Search Results (1242 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2024-49505 2 Opensuse, Suse 2 Mirrorcache, Opensuse Tumbleweed 2024-11-14 6.1 Medium
A Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in openSUSE Tumbleweed MirrorCache allows the execution of arbitrary JS via reflected XSS in theĀ  REGEX and P parameters. This issue affects MirrorCache before 1.083.
CVE-2023-22649 2 Rancher, Suse 2 Rancher, Rancher 2024-10-30 8.4 High
A vulnerability has been identified which may lead to sensitive data being leaked into Rancher's audit logs. [Rancher Audit Logging](https://ranchermanager.docs.rancher.com/how-to-guides/advanced-user-guides/enable-api-audit-log) is an opt-in feature, only deployments that have it enabled and have [AUDIT_LEVEL](https://ranchermanager.docs.rancher.com/how-to-guides/advanced-user-guides/enable-api-audit-log#audit-log-levels) set to `1 or above` are impacted by this issue.