Securityvulns - Page 76 of Securityvulns Vulnerabilities List | Vulners.com

SecurityvulnsRecent

Recent Most viewed

47153 matches found

securityvulns•added 2014/01/08 12:0 a.m.•59 views

Command injection vulnerability in Ruby Gem sprout 0.7.246

Title: Command injection vulnerability in Ruby Gem sprout 0.7.246 Date: 11/14/2013 Download: http://rubygems.org/gems/sprout, http://projectsprouts.org/ Vulnerability: The unpackzip function contains the following code: sprout-0.7.246/lib/sprout/archiveunpacker.rb 60 zipdir =...

securityvulns•added 2014/01/08 12:0 a.m.•27 views

Feeder.co Chrome plugin crossite scripting

Crossite scripting via RSS...

Exploits0References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•28 views

HP SAN Network Advisor code execution

No description provided...

10CVSS1.4AI score0.17004EPSS

Exploits9References1

securityvulns•added 2014/01/08 12:0 a.m.•69 views

HP ProCurve Manager multiple security vulnerabilities

Crossite scripting, code execution...

10CVSS1.4AI score0.79003EPSS

Exploits21References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•31 views

clutter privilege escalation

Invalid handling of system resume...

2.1CVSS2.6AI score0.00533EPSS

Exploits1References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•28 views

EMC Replication Manager directory traversal

Directory traversal via user scripts...

7.2CVSS3.7AI score0.00455EPSS

Exploits1References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•34 views

HP Service Manager security vulnerabilities

Crossite scripting, code execution...

5.2CVSS1.7AI score0.02639EPSS

Exploits2References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•130 views

Spamina email firewall directory traversal

Directory traversal in multiple requests...

Exploits0References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•52 views

Bio Basespace SDK 0.1.7 Ruby Gem exposes API Key via command line

Title: Bio Basespace SDK 0.1.7 Ruby Gem exposes API Key via command line Date: 11/15/2013 Author: Larry W. Cashdollar, @larry0 Download: http://rubygems.org/gems/bio-basespace-sdk Description: "BaseSpace Ruby SDK is a Ruby based Software Development Kit to be used in the development of Apps and...

securityvulns•added 2014/01/08 12:0 a.m.•63 views

[SECURITY] [DSA 2831-1] puppet security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2831-1 [email protected] http://www.debian.org/security/ Luciano Bello December 31, 2013 http://www.debian.org/security/faq -...

2.1CVSS2.1AI score0.00428EPSS

securityvulns•added 2014/01/08 12:0 a.m.•57 views

SPAMINA EMAIL FIREWALL 3.3.1.1 - Directory Traversal -

Vulnerability in the web application of Spamina email firewall. Vulnerability Type: Directory Traversal - Original release date: October 3th, 2013 - Last revised: December 9th, 2013 - Discovered by: Sisco Barrera - A2SECURE Products and affected versions: SPAMINA EMAIL FIREWALL 3.3.1.1 maybe othe...

securityvulns•added 2014/01/08 12:0 a.m.•117 views

EMC Data Protection Advisor DPA Illuminator EJBInvokerServlet Remote Code Execution

EMC Data Protection Advisor DPA Illuminator EJBInvokerServlet Remote Code Execution tested against: Microsoft Windows Server 2008 r2 sp1 EMC Data Protection Advisor 5.8 sp5 vulnerability: the "DPA Illuminator" service DPAIlluminator.exe listening on public port 8090 tcp/http and 8453 tcp/https is...

securityvulns•added 2014/01/08 12:0 a.m.•62 views

[SECURITY] [DSA 2836-1] devscripts security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2836-1 [email protected] http://www.debian.org/security/ Raphael Geissert January 05, 2014 http://www.debian.org/security/faq -...

7.5CVSS1.2AI score0.04094EPSS

securityvulns•added 2014/01/08 12:0 a.m.•57 views

[security bulletin] HPSBHF02953 rev.1 - HP B-series SAN Network Advisor, Remote Code Execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04045640 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04045640 Version: 1 HPSBHF02953 rev....

10CVSS0.2AI score0.17004EPSS

securityvulns•added 2014/01/08 12:0 a.m.•74 views

[SECURITY] [DSA 2833-1] openssl security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2833-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 01, 2014 http://www.debian.org/security/faq -...

5.8CVSS0.9AI score0.21174EPSS

securityvulns•added 2014/01/08 12:0 a.m.•64 views

ESA-2013-092: EMC Replication Manager Unquoted File Path Enumeration Vulnerability

ESA-2013-092.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-092: EMC Replication Manager Unquoted File Path Enumeration Vulnerability EMC Identifier: ESA-2013-092 CVE Identifier: CVE-2013-6182 Severity Rating: CVSS v2 Base Score: 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C Affected products: EMC...

7.2CVSS0.2AI score0.00455EPSS

securityvulns•added 2014/01/08 12:0 a.m.•65 views

[security bulletin] HPSBGN02950 rev.1 - HP Autonomy Ultraseek, Cross-Site Scripting (XSS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04041082 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04041082 Version: 1 HPSBGN02950 rev....

3.5CVSS0.01826EPSS

securityvulns•added 2014/01/08 12:0 a.m.•35 views

QuickHeal AntiVirus buffer overflow

Buffer overflow on PE files parsing...

7.2CVSS4.8AI score0.01282EPSS

Exploits7References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•58 views

[USN-2078-1] libXfont vulnerability

========================================================================== Ubuntu Security Notice USN-2078-1 January 07, 2014 libxfont vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

9.3CVSS0.8AI score0.10254EPSS

securityvulns•added 2014/01/08 12:0 a.m.•50 views

ESA-2013-091: EMC Watch4net Information Disclosure Vulnerability

ESA-2013-091.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-091: EMC Watch4net Information Disclosure Vulnerability EMC Identifier: ESA-2013-091 CVE Identifier: CVE-2013-6181 Severity Rating: CVSS v2 Base Score: CVSS 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C Affected products: • EMC Watch4Net...

2.1CVSS0.4AI score0.00533EPSS

securityvulns•added 2014/01/08 12:0 a.m.•84 views

[USN-2075-1] Linux kernel vulnerabilities

========================================================================== Ubuntu Security Notice USN-2075-1 January 03, 2014 linux vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

7.1CVSS0.5AI score0.09408EPSS

securityvulns•added 2014/01/08 12:0 a.m.•56 views

SEC Consult SA-20131015-0 :: Multiple vulnerabilities in SpamTitan

SEC Consult Vulnerability Lab Security Advisory 20131015-0 ======================================================================= title: Multiple vulnerabilities in SpamTitan product: SpamTitan vulnerable version: =5.12, 5.13 is likely to be affected too fixed version: 6.00 impact: Critical...

securityvulns•added 2014/01/08 12:0 a.m.•30 views

EMC RSA Security Analytics vulnerabilities

Privilege escalation...

6.8CVSS4.5AI score0.01784EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•38 views

VMware vSphere multiple security vulnerabilities

DoS, privilege escalation...

7.1CVSS2.5AI score0.02023EPSS

Exploits0References1Affected Software3

securityvulns•added 2014/01/08 12:0 a.m.•176 views

ESA-2013-094: EMC Data Protection Advisor JBOSS Remote Code Execution Vulnerability

ESA-2013-094.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-094: EMC Data Protection Advisor JBOSS Remote Code Execution Vulnerability EMC Identifier: ESA-2013-094 CVE Identifier: CVE-2012-0874 Severity Rating: CVSS v2 Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C Affected products: • A...

6.8CVSS1.3AI score0.15561EPSS

securityvulns•added 2014/01/08 12:0 a.m.•67 views

Open-Xchange Security Advisory 2014-01-06

Open-Xchange Security Advisory 2014-01-06 Product: Open-Xchange AppSuite Vendor: Open-Xchange GmbH Internal reference: 30203 Bug ID Vulnerability type: CWE-80 Improper Neutralization of Script-Related HTML Tags in a Web Page Vulnerable version: 7.4.0 and earlier Vulnerable component: backend Fixe...

4.3CVSS0.1AI score0.01325EPSS

securityvulns•added 2014/01/08 12:0 a.m.•29 views

MobileIron crossite scripting

Crossite scripting in web interface...

Exploits0References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•39 views

Samba buffer overflow

Buffer overflow on DCE-RPC packet parsing...

8.3CVSS5.7AI score0.09017EPSS

Exploits0Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•47 views

Sonicwall GMS v7.x - Filter Bypass & Persistent Vulnerability (0Day)

Document Title: =============== Sonicwall GMS v7.x - Filter Bypass & Persistent Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1099 Bulletin: Dell SonicWALL GMS Service Bulletin for Cross-Site Scripting Vulnerability...

securityvulns•added 2014/01/08 12:0 a.m.•52 views

ESA-2013-072: EMC NetWorker Information Disclosure Vulnerability

ESA-2013-072.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-072: EMC NetWorker Information Disclosure Vulnerability EMC Identifier: ESA-2013-072 EMC Identifier: NW152441 CVE Identifier: CVE-2013-3285 Severity Rating: CVSS v2 Base Score: 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C Affected products...

3.5CVSS1AI score0.00998EPSS

securityvulns•added 2014/01/08 12:0 a.m.•26 views

EMC RSA Archer crossite scripting

Multiple XSS conditions...

4.3CVSS2.3AI score0.01351EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•31 views

EMC Watch4net information leakage

Devices passwords are stored in cleartext...

2.1CVSS2.5AI score0.00533EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•34 views

libXfont memory corruption

Memory corruption on BDF font parsing...

9.3CVSS3.7AI score0.10254EPSS

Exploits1References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•78 views

Feeder.co RSS Feeder 5.2 Chrome - Persistent Software Vulnerability

Document Title: =============== Feeder.co RSS Feeder 5.2 Chrome - Persistent Software Vulnerability Release Date: ============= 2013-10-26 Vulnerability Laboratory ID VL-ID: ==================================== 1119 Common Vulnerability Scoring System: ==================================== 3.8...

securityvulns•added 2014/01/08 12:0 a.m.•63 views

NEW VMSA-2013-0012 VMware vSphere updates address multiple vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ----------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2013-0012 Synopsis: VMware vSphere updates address multiple vulnerabilities Issue date: 2013-10-17 Updated on: 2013-10-17 initial...

7.1CVSS9.2AI score0.02023EPSS

securityvulns•added 2014/01/08 12:0 a.m.•77 views

[scip_Advisory 10847] MobileIron 4.5.4 Device Registration regpin Cross Site Scripting

MobileIron 4.5.4 Device Registration regpin Cross Site Scripting scip AG Vulnerability ID 10847 10/28/2013 http://www.scip.ch/en/?vuldb.10847 I. INTRODUCTION MobileIron is a commercial solution to provide secure access to mobile users in corporate environments. More information is available on th...

securityvulns•added 2014/01/08 12:0 a.m.•50 views

QuickHeal AntiVirus 7.0.0.1 - Stack Overflow Vulnerability

Document Title: =============== QuickHeal AntiVirus 7.0.0.1 - Stack Overflow Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1171 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6767 CVE-ID: ===== CVE-2013-6767 Release Date:...

7.2CVSS6.5AI score0.01282EPSS

securityvulns•added 2014/01/08 12:0 a.m.•46 views

ESA-2013-080: RSA Security Analytics Multiple Vulnerabilities

ESA-2013-080.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-080: RSA Security Analytics Multiple Vulnerabilities EMC Identifier: ESA-2013-080 CVE Identifier: CVE-2013-6180 Severity Rating: CVSS v2 Base Score: See below for individual scores Affected Products: RSA Security Analytics 10...

6.8CVSS0.2AI score0.01784EPSS

securityvulns•added 2014/01/08 12:0 a.m.•139 views

ESA-2013-089: EMC Connectrix Manager Converged Network Edition Remote Code Execution Vulnerabilities

ESA-2013-089.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-089: EMC Connectrix Manager Converged Network Edition Remote Code Execution Vulnerabilities EMC Identifier: ESA-2013-089 CVE Identifier: CVE-2013-6810 Severity Rating: CVSS v2 Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C...

10CVSS0.7AI score0.17004EPSS

securityvulns•added 2014/01/08 12:0 a.m.•53 views

[USN-2056-1] DjVuLibre vulnerability

========================================================================== Ubuntu Security Notice USN-2056-1 December 16, 2013 djvulibre vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: ...

9.3CVSS0.9AI score0.04642EPSS

securityvulns•added 2014/01/08 12:0 a.m.•26 views

djvulibre code execution

Memory corruption...

9.3CVSS2.7AI score0.04642EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/01/08 12:0 a.m.•51 views

EMC Data Protection Advisor / Connectrix Manager security vulnerabilities

Code execution...

6.8CVSS3.8AI score0.15561EPSS

Exploits1References3

securityvulns•added 2014/01/08 12:0 a.m.•142 views

[SECURITY] [DSA 2832-1] memcached security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2832-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso January 01, 2014 http://www.debian.org/security/faq -...

5CVSS2.1AI score0.22317EPSS

securityvulns•added 2014/01/08 12:0 a.m.•73 views

Command injection in Ruby Gem Webbynode 1.0.5.3

Title: Command injection in Ruby Gem Webbynode 1.0.5.3 Date: 11/11/2013 Author: Larry W. Cashdollar, @larry0 Download: http://rubygems.org/gems/webbynode Vulnerability Description: The following code located in: ./webbynode-1.0.5.3/lib/webbynode/notify.rb doesn't fully sanitize user supplied inpu...

securityvulns•added 2014/01/08 12:0 a.m.•198 views

[security bulletin] HPSBPV02918 rev.2 - HP ProCurve Manager (PCM), HP PCM+ and HP Identity Driven Manager (IDM), SQL Injection, Remote Code Execution, Session Reuse

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c03897409 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03897409 Version: 2 HPSBPV02918 rev....

10CVSS9.9AI score0.79003EPSS

securityvulns•added 2014/01/08 12:0 a.m.•63 views

[CVE-2013-6480] Libcloud doesn't send scrub_data query parameter when destroying a DigitalOcean node

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 CVE-2013-6480 Libcloud doesn't send scrubdata query parameter when destroying a DigitalOcean node Severity: Low Vendor: Apache Software Foundation Project: Apache Libcloud http://libcloud.apache.org/ Affected Versions: Apache Libcloud 0.12.3 to 0.13...

2.1CVSS0.3AI score0.0206EPSS

securityvulns•added 2014/01/08 12:0 a.m.•69 views

[security bulletin] HPSBMU02959 rev.1 - HP Service Manager WebTier and Windows Client, Cross-Site Scripting (XSS), Execution of Arbitrary Code and other Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04052075 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04052075 Version: 1 HPSBMU02959 rev....

5.2CVSS1.2AI score0.02639EPSS

securityvulns•added 2014/01/08 12:0 a.m.•38 views

[ MDVSA-2013:255 ] clutter

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:255 http://www.mandriva.com/en/support/security/ Package : clutter Date : October 18, 2013 Affected: Business Server 1.0 Problem Description: Updated clutter packages fix security vulnerability: A security...

2.1CVSS6.1AI score0.00533EPSS

securityvulns•added 2013/12/30 12:0 a.m.•50 views

Phone Drive Eightythree 4.1.1 iOS - Multiple Vulnerabilities

Document Title: =============== Phone Drive Eightythree 4.1.1 iOS - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1168 Release Date: ============= 2013-12-11 Vulnerability Laboratory ID VL-ID: ==================================...

securityvulns•added 2013/12/30 12:0 a.m.•30 views

libtar integer overflows

Few integer overflows...

6.8CVSS3.6AI score0.05485EPSS

Exploits1References1Affected Software1

Total number of security vulnerabilities47153