23 matches found
CVE-2014-0230
CVE-2014-0230 affects Apache Tomcat: 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9. The issue occurs when an HTTP response is sent before the server finishes reading the entire request body, enabling remote attackers to trigger a denial-of-service via a series of aborted upload attem...
CVE-2021-20191
CVE-2021-20191 affects Ansible and its modules by disclosing credentials (secrets) in console logs when no_log is not applied; the issue is tied to the ansible nxos module in the Cisco context and is reflected in multiple advisories. Affected versions are prior to 2.9.18 (e.g., Ansible 2.9.x line...
CVE-2011-3571
Technical details for CVE-2011-3571 are not provided in the supplied documents. The entry notes confusion with a reassigned CVE (CVE-2012-0507). Monitor for updates from the referenced advisories; no product/version/vulnerability specifics are disclosed here.
CVE-2020-10775
CVE-2020-10775 is an open redirect vulnerability in ovirt-engine up to version 4.4. It allows remote attackers to redirect users to arbitrary sites and enable phishing attacks; the malicious URL’s critical portion can become hidden, impacting confidentiality. Multiple connected sources confirm th...
CVE-2013-0420
CVE-2013-0420 concerns Oracle VM VirtualBox 4.0–4.2. The NVD description states an unspecified, local vulnerability in the VirtualBox core could impact integrity and availability via unknown vectors. Connected sources reference a potential root cause tied to an incorrect comparison in the vga_dra...
CVE-2012-0105
CVE-2012-0105 concerns Oracle VM VirtualBox 4.1.x with multiple unspecified local vulnerabilities tied to Windows Guest Additions. The OpenVAS/OpenBSD-like disclosures describe local issues that could affect confidentiality, integrity, and availability, typically via unknown vectors and involving...
CVE-2012-3221
CVE-2012-3221 affects Oracle VirtualBox (Oracle VM VirtualBox component) for versions 3.2, 4.0, and 4.1. The root cause is described as incorrect interrupt handling in VirtualBox core, enabling a local attacker to cause a denial of service. Public details in connected sources include Debian DSA a...
CVE-2014-2474
CVE-2014-2474 affects Oracle Secure Global Desktop (Oracle Virtualization) versions 5.0–5.1. The issue is an unspecified vulnerability in the SGD Proxy Server (ttaauxserv) that enables remote attackers to affect availability via network-access vectors. The connected documents do not provide concr...
CVE-2014-2472
Oracle Secure Global Desktop (SGD) in Oracle Virtualization 5.0–5.1 is affected by multiple DoS vulnerabilities, including CVE-2014-2472, per a Nessus plugin (ORACLE_SECURE_GLOBAL_DESKTOP_OCT_2014_CPU). The issue concerns SGD Proxy Server (ttaauxserv) and SGD SSL Daemon (ttassl); vulnerable versi...
CVE-2014-2473
Oracle Secure Global Desktop (SGD) 5.0/5.1 is affected by a DoS vulnerability cataloged as CVE-2014-2473. The issue impacts SGD components SGD Proxy Server (ttaauxserv) and SGD SSL Daemon (ttassl) and is described as affecting availability via network vectors. Connected sources identify affected ...
CVE-2012-0111
CVE-2012-0111 affects Oracle VM VirtualBox (VirtualBox) 4.1.x with Shared Folders and allows a local attacker to impact confidentiality and integrity. The OpenVAS/Nessus entries describe multiple unspecified local vulnerabilities in VirtualBox up to version 4.1.8, with advisories warning that old...
CVE-2014-2475
CVE-2014-2475 affects Oracle Secure Global Desktop (SGD) in Oracle Virtualization 4.63, 4.71, 5.0 and 5.1. The vulnerability is described as unspecified, enabling remote attackers to affect availability via vectors related to the SGD Proxy Server (ttaauxserv). Public sources (NVD, Nessus plugin f...
CVE-2013-3779
Oracle Secure Global Desktop (Secure Global Desktop component) in Oracle Virtualization, all 4.6 releases (including 4.63) and 4.7 prior to 4.71, has an unspecified remote vulnerability via Web UI that can affect confidentiality, integrity, and availability. The NVD score is CVSSv2 7.5 (HIGH). No...
CVE-2015-2581
CVE-2015-2581 is a vulnerability in the Oracle Secure Global Desktop (SGD) component of Oracle Virtualization, specifically affecting SGD versions 5.1 and 5.2. The connected CNVD entry indicates the issue lies in the JServer subcomponent and can be exploited by a remote attacker to read data and ...
CVE-2013-3834
CVE-2013-3834 concerns Oracle Secure Global Desktop (Oracle Virtualization 5). The vulnerability affects the ttaauxserv binary in the Oracle Secure Global Desktop component and is described as an unspecified remote vulnerability that can affect availability via unknown vectors, enabling a remote ...
CVE-2014-6459
CVE-2014-6459 describes an unspecified vulnerability in the Oracle Secure Global Desktop component of Oracle Virtualization 5.0/5.1 that allows remote attackers to affect availability via the SGD Proxy Server (ttaauxserv). Connected sources confirm the affected product is Oracle SGD within Oracle...
CVE-2014-2463
Technical details (affected product, component, version, root cause, impact or patch) for CVE-2014-2463 are not publicly provided in the supplied documents. Monitor for updates.
CVE-2014-2476
Oracle Secure Global Desktop (OSGD) in Oracle Virtualization 5.0/5.1 is affected by DoS vulnerabilities per the October 2014 CPU; CVE-2014-2476 is one of several issues. The Nessus entry indicates DoS in SGD Proxy Server (ttaauxserv) and SGD SSL Daemon (ttassl) across versions 4.63, 4.71, 5.0, an...
CVE-2014-2439
CVE-2014-2439 affects Oracle Secure Global Desktop (SGD) in Oracle Virtualization 5.0/5.1, with a vulnerability in the Workspace Web Application that could impact confidentiality and integrity via unknown vectors. The linked sources (NVD/NVD-related entries, Nessus plugin notes) confirm the issue...
CVE-2014-4232
CVE-2014-4232 concerns an unspecified vulnerability in Oracle Secure Global Desktop (SGD) within Oracle Virtualization versions 4.63, 4.71, 5.0, and 5.1. The flaw affects SGD’s Workspace Web Application and allows remote attackers to impact integrity via unknown vectors; this is described as a se...
CVE-2012-1685
CVE-2012-1685 affects the Secure Global Desktop component in Oracle Virtualization 4.6. The vulnerability is described as an unspecified issue that could allow remote attackers to impact integrity via unknown vectors related to Core. The exact vulnerable file/feature, root cause, and affected ver...
CVE-2013-3782
CVE-2013-3782 concerns the Secure Global Desktop component in Oracle Virtualization, affected in 4.6 before 4.63 and 4.7 before 4.71. The vulnerability allows remote attackers to affect integrity via unknown vectors related to the Web UI; root cause and exact exploit details are not specified in ...
CVE-2011-3538
Technical details about CVE-2011-3538 are not publicly available in the provided documents; the entries reference Sun Ray in Oracle Virtualization 4.0 and a note about CVE-2011-2323, but no explicit vulnerability specifics are given.