|
295461
|
- |
|
ibm
|
tivoli_application_dependency_discovery_manager
|
The SSL configuration in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.x before 7.2.1.4 supports the MD5 hash algorithm, which makes it easier for man-in-the-middle attackers to spo…
|
CWE-16
Configuration
|
CVE-2012-5770
|
2024-11-21 10:45 |
2013-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295462
|
- |
|
cisco
|
aironet_access_point_software
|
The HTTP Profiler on the Cisco Aironet Access Point with software 15.2 and earlier does not properly manage buffers, which allows remote attackers to cause a denial of service (device reload) via cra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6026
|
2024-11-21 10:45 |
2013-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295463
|
- |
|
katello
|
katello-configure
katello
|
modules/certs/manifests/config.pp in katello-configure before 1.3.3.pulpv2 in Katello uses weak permissions (666) for the Candlepin bootstrap RPM, which allows local users to modify the Candlepin CA …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-6116
|
2024-11-21 10:45 |
2013-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295464
|
- |
|
rack_project
|
rack
|
lib/rack/multipart.rb in Rack before 1.1.4, 1.2.x before 1.2.6, 1.3.x before 1.3.7, and 1.4.x before 1.4.2 uses an incorrect regular expression, which allows remote attackers to cause a denial of ser…
|
NVD-CWE-Other
|
CVE-2012-6109
|
2024-11-21 10:45 |
2013-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295465
|
- |
|
ibm
|
ts3500_tape_library_firmware
ts3500_tape_library
|
Unspecified vulnerability in the web interface on the IBM TS3500 Tape Library with firmware before C260 allows remote authenticated users to gain privileges via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2012-5767
|
2024-11-21 10:45 |
2013-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295466
|
- |
|
cloudbees
jenkins
|
jenkins
|
Cross-site scripting (XSS) vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6074
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295467
|
- |
|
cloudbees
jenkins
|
jenkins
|
Open redirect vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remot…
|
CWE-20
Improper Input Validation
|
CVE-2012-6073
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295468
|
- |
|
cloudbees
jenkins
|
jenkins
|
CRLF injection vulnerability in Jenkins before 1.491, Jenkins LTS before 1.480.1, and Jenkins Enterprise 1.424.x before 1.424.6.13, 1.447.x before 1.447.4.1, and 1.466.x before 1.466.10.1 allows remo…
|
CWE-20
Improper Input Validation
|
CVE-2012-6072
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295469
|
- |
|
redhat
|
openshift
openshift_origin
|
rhc-chk.rb in Red Hat OpenShift Origin before 1.1, when -d (debug mode) is used, outputs the password and other sensitive information in cleartext, which allows context-dependent attackers to obtain …
|
CWE-310
Cryptographic Issues
|
CVE-2012-5658
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295470
|
- |
|
roundcube
|
webmail
|
Cross-site scripting (XSS) vulnerability in Roundcube Webmail before 0.8.5 allows remote attackers to inject arbitrary web script or HTML via a (1) data:text or (2) vbscript link.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6121
|
2024-11-21 10:45 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
