Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
SecurityvulnsRecent
RecentMost viewed

47153 matches found

securityvulns
securityvulnsadded 2014/12/01 12:0 a.m.75 views

[ MDVSA-2014:216 ] php-ZendFramework

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:216 http://www.mandriva.com/en/support/security/ Package : php-ZendFramework Date : November 20, 2014 Affected: Business Server 1.0 Problem Description: A vulnerability has been found and corrected in...

5CVSS9.7AI score0.02495EPSS
Exploits0
securityvulns
securityvulnsadded 2014/12/01 12:0 a.m.50 views

CVE-2014-8877 - Code Injection in Wordpress CM Download Manager plugin

Vulnerability title: Code Injection in Wordpress CM Download Manager plugin CVE: CVE-2014-8877 Plugin: CM Download Manager plugin Vendor: CreativeMinds - https://www.cminds.com/ Product: https://wordpress.org/plugins/cm-download-manager/ Affected version: 2.0.0 and previous version Fixed version:...

10CVSS9.5AI score0.14804EPSS
Exploits6
securityvulns
securityvulnsadded 2014/12/01 12:0 a.m.58 views

Exploit for stealing backups on WP sites with WP-DB-Backup v2.2.4 plugin

!/bin/bash Larry W. Cashdollar, @larry0 Will brute force and search a Wordpress target site with WP-DB-Backup v2.2.4 plugin installed for any backups done on 20141031 assumes the wordpress database is wordpress and the table prefix is wp...

6.9AI score
Exploits0
securityvulns
securityvulnsadded 2014/12/01 12:0 a.m.138 views

[ESNC-2039348] Multiple Critical Security Vulnerabilities in SAP Governance, Risk and Compliance (SAP GRC)

ESNC-2039348 Multiple Critical Security Vulnerabilities in SAP Governance, Risk and Compliance SAP GRC Please refer to http://www.esnc.de for the original security advisory, updates and additional information. ------------------------------------------------------------------------ 1. Business...

9CVSS1AI score0.03641EPSS
Exploits0
securityvulns
securityvulnsadded 2014/12/01 12:0 a.m.74 views

WordPress <=4.0 Denial of Service Exploit (CVE-2014-9034)

author details: John M. [email protected] homepage details: SECURELI.com Description: CVE-2014-9034 was published recently, highlighting an issue that “allows remote attackers to cause a denial of service CPU consumption via a long password that is improperly handled during hashing” due to phpass...

5CVSS1.8AI score0.83162EPSS
Exploits7
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.36 views

icecast information disclosure

Server leaks scripts sources...

5CVSS0.6AI score0.02965EPSS
Exploits1References1Affected Software1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.45 views

[ MDVSA-2014:231 ] icecast

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:231 http://www.mandriva.com/en/support/security/ Package : icecast Date : November 27, 2014 Affected: Business Server 1.0 Problem Description: Updated icecast package fixes security vulnerability: Icecast di...

5CVSS6AI score0.02965EPSS
Exploits1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.41 views

libksba buffer overflow

Buffer overflow on S/MIME messages parsing...

5CVSS5.3AI score0.05167EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.66 views

[ MDVSA-2014:234 ] libksba

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:234 http://www.mandriva.com/en/support/security/ Package : libksba Date : November 28, 2014 Affected: Business Server 1.0 Problem Description: Updated libksba packages fix security vulnerability: By using...

5CVSS7.5AI score0.05167EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.30 views

GNU glibc code execution

wordexp function code execution...

4.6CVSS1.7AI score0.00578EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.41 views

dbus multiple security vulnerabilities

Memory corruptions, DoS...

4.4CVSS2AI score0.00594EPSS
Exploits1References2Affected Software1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.60 views

[USN-2425-1] DBus vulnerability

========================================================================== Ubuntu Security Notice USN-2425-1 November 27, 2014 dbus vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

2.1CVSS0.00594EPSS
Exploits1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.61 views

[USN-2422-1] Squid vulnerabilities

========================================================================== Ubuntu Security Notice USN-2422-1 November 25, 2014 squid3 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.4CVSS0.5AI score0.76064EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.70 views

[ MDVSA-2014:230 ] kernel

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:230 http://www.mandriva.com/en/support/security/ Package : kernel Date : November 27, 2014 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been found and corrected in the Linu...

7.8CVSS7.7AI score0.08579EPSS
Exploits8
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.65 views

Linux kernel multiple security vulnerabilities

Multiple KVM vulnerabilities, CIFS client DoS, remote DoS vulnerabilities, tracesyscalls privilege escalation and protection bypass...

7.8CVSS2.8AI score0.08579EPSS
Exploits8References3Affected Software1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.74 views

[USN-2426-1] FLAC vulnerabilities

========================================================================== Ubuntu Security Notice USN-2426-1 November 27, 2014 flac vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

7.5CVSS0.4AI score0.0986EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.72 views

[USN-2423-1] ClamAV vulnerabilities

========================================================================== Ubuntu Security Notice USN-2423-1 November 26, 2014 clamav vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

5CVSS0.4AI score0.04878EPSS
Exploits1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.50 views

ClamAV memory corruptions

Memory corruptions on JS and PE files parsing...

5CVSS3.4AI score0.04878EPSS
Exploits1References1Affected Software1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.36 views

flac memory corruptions

Buffer overflows on audio files parsing...

7.5CVSS5AI score0.0986EPSS
Exploits0References2Affected Software1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.57 views

[ MDVSA-2014:232 ] glibc

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:232 http://www.mandriva.com/en/support/security/ Package : glibc Date : November 27, 2014 Affected: Business Server 1.0 Problem Description: Updated glibc package fixes security vulnerability: The function...

4.6CVSS7.1AI score0.00578EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.60 views

squid security vulnerabilities

DoS and information disclosure in pinger service...

6.4CVSS2AI score0.76064EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.57 views

[ MDVSA-2014:226 ] imagemagick

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:226 http://www.mandriva.com/en/support/security/ Package : imagemagick Date : November 25, 2014 Affected: Business Server 1.0 Problem Description: Updated imagemagick packages fix security vulnerabilities:...

4.3CVSS6.1AI score0.02889EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.43 views

imagemagic DoS

Out-of-buffer reads...

4.3CVSS1.1AI score0.02889EPSS
Exploits0References1
securityvulns
securityvulnsadded 2014/11/30 12:0 a.m.63 views

[oCERT 2014-008] libFLAC multiple issues

Description: FLAC is an open source lossless audio codec supported by several software and music players. The libFLAC project, an open source library implementing reference encoders and decoders for native FLAC and Ogg FLAC audio content, suffers from multiple implementation issues. In particular...

7.5CVSS1.3AI score0.0986EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.58 views

[USN-2413-1] AppArmor vulnerability

========================================================================== Ubuntu Security Notice USN-2413-1 November 20, 2014 apparmor vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.4CVSS6.1AI score0.0157EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.57 views

[USN-2411-1] mountall vulnerability

========================================================================== Ubuntu Security Notice USN-2411-1 November 18, 2014 mountall vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

7.2CVSS0.2AI score0.00507EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.57 views

GnuTLS memory corruption

Memory corruption on ECC...

5CVSS2AI score0.03281EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.25 views

Asterisk multiple security vulnerabilities

Restrictions bypass, privilege escalation, DoS...

2.8AI score
Exploits0References7Affected Software1
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.70 views

[USN-2400-1] LibreOffice vulnerability

========================================================================== Ubuntu Security Notice USN-2400-1 November 10, 2014 libreoffice vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives...

4.3CVSS1AI score0.09864EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.47 views

libvirt information leakage

Information access via qemuDomainFormatXML...

5CVSS3.2AI score0.02791EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.49 views

Apple Mac OS X multiple security vulnerabilities

Information leakage, memory corruption...

6.8CVSS1.9AI score0.04583EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.89 views

[ MDVSA-2014:215 ] gnutls

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:215 http://www.mandriva.com/en/support/security/ Package : gnutls Date : November 19, 2014 Affected: Business Server 1.0 Problem Description: Updated gnutls package fix security vulnerability: An out-of-boun...

5CVSS5.9AI score0.03281EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.79 views

CVE-2014-8768 tcpdump denial of service in verbose mode using malformed Geonet payload

CVE-2014-8768 tcpdump denial of service in verbose mode using malformed Geonet payload 1. Background tcpdump is a powerful command-line packet analyzer. It allows the user to intercept and display TCP/IP and other packets being transmitted or received over a network to which the computer is...

5CVSS0.7AI score0.20385EPSS
Exploits5
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.58 views

[ MDVSA-2014:224 ] krb5

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:224 http://www.mandriva.com/en/support/security/ Package : krb5 Date : November 21, 2014 Affected: Business Server 1.0 Problem Description: Updated krb5 packages fix security vulnerability: The...

2.1CVSS5.8AI score0.02616EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.68 views

AST-2014-017: Permission escalation through ConfBridge actions/dialplan functions

Asterisk Project Security Advisory - AST-2014-017 Product Asterisk Summary Permission escalation through ConfBridge actions/dialplan functions Nature of Advisory Permission Escalation Susceptibility Remote Authenticated Sessions Severity Minor Exploits Known No Reported On November 4, 2014 Report...

0.8AI score
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.52 views

Ruby DoS

Resources exhaustion on XML parsing. Memory corruption in encodes...

5CVSS3.3AI score0.05555EPSS
Exploits2References1Affected Software1
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.32 views

mountall privilege escalation

umask is handled incorrectly...

7.2CVSS2.6AI score0.00507EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.36 views

MIT krb5 privilege escalation

Under some conditions, kadm5randkeyprincipal3 returns old keys...

2.1CVSS2.9AI score0.02616EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.29 views

AST-2014-013: PJSIP ACLs are not loaded on startup

Asterisk Project Security Advisory - AST-2014-013 Product Asterisk Summary PJSIP ACLs are not loaded on startup Nature of Advisory Unauthorized Access Susceptibility Remote unauthenticated sessions Severity Moderate Exploits Known No Reported On 28 October, 2014 Reported By Jonathan Rose Posted O...

7.4AI score
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.71 views

[USN-2404-1] libvirt vulnerabilities

========================================================================== Ubuntu Security Notice USN-2404-1 November 11, 2014 libvirt vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: ...

5CVSS0.4AI score0.02791EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.36 views

AST-2014-012: Mixed IP address families in access control lists may permit unwanted traffic.

Asterisk Project Security Advisory - AST-2014-012 Product Asterisk Summary Mixed IP address families in access control lists may permit unwanted traffic. Nature of Advisory Unauthorized Access Susceptibility Remote unauthenticated sessions Severity Moderate Exploits Known No Reported On 25 Octobe...

0.2AI score
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.25 views

AST-2014-018: AMI permission escalation through DB dialplan function

Asterisk Project Security Advisory - AST-2014-018 Product Asterisk Summary AMI permission escalation through DB dialplan function Nature of Advisory Permission Escalation Susceptibility Remote Authenticated Sessions Severity Minor Exploits Known No Reported On November 17, 2014 Reported By Gareth...

0.5AI score
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.36 views

AST-2014-014: High call load may result in hung channels in ConfBridge.

Asterisk Project Security Advisory - AST-2014-014 Product Asterisk Summary High call load may result in hung channels in ConfBridge. Nature of Advisory Denial of Service Susceptibility Remote Unauthenticated Sessions Severity Moderate Exploits Known No Reported On 19 October, 2014 Reported By Ben...

7.2AI score
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.35 views

AST-2014-015: Remote Crash Vulnerability in PJSIP channel driver

Asterisk Project Security Advisory - AST-2014-015 Product Asterisk Summary Remote Crash Vulnerability in PJSIP channel driver Nature of Advisory Denial of Service Susceptibility Remote Unauthenticated Sessions Severity Moderate Exploits Known No Reported On 30 October 2014 Reported By Yaron Nahum...

0.3AI score
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.72 views

Apple TV multiple security vulnerabilities

Memory corruptions, unsigned code execution, privilege escalation...

9.3CVSS3.5AI score0.03404EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.68 views

[ MDVSA-2014:223 ] wireshark

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:223 http://www.mandriva.com/en/support/security/ Package : wireshark Date : November 21, 2014 Affected: Business Server 1.0 Problem Description: Updated wireshark packages fix security vulnerabilities: SigCo...

5CVSS6.2AI score0.03792EPSS
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.52 views

LibreOffice use-after-free vulnereability

Ingress remote control protocol use-after-free, memory corruption in OLE preview...

7.5CVSS3.2AI score0.09864EPSS
Exploits0References1
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.29 views

AST-2014-016: Remote Crash Vulnerability in PJSIP channel driver

Asterisk Project Security Advisory - AST-2014-015 Product Asterisk Summary Remote Crash Vulnerability in PJSIP channel driver Nature of Advisory Denial of Service Susceptibility Remote Unauthenticated Sessions Severity Moderate Exploits Known No Reported On 30 October 2014 Reported By Yaron Nahum...

0.3AI score
Exploits0
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.48 views

AppArmor restrictions bypass

Restrictions bypass in apparmorparser...

6.4CVSS2.2AI score0.0157EPSS
Exploits0References1Affected Software1
securityvulns
securityvulnsadded 2014/11/24 12:0 a.m.86 views

[USN-2412-1] Ruby vulnerability

========================================================================== Ubuntu Security Notice USN-2412-1 November 20, 2014 ruby1.8, ruby1.9.1, ruby2.0, ruby2.1 vulnerability ========================================================================== A security issue affects these releases of...

5CVSS6.2AI score0.05555EPSS
Exploits1
Total number of security vulnerabilities47153