Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bootstrap vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-47851
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Akhtarujjaman Shuvo Bootstrap Shortcodes Ultimate allows Stored XSS.This issue affects Bootstrap Shortcodes Ultimate: from n/a up to and including 4.3.1.
Addonmaster Bootstrap Shortcodes Ultimate
7.2
CVSSv2
CVE-2017-9450
The Amazon Web Services (AWS) CloudFormation bootstrap tools package (aka aws-cfn-bootstrap) prior to 1.4-19.10 allows local users to execute arbitrary code with root privileges by leveraging the ability to create files in an unspecified directory.
Amazon Amazon Web Services Cloudformation Bootstrap
4.3
CVSSv2
CVE-2018-20676
In Bootstrap prior to 3.4.0, XSS is possible in the tooltip data-viewport attribute.
Getbootstrap Bootstrap
4.3
CVSSv2
CVE-2018-20677
In Bootstrap prior to 3.4.0, XSS is possible in the affix configuration target property.
Getbootstrap Bootstrap
1 Github repository
NA
CVE-2023-28531
ssh-add in OpenSSH prior to 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9.
Openbsd Openssh
Netapp Solidfire Element Os -
Netapp Hci Bootstrap Os -
Netapp Brocade Fabric Operating System -
3 Github repositories
NA
CVE-2017-945013
aws-cfn-bootstrap versions prior to 1.4-22.14 suffer from a local code execution vulnerability.
4.3
CVSSv2
CVE-2015-1057
Cross-site scripting (XSS) vulnerability in usersettings.php in e107 2.0.0 allows remote malicious users to inject arbitrary web script or HTML via the "Real Name" value.
E107 E107 2.0.0
1 EDB exploit
NA
CVE-2022-36879
An issue exists in the Linux kernel up to and including 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.
Linux Linux Kernel
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp A700s Firmware -
Netapp Active Iq Unified Manager -
Netapp Hci Bootstrap Os -
Netapp E-series Santricity Os Controller
Netapp Aff 8300 Firmware -
Netapp Fas 8300 Firmware -
Netapp Aff 8700 Firmware -
Netapp Fas 8700 Firmware -
Netapp Aff A400 Firmware -
Netapp Fas A400 Firmware -
Netapp Aff A250 Firmware -
Netapp Fas A250 Firmware -
Netapp Fas 500f Firmware -
Netapp Aff 500f Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
5
CVSSv2
CVE-2015-8559
The knife bootstrap command in chef Infra client before version 15.4.45 leaks the validator.pem private RSA key to /var/log/messages.
Chef Chef
4.3
CVSSv2
CVE-2020-16166
The Linux kernel up to and including 5.7.11 allows remote malicious users to make observations that help to obtain sensitive information about the internal state of the network RNG, aka CID-f227e3ec3b5c. This is related to drivers/char/random.c and kernel/time/timer.c.
Linux Linux Kernel
Opensuse Leap 15.1
Opensuse Leap 15.2
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Debian Debian Linux 9.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Netapp Steelstore Cloud Integrated Storage -
Netapp Active Iq Unified Manager
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Cloud Volumes Ontap Mediator -
Netapp E-series Santricity Os Controller
Netapp Hci Bootstrap Os -
Netapp Storagegrid
Netapp H410c Firmware -
Oracle Sd-wan Edge 8.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »