Skip to main content
CVE-2013-6956 LOW Monitor

Cross-site scripting (XSS) vulnerability in the Secure Access Service Web rewriting feature in Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS before 7.1r17, 7.3 before 7.3r8, 7.4. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable. No vendor patch available.

Ivanti Juniper XSS Ive Os
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2013-6394 LOW PATCH Monitor

Percona XtraBackup before 2.1.6 uses a constant string for the initialization vector (IV), which makes it easier for local users to defeat cryptographic protection mechanisms and conduct plaintext. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity.

Information Disclosure Xtrabackup Opensuse
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2013-0348 LOW PATCH Monitor

thttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable permissions for /var/log/thttpd.log, which allows local users to obtain sensitive information by reading the file. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity.

Privilege Escalation Sthttpd Fedora Linux Opensuse +1
NVD
CVSS 2.0
2.1
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy