[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250770

 
 

909

 
 

196157

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 16033 Download | Alert*

The host is installed with Apple Mac OS X 10.12.6, 10.13.6 or 10.15 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle a logic issue. Successful exploitation allows an attacker to unexpectedly accept AirDrop transfers while in Everyone mode.

The host is installed with Puppet 2.6.x before 2.6.15 or 2.7.x before 2.7.13 and is prone to denial of service vulnerability. A flaw is present in the applications, which fail to properly handle REST requests. Successful exploitation allows attackers with agent SSL keys to corrupt the memory or filesystem.

The host is installed with Puppet 2.6.x before 2.6.15 or 2.7.x before 2.7.13 and is prone to symlink attack. A flaw is present in the applications, which fail to properly handle REST requests for a file from a remote filebucket. Successful exploitation allows attackers with an authorized SSL key and certain permissions on the puppet master to read arbitrary files via a symlink attack in conjunctio ...

The host is installed with Puppet 2.6.x before 2.6.14 or 2.7.x before 2.7.11 and is prone to privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle k5login type. Successful exploitation allows attackers to gain privileges via a symlink attack on .k5login.

The host is installed with Puppet 2.6.x before 2.6.14 or 2.7.x before 2.7.11 and is prone to elevation of privilege vulnerability. A flaw is present in the application, which is caused by the improper dropping of group permissions when a process is forked. Successful exploitation allows attackers to execute arbitrary code on the system with root privileges.

The host is installed with Puppet 2.x before 2.6.18, 2.7.x before 2.7.21, 3.1.x before 3.1.1 and is prone to security bypass vulnerability. A flaw is present in the applications, which fail to handle the default configuration for puppet masters. Successful exploitation allows remote authenticated nodes to submit reports for other nodes via unspecified vectors.

The host is installed with Puppet 2.6.x before 2.6.18 and is prone to remote code-execution vulnerability. A flaw is present in the applications, which fail to handle a crafted request for a report. Successful exploitation allows remote authenticated users to execute arbitrary code on the puppet master, or an agent with puppet kick enabled.

The host is installed with Puppet 2.7.x before 2.7.21 or 3.1.x before 3.1.1 and is prone to SSL Protocol downgrade vulnerability. A flaw is present in the application, which fails to properly negotiate the SSL protocol between client and master. Successful exploitation allows remote attackers to conduct SSLv2 downgrade attacks against SSLv3 sessions via unspecified vectors.

The host is installed with Puppet before 2.6.18, 2.7.x before 2.7.21 or 3.1.x before 3.1.1 or and is prone to arbitrary code-execution vulnerability. A flaw is present in the application, which fails to handle a crafted HTTP request. Successful exploitation allows remote authenticated users to execute arbitrary code.

The host is installed with Puppet 2.6 before 2.6.18, 2.7.x before 2.7.21 or 3.1.x before 3.1.1 and is prone to security-bypass vulnerability. A flaw is present in the application, which fails to handle certain security restrictions. Successful exploitation allows remote authenticated users with a valid certificate and private key to read arbitrary catalogs or poison the master's cache via unspecif ...


Pages:      Start    1546    1547    1548    1549    1550    1551    1552    1553    1554    1555    1556    1557    1558    1559    ..   1603

© SecPod Technologies