Lucene search
K

4197 matches found

NCSC
NCSC
•added 2020/10/30 12:0 a.m.•6 views

Vulnerabilities fixed in QNAP QTS

Vulnerabilities have been fixed in QNAP-QTS, Music-Station and Photo-Station. The vulnerabilities allow a malicious person to perform attacks that result in the following categories of damage: Cross-Site Scripting XSS. Remote code execution User Rights SQL Injection Access to system data QNAP has...

9.8CVSS7.5AI score0.02038EPSS
Exploits0
NCSC
NCSC
•added 2020/10/30 12:0 a.m.•14 views

Vulnerability fixed in Nessus

A vulnerability has been fixed in Nessus. The vulnerability allows a local malicious person with valid login credentials on a Windows machine to execute arbitrary code under the user's privileges. Tenable has made updates available for Nessus to fix the vulnerability. More information can be foun...

7.8CVSS7.3AI score0.00392EPSS
Exploits0
NCSC
NCSC
•added 2020/10/30 12:0 a.m.•4 views

Vulnerability fixed in Grafana

The vulnerability is known as a so-called Cross-Site Scripting. The vulnerability allows a remote malicious person to able to execute arbitrary code in the browser of the victim. Grafana Labs has released updates to fix the vulnerability. fix. More information can be found on the pages below:...

6.1CVSS7.5AI score0.01965EPSS
Exploits0
NCSC
NCSC
•added 2020/10/30 12:0 a.m.•4 views

Vulnerabilities fixed in IBM Security Directory Server

Vulnerabilities have been fixed in IBM Security Directory Server. The vulnerabilities allow a malicious party to access system data. IBM has released updates to fix the vulnerabilities. More information can be found on the page below: https://www.ibm.com/support/pages/node/6356607...

5.3CVSS6.7AI score0.01054EPSS
Exploits0
NCSC
NCSC
•added 2020/10/29 12:0 a.m.•4 views

Vulnerabilities fixed in Samba

Vulnerabilities have been fixed in Samba. The vulnerabilities allow a malicious person to gain access to system data and to cause a denial-of-service. Samba has released updates to fix the vulnerabilities. More information can be found on the page below:...

6.5CVSS7AI score0.0218EPSS
Exploits0
NCSC
NCSC
•added 2020/10/29 12:0 a.m.•9 views

Vulnerabilities fixed in Juniper Networks Junos OS

Juniper Networks has fixed vulnerabilities in Junos OS. The vulnerabilities allow an unauthenticated remote malicious person to remotely able to cause a denial-of-service. Juniper Networks categorizes these vulnerabilities according to the CVSSv3 method with a highest score of 7.5. Juniper Networ...

7.8CVSS6.9AI score0.01399EPSS
Exploits0
NCSC
NCSC
•added 2020/10/29 12:0 a.m.•7 views

Vulnerability fixed in Red Hat Jboss Enterprise Application Platform

A vulnerability has been fixed in Red Hat Jboss Enterprise Application Platform. The vulnerability allows a remote malicious person to remotely able to manipulate data and thereby cause a Denial-of-Service. Red Hat has released updates to fix the vulnerability in. More information can be found on...

7.5CVSS8.3AI score0.17611EPSS
Exploits0
NCSC
NCSC
•added 2020/10/29 12:0 a.m.•5 views

Vulnerabilities fixed in F5 BIG-IP

F5 has fixed vulnerabilities in BIG-IP. The vulnerabilities allow a remote malicious party to cause a denial-of-service and to cause a security measure to be circumvention. F5 has released updates to fix the vulnerabilities. More information can be found on the pages below: CVE-2020-5933:...

7.8CVSS7.2AI score0.0105EPSS
Exploits0
NCSC
NCSC
•added 2020/10/29 12:0 a.m.•6 views

Vulnerability fixed in Red Hat JBoss

Vulnerabilities have been fixed in JBoss. The vulnerabilities allow a malicious person to perform attacks that result in the following categories of damage: Denial-of-Service DoS. Circumvention of security measure Accessing system data Red Hat categorizes these vulnerabilities as "moderate. -= Re...

6.8AI score
Exploits0
NCSC
NCSC
•added 2020/10/29 12:0 a.m.•7 views

Vulnerabilities fixed in Juniper Networks Junos OS

Vulnerabilities have been fixed in Junos OS. The vulnerabilities allow a malicious party to launch a denial-of-service attack and to execute arbitrary code under the privileges of the user. Juniper has released updates to fix the vulnerabilities. More information can be found on the pages below:...

10CVSS7.6AI score0.74513EPSS
Exploits2
NCSC
NCSC
•added 2020/10/28 12:0 a.m.•6 views

Vulnerabilities fixed in SonicWall

Vulnerabilities have been fixed in SonicWall Global VPN Client. The vulnerabilities allow a local malicious person to gain elevated rights and to execute arbitrary code under the user's privileges. SonicWall has released updates to address the vulnerabilities. fixes. More information can be found...

8.6CVSS7.5AI score0.01191EPSS
Exploits0
NCSC
NCSC
•added 2020/10/28 12:0 a.m.•7 views

Vulnerabilities fixed in QNAP QTS

QNAS has fixed vulnerabilities in the QTS operating system. The vulnerabilities allow a remote malicious person to to inject arbitrary commands. It is good practice to have the user interface for a system like QTS to be exposed on a separate administrator network. QNAP has released updates to fix...

7.2CVSS6.9AI score0.02178EPSS
Exploits0
NCSC
NCSC
•added 2020/10/28 12:0 a.m.•6 views

Vulnerabilities fixed in Pulse Secure products for Windows, Linux and Mac

Vulnerabilities have been fixed in Pulse Secure products. The vulnerabilities allow a malicious person to carry out attacks execute attacks that result in the following categories of damage: Cross-Site Request Forgery XSRF. Cross-Site Scripting XSS Denial-of-Service DoS. Circumvention of security...

9.8CVSS6.5AI score0.9648EPSS
Exploits12
NCSC
NCSC
•added 2020/10/28 12:0 a.m.•7 views

Vulnerabilities fixed in Check Point Zone Alarm Extreme Security

Check Point fixed vulnerabilities in Zone Alarm Extreme Security. The vulnerabilities allow a local malicious party to able to delete files restored from an archive and to obtain elevated privileges. Check Point has released a new version to address the vulnerabilities fixes. More information can...

7.8CVSS6.5AI score0.00333EPSS
Exploits0
NCSC
NCSC
•added 2020/10/28 12:0 a.m.•3 views

Vulnerability fixed in IBM WebSphere Application Server

A vulnerability has been fixed in IBM WebSphere Application Server. The vulnerability allows a remote malicious person to gain access to system data. IBM has released updates to fix the vulnerability. More information can be found on the page below: https://www.ibm.com/support/pages/node/6356083...

6.5CVSS6.6AI score0.02534EPSS
Exploits0
NCSC
NCSC
•added 2020/10/28 12:0 a.m.•6 views

Vulnerability fixed in FortiClient

A vulnerability has been fixed in FortiClient for Linux. The vulnerability enables a local malicious person who has the ability has the ability to run scripts or programs on the system is able to able to obtain elevated privileges. FortiNet has released updates to fix the vulnerability. More...

8.8CVSS6.3AI score0.00227EPSS
Exploits0
NCSC
NCSC
•added 2020/10/28 12:0 a.m.•6 views

Vulnerability fixed in FortiOS

A vulnerability has been fixed in FortiOS. The vulnerability allows an authenticated attacker to obtain sensitive data, for example, passwords stored in cleartext. Fortinet has released updates to fix the vulnerability. More information can be found on the page below:...

6.5CVSS6.3AI score0.00569EPSS
Exploits0
NCSC
NCSC
•added 2020/10/28 12:0 a.m.•6 views

Vulnerabilities fixed in Red Hat OpenShift

Vulnerabilities have been fixed in Red Hat OpenShift. The vulnerabilities allow a malicious party to carry out attacks that lead to the following categories of damage: Denial-of-Service DoS Circumvention of security measure Accessing sensitive data Accessing system data -= Red Hat =- Red Hat has...

9.9CVSS9.1AI score0.0473EPSS
Exploits0
NCSC
NCSC
•added 2020/10/28 12:0 a.m.•6 views

Vulnerabilities fixed in MariaDB

Vulnerabilities have been fixed in MariaDB. The vulnerabilities allow a malicious person to perform a denial-of-service execution. In the case of the vulnerability with attribute CVE-2020-13249, it also involves an attack from the network. -= Ubuntu =- Canonical has made updates available for...

9CVSS9AI score0.05539EPSS
Exploits0
NCSC
NCSC
•added 2020/10/27 12:0 a.m.•4 views

Vulnerabilities fixed in Trend Micro Antivirus for Mac

Trend Micro has fixed vulnerabilities in Antivirus for Mac. The vulnerabilities allow a locally authenticated malicious agent to able to cause a denial-of-service or to obtain system data obtain. Trend Micro categorizes these vulnerabilities according to the CVSSv3 method with a highest score of...

6.9CVSS6.6AI score0.00885EPSS
Exploits0
NCSC
NCSC
•added 2020/10/27 12:0 a.m.•4 views

Vulnerability fixed in management console for 3PAR systems

HP has fixed a vulnerability in the StoreServ Management Console SSMC. SSMC is the Web-based management application for 3PAR StoreServ systems but can also be used to manage other storage systems. The vulnerability allows a malicious remotely able to bypass authentication. HP rates this...

9.8CVSS6.6AI score0.02154EPSS
Exploits0
NCSC
NCSC
•added 2020/10/27 12:0 a.m.•5 views

Vulnerability fixed in Red Hat OpenShift

Red Hat has fixed a vulnerability in OpenShift. The vulnerability allows a malicious owner of a pod to possible to bypass a security measure in the restricted Context Constraints Object to bypass. This enables the malicious person to enabled to send custom network packets. Red Hat scales this...

6.5CVSS6.6AI score0.0093EPSS
Exploits0
NCSC
NCSC
•added 2020/10/23 12:0 a.m.•6 views

Vulnerabilities fixed in Oracle Communications-producton

Oracle has fixed vulnerabilities in Communications Messaging Server. The vulnerabilities allow an unauthenticated malicious person with network access to the vulnerable system may be able to launch attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS...

5.5CVSS7.2AI score0.0255EPSS
Exploits0
NCSC
NCSC
•added 2020/10/23 12:0 a.m.•5 views

Vulnerability fixed in ElasticSearch

A vulnerability has been fixed in ElasticSearch. The vulnerability allows a malicious person to obtain system data. This is only possible if Document or Field Level security is used. Elastic classifies this vulnerability with a CvSS score of 3.1. Elastic has released updates to fix the...

3.5CVSS6.5AI score0.00999EPSS
Exploits0
NCSC
NCSC
•added 2020/10/23 12:0 a.m.•4 views

Vulnerabilities fixed in VMware Horizon Server and Client

Vulnerabilities have been fixed in VMware Horizon Server and Client. The vulnerabilities allow a malicious party to access system data and to execute arbitrary code under the user's privileges. VMware has released updates to fix the vulnerabilities. More information can be found on the page below...

6.5CVSS7.3AI score0.01268EPSS
Exploits0
NCSC
NCSC
•added 2020/10/23 12:0 a.m.•3 views

Vulnerabilities fixed in Oracle Virtualbox

Oracle has fixed multiple vulnerabilities in Virtualbox. By exploiting the vulnerabilities, a malicious person with access to a VM gain access to sensitive data, manipulate data manipulate data or cause a denial-of-service. ------------------.------.------------------------------------- | CVE ID ...

8.2CVSS6.7AI score0.00714EPSS
Exploits0
NCSC
NCSC
•added 2020/10/23 12:0 a.m.•6 views

Vulnerabilities fixed in Oracle Hyperion

Oracle has fixed vulnerabilities in the following Oracle Hyperion products: Hyperion Analytic Provider Services Hyperion BI+ Hyperion Essbase Hyperion Infrastructure Technology Hyperion Planning Hyperion Lifecycle Management The vulnerabilities allow an unauthenticated malicious person with netwo...

9.8CVSS7.4AI score0.17939EPSS
Exploits0
NCSC
NCSC
•added 2020/10/23 12:0 a.m.•5 views

Vulnerabilities fixed in Oracle Solaris

Oracle has fixed several vulnerabilities in Solaris. By exploiting the vulnerabilities, an unauthorized malicious person can gain remote access to the system. It also allows local users bypass security measures or cause a denial-of-service. Oracle has released updates to fix the vulnerabilities...

10CVSS7.1AI score0.80291EPSS
Exploits13
NCSC
NCSC
•added 2020/10/23 12:0 a.m.•6 views

Vulnerabilities fixed in Oracle Financial Services Software

Oracle has fixed vulnerabilities in several Oracle Financial Services products. The vulnerabilities enable an unauthenticated malicious person with network access to a vulnerable system potentially able to launch attacks that result in the following categories of damage: Denial-of-Service DoS...

9.8CVSS7.7AI score0.99019EPSS
Exploits15
NCSC
NCSC
•added 2020/10/23 12:0 a.m.•11 views

Vulnerabilities fixed in Red Hat OpenShift

Vulnerabilities have been fixed in OpenShift. The vulnerabilities allow a malicious person to launch attacks that lead to the following categories of damage: Cross-Site Scripting XSS Denial-of-Service DoS. Bypassing authentication Circumvention of security measure Remote code execution User right...

10CVSS7.2AI score0.21052EPSS
Exploits19
NCSC
NCSC
•added 2020/10/22 12:0 a.m.•7 views

Vulnerability fixed in Snort

A vulnerability has been fixed in Snort. The vulnerability allows an unauthenticated remote malicious person to enable an security measure to bypass. Cisco has released updates to fix the vulnerability. More information can be found on the page below: https://tools.cisco.com/security/center/conte...

5.8CVSS6.8AI score0.02279EPSS
Exploits0
NCSC
NCSC
•added 2020/10/22 12:0 a.m.•7 views

Vulnerability in Ghisler Total Commander

There is a vulnerability in Ghisler Total Commander. The vulnerability allows a local malicious person to obtain elevated permissions by replacing the Total Commander binary. The developers of Total Commander have indicated that they will not fix the vulnerability will not be fixed. According to...

7.3CVSS6.5AI score0.00389EPSS
Exploits1
NCSC
NCSC
•added 2020/10/22 12:0 a.m.•3 views

Vulnerability fixed in Citrix ADC and Citrix Gateway

Citrix has fixed a vulnerability in ADC and Gateway. The vulnerability allows a malicious party to obtain elevated privileges. obtain. The vulnerability can only be exploited from a peer switch whose Link Layer Discovery Protocol LLDP is enabled. Citrix has released updates to fix the...

8.8CVSS6.6AI score0.00557EPSS
Exploits0
NCSC
NCSC
•added 2020/10/22 12:0 a.m.•45 views

Vulnerabilities fixed in Cisco ASA and FTD

Vulnerabilities have been fixed in Cisco Adaptive Security Appliance ASA and Cisco Firepower Threat Defense FTD. The vulnerabilities allow a malicious party to conduct attacks execute attacks that result in the following categories of damage: Cross-Site Scripting XSS Denial-of-Service DoS...

8.6CVSS6.1AI score0.85439EPSS
Exploits2
NCSC
NCSC
•added 2020/10/22 12:0 a.m.•23 views

Vulnerabilities fixed in Oracle Fusion Middleware

Oracle has fixed vulnerabilities in the following Oracle Fusion Middleware products: JDeveloper HTTP Server Identity Manager Connector Business Intelligence Enterprise Edition WebLogic Server The vulnerabilities allow an unauthenticated malicious person with network access to the vulnerable syste...

10CVSS7.4AI score0.99997EPSS
Exploits109
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•5 views

Vulnerability fixed in Adobe Premiere

Adobe has fixed a vulnerability in Premiere. The vulnerability allows a malicious party to execute arbitrary code execute arbitrary code under user privileges. Adobe has released updates to fix the vulnerability. More information can be found on the page below:...

7.8CVSS7.5AI score0.0111EPSS
Exploits0
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•4 views

Vulnerability fixed in Adobe Photoshop

Adobe has fixed a vulnerability in Adobe Photoshop. The vulnerability allows a malicious party to execute arbitrary code execute arbitrary code under user privileges. Adobe has released updates to fix the vulnerability. More information can be found on the page below:...

7.8CVSS7.5AI score0.00762EPSS
Exploits0
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•2 views

Vulnerabilities fixed in Xen

Vulnerabilities have been fixed in Xen. The vulnerabilities allow a malicious party the ability to cause a denial-of-service or to obtain elevated privileges. Xen has released updates to fix the vulnerabilities. More information can be found on the pages below: x86 PV guest INVLPG-like flushes ma...

6.7AI score
Exploits0
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•3 views

Vulnerabilities fixed in Oracle Java SE

Oracle has fixed vulnerabilities in the following Oracle Database products: Oracle Java SE JDK Oracle Java SE JRE Oracle Java Oracle Java Web Start The vulnerabilities allow an unauthenticated remote malicious person to remote may be able to launch attacks that result in the following categories ...

5.8CVSS6.6AI score0.03713EPSS
Exploits0
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•6 views

Vulnerabilities fixed in Adobe Illustrator

Adobe has fixed vulnerabilities in Illustrator. The vulnerabilities allow a malicious party to execute arbitrary code execute arbitrary code under user privileges. Adobe has released updates to fix the vulnerabilities. More information can be found on the page below:...

7.8CVSS7.6AI score0.04715EPSS
Exploits0
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•6 views

Vulnerabilities fixed in Nagios XI

Vulnerabilities have been fixed in Nagios XI. The vulnerabilities allow a malicious person to perform attacks that lead to the following categories of damage: Cross-Site Request Forgery XSRF. Cross-Site Scripting XSS. Remote code execution User Rights SQL Injection Access to sensitive data Nagios...

9CVSS7.3AI score0.78632EPSS
Exploits11
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•5 views

Vulnerabilities fixed in Adobe After Effects

Adobe has fixed vulnerabilities in After Effects. The vulnerabilities allow a malicious party to execute arbitrary code execute arbitrary code under user privileges. Adobe has released updates to fix the vulnerabilities. More information can be found on the page below:...

9.3CVSS7.6AI score0.02971EPSS
Exploits0
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•6 views

Vulnerability fixed in Adobe InDesign

Adobe has fixed a vulnerability in InDesign. The vulnerability allows a malicious party to execute arbitrary code execute arbitrary code under user privileges. Adobe has released updates to fix the vulnerability. More information can be found on the page below:...

5.5CVSS7.5AI score0.01799EPSS
Exploits0
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•6 views

Vulnerability fixed in Adobe Creative Cloud

Adobe has fixed a vulnerability in Creative Cloud. The vulnerability allows a malicious party to execute arbitrary code execute arbitrary code under user privileges. Adobe has released updates to fix the vulnerability. More information can be found on the page below:...

7.8CVSS7.5AI score0.02951EPSS
Exploits0
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•7 views

Vulnerabilities fixed in Oracle E-Business Suite

Oracle has fixed vulnerabilities in the following Oracle E-Business Suite products: Applications Manager Marketing Application Object Library Trade Management Universal Work Queue Installed Base CRM Technical Foundation One-to-One Fulfillment Applications Framework E-Business Suite Secure...

10CVSS7.7AI score0.02797EPSS
Exploits0
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•3 views

Vulnerabilities fixed in Firefox

Vulnerabilities have been fixed in Firefox and Firefox ESR. The vulnerabilities allow a malicious party to carry out attacks execute attacks that lead to the following categories of damage: Denial-of-Service DoS. Possible Remote code execution User Rights Spoofing Access to system data Mozilla ha...

9.8CVSS7.3AI score0.02776EPSS
Exploits1
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•2 views

Vulnerability fixed in FreeType

A vulnerability has been fixed in FreeType. The vulnerability allows a remote malicious person to execute arbitrary code execute under the user's privileges. FreeType has released an update to fix the vulnerability. fix. More information can be found on the pages below:...

9.6CVSS7.1AI score0.5063EPSS
Exploits2
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•2 views

Vulnerabilities fixed in Google Chrome

Google has fixed several vulnerabilities in Chrome. The vulnerabilities potentially allow a remote malicious person to able to perform a denial-of-service attack or to execute arbitrary execute arbitrary code under the user's privileges. As usual, Google has made little substantive information...

9.6CVSS7.6AI score0.5063EPSS
Exploits5
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•11 views

Vulnerability fixed in Adobe Dreamweaver

Adobe has fixed a vulnerability in Dreamweaver. The vulnerability allows a malicious party to obtain elevated rights to obtain. Adobe has released updates to fix the vulnerability. More information can be found on the page below: https://helpx.adobe.com/security/products/dreamweaver/apsb20-55.htm...

7.8CVSS6.6AI score0.00668EPSS
Exploits0
NCSC
NCSC
•added 2020/10/21 12:0 a.m.•5 views

Vulnerabilities fixed in libvirt

Vulnerabilities have been fixed in libvirt. The vulnerabilities allow a local malicious person to obtain elevated privileges obtain or perform a denial-of-service attack. -= SUSE =- SUSE has made updates available to fix the vulnerability in SUSE 15. fix the vulnerability in SUSE 15. You can...

9.3CVSS6.7AI score0.00529EPSS
Exploits0
Total number of security vulnerabilities4197