CVE-2021-3450
- EPSS 0.57%
- Veröffentlicht 25.03.2021 15:15:13
- Zuletzt bearbeitet 21.11.2024 06:21:33
The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly ...
CVE-2021-20077
- EPSS 0.04%
- Veröffentlicht 19.03.2021 19:15:13
- Zuletzt bearbeitet 21.11.2024 05:45:53
Nessus Agent versions 7.2.0 through 8.2.2 were found to inadvertently capture the IAM role security token on the local host during initial linking of the Nessus Agent when installed on an Amazon EC2 instance. This could allow a privileged attacker to...
CVE-2020-5793
- EPSS 0.11%
- Veröffentlicht 05.11.2020 20:15:17
- Zuletzt bearbeitet 21.11.2024 05:34:36
A vulnerability in Nessus versions 8.9.0 through 8.12.0 for Windows & Nessus Agent 8.0.0 and 8.1.0 for Windows could allow an authenticated local attacker to copy user-supplied files to a specially constructed path in a specifically named user direct...
CVE-2019-16168
- EPSS 0.84%
- Veröffentlicht 09.09.2019 17:15:13
- Zuletzt bearbeitet 21.11.2024 04:30:11
In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."