Hat Security Advisory: RHV-H security, bug fix, enhancement update (redhat-virtualization-host) 4.3.13

An update for redhat-virtualization-host is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.8CVSS7.2AI score0.99295EPSS
Exploits83References9
GithubExploit
GithubExploit
added 2020/12/16 2:3 p.m.289 views

Exploit for OS Command Injection in Sonatype Nexus_Repository_Manager

CVE-2019-5475 CVE-2019-5475 and CVE-2019-15588: RCE command...

9CVSS7.3AI score0.18396EPSS
Exploits5
Github Security Blog
Github Security Blog
added 2019/09/11 11:4 p.m.40 views

OS Command Injection in Nexus Yum Repository Plugin

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...

9CVSS3.1AI score0.18396EPSS
Exploits5References3Affected Software1
OSV
OSV
added 2019/09/11 11:4 p.m.25 views

GHSA-G5M7-57PH-J6P8 OS Command Injection in Nexus Yum Repository Plugin

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...

8.8CVSS7.8AI score0.18396EPSS
Exploits5References2
Veracode
Veracode
added 2019/09/04 3:34 a.m.23 views

Remote Code Execution

nexus-yum-repository-plugin is vulnerable to remote code execution. An attacker with administrative access to nxrm is able to execute arbitrary OS commands on the system by setting the path of createrepo or mergerepo to an OS command in the XML input...

8.8CVSS4.6AI score0.18396EPSS
Exploits5References2Affected Software1
OSV
OSV
added 2019/09/03 8:15 p.m.21 views

CVE-2019-5475

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...

8.8CVSS7.2AI score
Exploits0References1
Prion
Prion
added 2019/09/03 8:15 p.m.19 views

Remote code execution

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...

9CVSS7.8AI score0.18396EPSS
Exploits5References1Affected Software1
CVE
CVE
added 2019/09/03 7:13 p.m.200 views

CVE-2019-5475

CVE-2019-5475 is an OS command injection in the Nexus Yum Repository Plugin (Nexus Repository Manager) that can lead to Remote Code Execution. The vulnerability occurs in the Yum: Configuration capability when the capability’s payload data is not properly sanitized, allowing an attacker with admi...

9CVSS7.7AI score0.18396EPSS
Exploits5References1Affected Software1
Cvelist
Cvelist
added 2019/09/03 7:13 p.m.44 views

CVE-2019-5475

The Nexus Yum Repository Plugin in v2 is vulnerable to Remote Code Execution when instances using CommandLineExecutor.java are supplied vulnerable data, such as the Yum Configuration Capability...

7.3AI score0.18396EPSS
Exploits5References1
Fedora
Fedora
added 2017/11/22 2:34 a.m.13 views

[SECURITY] Fedora 26 Update: python-copr-1.84-1.fc26

COPR is lightweight build system. It allows you to create new project in We bUI, and submit new builds and COPR will create yum repository from latest build s. This package contains python interface to access Copr service. Mostly useful for developers only...

2.9AI score
Exploits0
Fedora
Fedora
added 2017/11/21 11:38 p.m.14 views

[SECURITY] Fedora 27 Update: python-copr-1.84-1.fc27

COPR is lightweight build system. It allows you to create new project in We bUI, and submit new builds and COPR will create yum repository from latest build s. This package contains python interface to access Copr service. Mostly useful for developers only...

2.9AI score
Exploits0
OpenVAS
OpenVAS
added 2013/08/01 12:0 a.m.37 views

CentOS Update for sos CESA-2013:1121 centos5

Check for the Version of sos OpenVAS Vulnerability Test CentOS Update for sos CESA-2013:1121 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

4.3CVSS6.4AI score0.01429EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/07/31 12:0 a.m.29 views

Scientific Linux Security Update : sos on SL5.x (noarch) (20130730)

The sosreport utility collected the Kickstart configuration file '/root /anaconda-ks.cfg', but did not remove the root user's password from it before adding the file to the resulting archive of debugging information. An attacker able to access the archive could possibly use this flaw to obtain th...

4.3CVSS5.4AI score0.01429EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/07/31 12:0 a.m.33 views

RHEL 5 : sos (RHSA-2013:1121)

An updated sos package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

4.3CVSS5.5AI score0.01429EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2013/07/30 4:56 p.m.29 views

Low: Red Hat Security Advisory: sos security update

An updated sos package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

4.3CVSS5.8AI score0.01429EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2011/12/14 12:0 a.m.28 views

sos security, bug fix, and enhancement update

2.2-17.0.1.el6 - Direct traceroute to linux.oracle.com John Haxby orabug 11713272 - Allow '-' in ticket SR numbers John Haxby - Disable --upload option as it will not work with Oracle support - Check oraclelinux-release instead of redhat-release to get OS version John Haxby bug 11681869 - Remove ...

4.3CVSS6.3AI score0.00994EPSS
Exploits0
Rows per page
Query Builder