|
223571
|
7.0 |
HIGH
Local
|
redhat
|
openshift_container_platform
|
An insecure modification vulnerability in the /etc/passwd file was found in the operator-framework/hive as shipped in Red Hat Openshift 4. An attacker with access to the container could use this flaw…
|
-
|
CVE-2019-19353
|
2024-11-21 13:34 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223572
|
7.0 |
HIGH
Local
|
redhat
|
openshift_container_platform
|
An insecure modification vulnerability in the /etc/passwd file was found in the operator-framework/presto as shipped in Red Hat Openshift 4. An attacker with access to the container could use this fl…
|
-
|
CVE-2019-19352
|
2024-11-21 13:34 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223573
|
7.8 |
HIGH
Local
|
redhat
|
openshift
|
An insecure modification vulnerability in the /etc/passwd file was found in the openshift/ansible-service-broker as shipped in Red Hat Openshift 4 and 3.11. An attacker with access to the container c…
|
-
|
CVE-2019-19350
|
2024-11-21 13:34 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223574
|
7.8 |
HIGH
Local
|
redhat
|
openshift
|
An insecure modification vulnerability in the /etc/passwd file was found in the container operator-framework/operator-metering as shipped in Red Hat Openshift 4. An attacker with access to the contai…
|
-
|
CVE-2019-19349
|
2024-11-21 13:34 |
2021-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223575
|
7.5 |
HIGH
Network
|
redhat
netapp
|
jboss-remoting
undertow
jboss_enterprise_application_platform
active_iq_unified_manager
|
A flaw was found in Undertow when using Remoting as shipped in Red Hat Jboss EAP before version 7.2.4. A memory leak in HttpOpenListener due to holding remote connections indefinitely may lead to den…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2019-19343
|
2024-11-21 13:34 |
2021-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223576
|
8.8 |
HIGH
Network
|
siemens
|
xhq
|
A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow a Cross-Site Request Forgery (CSRF) attack if an unsuspecting user is tricked into accessing a malicious…
|
-
|
CVE-2019-19289
|
2024-11-21 13:34 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223577
|
6.1 |
MEDIUM
Network
|
siemens
|
xhq
|
A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked into accessing a malicious link.
|
-
|
CVE-2019-19288
|
2024-11-21 13:34 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223578
|
6.5 |
MEDIUM
Network
|
siemens
|
xhq
|
A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow attackers to traverse through the file system of the server based by sending specially crafted packets o…
|
-
|
CVE-2019-19287
|
2024-11-21 13:34 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223579
|
7.2 |
HIGH
Network
|
siemens
|
xhq
|
A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow SQL injection attacks if an attacker is able to modify content of particular web pages.
|
-
|
CVE-2019-19286
|
2024-11-21 13:34 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223580
|
5.4 |
MEDIUM
Network
|
siemens
|
xhq
|
A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow injections that could lead to XSS attacks if unsuspecting users are tricked into accessing a malicious l…
|
CWE-79
Cross-site Scripting
|
CVE-2019-19285
|
2024-11-21 13:34 |
2020-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
