News aggregator

CVE-2016-8608

National Vulnerability Database - Wed, 08/01/2018 - 10:29
JBoss BRMS 6 and BPM Suite 6 are vulnerable to a stored XSS via business process editor. The flaw is due to an incomplete fix for CVE-2016-5398. Remote, authenticated attackers that have privileges to create business processes can store scripts in them, which are not properly sanitized before showing to other users, including admins.
Categories: Security News

CVE-2016-8641

National Vulnerability Database - Wed, 08/01/2018 - 10:29
A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when creating necessary files and insecurely changing the ownership afterwards. It's possible for the local attacker to create symbolic links before the files are to be created and possibly escalating the privileges with the ownership change.
Categories: Security News

CVE-2016-8648

National Vulnerability Database - Wed, 08/01/2018 - 10:29
It was found that the Karaf container used by Red Hat JBoss Fuse 6.x, and Red Hat JBoss A-MQ 6.x, deserializes objects passed to MBeans via JMX operations. An attacker could use this flaw to execute remote code on the server as the user running the Java Virtual Machine if the target MBean contain deserialization gadgets in its classpath.
Categories: Security News

CVE-2016-8653

National Vulnerability Database - Wed, 08/01/2018 - 10:29
It was found that the JMX endpoint of Red Hat JBoss Fuse 6, and Red Hat A-MQ 6 deserializes the credentials passed to it. An attacker could use this flaw to launch a denial of service attack.
Categories: Security News

CVE-2016-9581

National Vulnerability Database - Wed, 08/01/2018 - 10:29
An infinite loop vulnerability in tiftoimage that results in heap buffer overflow in convert_32s_C1P1 was found in openjpeg 2.1.2.
Categories: Security News

CVE-2018-10916

National Vulnerability Database - Wed, 08/01/2018 - 10:29
It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used. A remote attacker may trick a user to use reverse mirroring on an attacker controlled FTP server, resulting in the removal of all files in the current working directory of the victim's system.
Categories: Security News

CVE-2018-1999039

National Vulnerability Database - Wed, 08/01/2018 - 09:29
A server-side request forgery vulnerability exists in Jenkins Confluence Publisher Plugin 2.0.1 and earlier in ConfluenceSite.java that allows attackers to have Jenkins submit login requests to an attacker-specified Confluence server URL with attacker specified credentials.
Categories: Security News

CVE-2018-1999040

National Vulnerability Database - Wed, 08/01/2018 - 09:29
An exposure of sensitive information vulnerability exists in Jenkins Kubernetes Plugin 1.10.1 and earlier in KubernetesCloud.java that allows attackers to capture credentials with a known credentials ID stored in Jenkins.
Categories: Security News

CVE-2018-1999041

National Vulnerability Database - Wed, 08/01/2018 - 09:29
An exposure of sensitive information vulnerability exists in Jenkins Tinfoil Security Plugin 1.6.1 and earlier in TinfoilScanRecorder.java that allows attackers with file system access to the Jenkins master to obtain the API secret key stored in this plugin's configuration.
Categories: Security News

CVE-2016-8635

National Vulnerability Database - Wed, 08/01/2018 - 09:29
It was found that Diffie Hellman Client key exchange handling in NSS 3.21.x was vulnerable to small subgroup confinement attack. An attacker could use this flaw to recover private keys by confining the client DH key to small subgroup of the desired group.
Categories: Security News

CVE-2016-8637

National Vulnerability Database - Wed, 08/01/2018 - 09:29
A local information disclosure issue was found in dracut before 045 when generating initramfs images with world-readable permissions when 'early cpio' is used, such as when including microcode updates. Local attacker can use this to obtain sensitive information from these files, such as encryption keys or credentials.
Categories: Security News

CVE-2016-8639

National Vulnerability Database - Wed, 08/01/2018 - 09:29
It was found that foreman before 1.13.0 is vulnerable to a stored XSS via an organization or location name. This could allow an attacker with privileges to set the organization or location name to display arbitrary HTML including scripting code within the web interface.
Categories: Security News

CVE-2018-1999025

National Vulnerability Database - Wed, 08/01/2018 - 09:29
A man in the middle vulnerability exists in Jenkins TraceTronic ECU-TEST Plugin 2.3 and earlier in ATXPublisher.java, ATXValidator.java that allows attackers to impersonate any service that Jenkins connects to.
Categories: Security News

CVE-2018-1999026

National Vulnerability Database - Wed, 08/01/2018 - 09:29
A server-side request forgery vulnerability exists in Jenkins TraceTronic ECU-TEST Plugin 2.3 and earlier in ATXPublisher.java that allows attackers to have Jenkins send HTTP requests to an attacker-specified host.
Categories: Security News

CVE-2018-1999027

National Vulnerability Database - Wed, 08/01/2018 - 09:29
An exposure of sensitive information vulnerability exists in Jenkins SaltStack Plugin 3.1.6 and earlier in SaltAPIBuilder.java, SaltAPIStep.java that allows attackers to capture credentials with a known credentials ID stored in Jenkins.
Categories: Security News

CVE-2018-1999028

National Vulnerability Database - Wed, 08/01/2018 - 09:29
An exposure of sensitive information vulnerability exists in Jenkins Accurev Plugin 0.7.16 and earlier in AccurevSCM.java that allows attackers to capture credentials with a known credentials ID stored in Jenkins.
Categories: Security News

CVE-2018-1999029

National Vulnerability Database - Wed, 08/01/2018 - 09:29
A cross-site scripting vulnerability exists in Jenkins Shelve Project Plugin 1.5 and earlier in ShelveProjectAction/index.jelly, ShelvedProjectsAction/index.jelly that allows attackers with Job/Configure permission to define JavaScript that would be executed in another user's browser when that other user performs some UI actions.
Categories: Security News

CVE-2018-1999030

National Vulnerability Database - Wed, 08/01/2018 - 09:29
An exposure of sensitive information vulnerability exists in Jenkins Maven Artifact ChoiceListProvider (Nexus) Plugin 1.3.1 and earlier in ArtifactoryChoiceListProvider.java, NexusChoiceListProvider.java, Nexus3ChoiceListProvider.java that allows attackers to capture credentials with a known credentials ID stored in Jenkins.
Categories: Security News

CVE-2018-1999031

National Vulnerability Database - Wed, 08/01/2018 - 09:29
An exposure of sensitive information vulnerability exists in Jenkins meliora-testlab Plugin 1.14 and earlier in TestlabNotifier.java that allows attackers with file system access to the Jenkins master to obtain the API key stored in this plugin's configuration.
Categories: Security News

CVE-2018-1999032

National Vulnerability Database - Wed, 08/01/2018 - 09:29
A data modification vulnerability exists in Jenkins Agiletestware Pangolin Connector for TestRail Plugin 2.1 and earlier in GlobalConfig.java that allows attackers with Overall/Read permission to override this plugin's configuration by sending crafted HTTP requests to an unprotected endpoint.
Categories: Security News

Pages