IBM Db2 denial of service | CVE-2023-27559
NAME__________IBM Db2 denial of servicePlatforms Affected:IBM DB2 for Linux UNIX and Windows 10.5 IBM DB2 for Linux UNIX and Windows...
Vulnerabilities
Ivanti Avalanche information disclosure | CVE-2023-28127
NAME__________Ivanti Avalanche information disclosurePlatforms Affected:Ivanti AvalancheRisk Level:6.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Ivanti Avalanche could allow a remote authenticated attacker to obtain sensitive information,...
Multiple Zyxel products cross-site scripting | CVE-2023-27990
NAME__________Multiple Zyxel products cross-site scriptingPlatforms Affected:Zyxel ATP ZLD 4.32 Zyxel ATP ZLD 5.35 Zyxel USG FLEX ZLD 4.50 Zyxel USG...
Git for Windows code execution | CVE-2023-29011
NAME__________Git for Windows code executionPlatforms Affected:Git Git for Windows 2.40.0Risk Level:7.5Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Git for Windows could allow a local authenticated...
VMware Workstation and Fusion code execution | CVE-2023-20872
NAME__________VMware Workstation and Fusion code executionPlatforms Affected:Risk Level:7.7Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________VMware Workstation and Fusion could allow a local attacker to execute...
Multiple Zyxel products directory traversal | CVE-2023-22914
NAME__________Multiple Zyxel products directory traversalPlatforms Affected:Zyxel USG FLEX ZLD 4.50 Zyxel USG FLEX ZLD 5.35 Zyxel VPN ZLD 4.30 Zyxel...
Multiple Zyxel products denial of service | CVE-2023-22917
NAME__________Multiple Zyxel products denial of servicePlatforms Affected:Zyxel USG FLEX ZLD 5.32 Zyxel ATP ZLD 5.35 Zyxel USG FLEX ZLD 5.00...
Git security bypass | CVE-2023-25652
NAME__________Git security bypassPlatforms Affected:git gitRisk Level:5.3Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Git could allow a remote attacker to bypass security restrictions. By feeding specially...
Multiple Zyxel products denial of service | CVE-2023-22915
NAME__________Multiple Zyxel products denial of servicePlatforms Affected:Zyxel USG FLEX ZLD 4.50 Zyxel USG FLEX ZLD 5.35 Zyxel USG FLEX 50(W)...
Apptainer privilege escalation | CVE-2023-30549
NAME__________Apptainer privilege escalationPlatforms Affected:Apptainer Apptainer 1.1.7Risk Level:7Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________Apptainer could allow a local authenticated attacker to gain elevated privileges on...
Mattermost Server information disclosure | CVE-2023-2281
NAME__________Mattermost Server information disclosurePlatforms Affected:Mattermost Mattermost Server 7.8.0Risk Level:3.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Mattermost Server could allow a remote authenticated attacker to obtain...
VMware Fusion privilege escalation | CVE-2023-20871
NAME__________VMware Fusion privilege escalationPlatforms Affected:Risk Level:7.3Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION__________VMware Fusion could allow a local authenticated attacker to gain elevated privileges on...
Rapid7 Insight Agent directory traversal | CVE-2023-2273
NAME__________Rapid7 Insight Agent directory traversalPlatforms Affected:Rapid7 Insight Agent 3.2.6Risk Level:5.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Rapid7 Insight Agent could allow a remote attacker to...
VMware Workstation and Fusion information disclosure | CVE-2023-20870
NAME__________VMware Workstation and Fusion information disclosurePlatforms Affected:Risk Level:7.1Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________VMware Workstation and Fusion could allow a local attacker to obtain...
Git for Windows code execution | CVE-2023-29012
NAME__________Git for Windows code executionPlatforms Affected:Git Git for Windows 2.40.0Risk Level:7.2Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Git for Windows could allow a local authenticated...
Service Location Protocol (SLP, RFC 2608) denial of service | CVE-2023-29552
NAME__________Service Location Protocol (SLP, RFC 2608) denial of servicePlatforms Affected:Risk Level:6.8Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Service Location Protocol (SLP, RFC 2608) is...
Cisco Prime Collaboration Deployment cross-site scripting | CVE-2023-20060
NAME__________Cisco Prime Collaboration Deployment cross-site scriptingPlatforms Affected:Cisco Prime Collaboration DeploymentRisk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Cisco Prime Collaboration Deployment is vulnerable to cross-site...
Git weak security | CVE-2023-29007
NAME__________Git weak securityPlatforms Affected:git gitRisk Level:7.3Exploitability:UnprovenConsequences:Other DESCRIPTION__________Git could provide weaker than expected security, caused by a configuration injection flaw. A...
Devolutions Remote Desktop Manager security bypass | CVE-2023-2282
NAME__________Devolutions Remote Desktop Manager security bypassPlatforms Affected:Devolutions Remote Desktop Manager 2023.1.22Risk Level:3.1Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Devolutions Remote Desktop Manager could allow a...
XenSource Xen shadow page denial of service | CVE-2022-42335
NAME__________XenSource Xen shadow page denial of servicePlatforms Affected:XenSource Xen 4.17Risk Level:6.2Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________XenSource Xen is vulnerable to a denial...
Git weak security | CVE-2023-25815
NAME__________Git weak securityPlatforms Affected:git gitRisk Level:7.3Exploitability:UnprovenConsequences:Other DESCRIPTION__________Git could provide weaker than expected security, caused by a flaw when Git is...
Matrix matrix-react-sdk HTML injection | CVE-2023-30609
NAME__________Matrix matrix-react-sdk HTML injectionPlatforms Affected:Matrix matrix-react-sdk 3.70.0Risk Level:5.4Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Matrix matrix-react-sdk is vulnerable to HTML injection. A remote authenticated attacker...
NVIDIA ConnectX-5 and ConnectX6-DX adapters denial of service | CVE-2023-0203
NAME__________NVIDIA ConnectX-5 and ConnectX6-DX adapters denial of servicePlatforms Affected:Risk Level:5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________NVIDIA ConnectX-5 and ConnectX6-DX adapters is vulnerable to...
Progress Flowmon OS cross-site scripting | CVE-2023-26100
NAME__________Progress Flowmon OS cross-site scriptingPlatforms Affected:Progress Flowmon OS 12.1.1Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Progress Flowmon OS is vulnerable to cross-site scripting, caused...
