Lucene search
+L

149 matches found

OSV
OSV
added 2026/04/09 12:27 p.m.4 views

OPENSUSE-SU-2026:20489-1 Security update for pgvector

This update for pgvector fixes the following issue: Update to pgvector 0.8.2: - CVE-2026-3172: Buffer overflow in parallel HNSW index build bsc1258945. Changelog: Fixed Index Searches in EXPLAIN output for Postgres 18...

8.1CVSS5.8AI score0.00263EPSS
Exploits0References2
OSV
OSV
added 2026/04/09 12:14 p.m.3 views

SUSE-SU-2026:21153-1 Security update for pgvector

This update for pgvector fixes the following issue: Update to pgvector 0.8.2: - CVE-2026-3172: Buffer overflow in parallel HNSW index build bsc1258945. Changelog: Fixed Index Searches in EXPLAIN output for Postgres 18...

8.1CVSS5.8AI score0.00263EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2026/03/30 12:0 a.m.26 views

openSUSE Security Advisory (SUSE-SU-2026:1068-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS5.9AI score0.00263EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/03/26 10:39 a.m.3 views

Security update for pgvector

This update for pgvector fixes the following issue: Update to pgvector 0.8.2: CVE-2026-3172: Buffer overflow in parallel HNSW index build bsc1258945. Changelog: Fixed Index Searches in EXPLAIN output for Postgres 18 Patch Instructions: To install this SUSE update use the SUSE recommended...

8.1CVSS5.8AI score0.00263EPSS
Exploits0References4
OSV
OSV
added 2026/03/26 10:39 a.m.4 views

SUSE-SU-2026:1068-1 Security update for pgvector

This update for pgvector fixes the following issue: Update to pgvector 0.8.2: - CVE-2026-3172: Buffer overflow in parallel HNSW index build bsc1258945. Changelog: Fixed Index Searches in EXPLAIN output for Postgres 18...

8.1CVSS5.9AI score0.00263EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 3 : mysql-5.0.95-3.0.1.AXS3 (AXSA:2013-78:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-78:01 advisory. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon mysqld and many different clie...

2.1CVSS7AI score0.00398EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: python-django (UTSA-2026-000158)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000158 advisory. A SQL injection issue was discovered in QuerySet.explain in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. This occurs by passing a crafted...

9.8CVSS7.7AI score0.02919EPSS
Exploits0References4
Spring Security Advisories
Spring Security Advisories
added 2025/12/04 12:0 a.m.10 views

Towards Spring Tools 5 - Ready for AI

There is no doubt that AI-based coding assistants are already or will be widely used by developers and within organizations. While the overall outlook is pretty certain, the exact way when and how to use those tools might vary, ranging from extensions for existing IDEs e.g. Copilot for Visual...

7.4AI score
Exploits0
OSV
OSV
added 2025/11/13 12:9 a.m.6 views

GHSA-7CX5-254X-CGRQ Parse Server allows public `explain` queries which may expose sensitive database performance information and schema details

Impact The MongoDB explain method provides detailed information about query execution plans, including index usage, collection scanning behavior, and performance metrics. Parse Server permits any client to execute explain queries without requiring the master key. This exposes: - Database schema...

6.9CVSS6.6AI score0.00407EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2025/11/13 12:9 a.m.10 views

Parse Server allows public `explain` queries which may expose sensitive database performance information and schema details

Impact The MongoDB explain method provides detailed information about query execution plans, including index usage, collection scanning behavior, and performance metrics. Parse Server permits any client to execute explain queries without requiring the master key. This exposes: - Database schema...

6.9CVSS6.7AI score0.00407EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2025/11/13 12:9 a.m.8 views

EUVD-2025-50823

Parse Server allows public explain queries which may expose sensitive database performance information and schema details...

6.9CVSS5.8AI score0.00407EPSS
Exploits0References4
OSV
OSV
added 2025/11/12 11:45 a.m.4 views

BIT-PARSE-2025-64502 Parse Server allows public `explain` queries which may expose sensitive database performance information and schema details

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. The MongoDB explain method provides detailed information about query execution plans, including index usage, collection scanning behavior, and performance metrics. Prior to version 8.5.0, Parse...

6.9CVSS6.6AI score0.00407EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/11/11 10:44 p.m.6 views

CVE-2025-64502

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. The MongoDB explain method provides detailed information about query execution plans, including index usage, collection scanning behavior, and performance metrics. Prior to version 8.5.0-alpha....

6.9CVSS6.7AI score0.00407EPSS
Exploits0References1
Snyk
Snyk
added 2025/11/10 10:41 p.m.5 views

Insertion of Sensitive Information Into Sent Data

Overview parse-server is a version of the Parse backend that can be deployed to any infrastructure that can run Node.js. Affected versions of this package are vulnerable to Insertion of Sensitive Information Into Sent Data via the Parse.Query.explain function which provides detailed information...

6.9CVSS6.4AI score0.00407EPSS
Exploits0References2
NVD
NVD
added 2025/11/10 10:15 p.m.6 views

CVE-2025-64502

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. The MongoDB explain method provides detailed information about query execution plans, including index usage, collection scanning behavior, and performance metrics. Prior to version 8.5.0-alpha....

6.9CVSS0.00407EPSS
Exploits0References3
CVE
CVE
added 2025/11/10 9:40 p.m.13 views

CVE-2025-64502

Parse Server vulnerability CVE-2025-64502 arises from public explain() queries being allowed before the 8.5.0-alpha.5 release. The MongoDB Explain() output can reveal database schema, field names, index configurations, query optimization details, and execution statistics, which could aid targeted...

6.9CVSS6.5AI score0.00407EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/10 9:40 p.m.12 views

CVE-2025-64502 Parse Server allows public `explain` queries which may expose sensitive database performance information and schema details

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. The MongoDB explain method provides detailed information about query execution plans, including index usage, collection scanning behavior, and performance metrics. Prior to version 8.5.0-alpha....

6.9CVSS0.00407EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/10 9:40 p.m.3 views

CVE-2025-64502 Parse Server allows public `explain` queries which may expose sensitive database performance information and schema details

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. The MongoDB explain method provides detailed information about query execution plans, including index usage, collection scanning behavior, and performance metrics. Prior to version 8.5.0-alpha....

6.9CVSS6.3AI score0.00407EPSS
Exploits0References3
OSV
OSV
added 2025/11/10 9:40 p.m.8 views

CVE-2025-64502 Parse Server allows public `explain` queries which may expose sensitive database performance information and schema details

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. The MongoDB explain method provides detailed information about query execution plans, including index usage, collection scanning behavior, and performance metrics. Prior to version 8.5.0-alpha....

6.9CVSS6.6AI score0.00407EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/11/10 12:0 a.m.9 views

Parse Server 安全漏洞

Parse Server is an open source backend for Parse Platform Open Source that can be deployed to any infrastructure that can run Node.js. A security vulnerability exists in Parse Server versions prior to 8.5.0-alpha.5, which stems from allowing any client to execute an explain query without a master...

6.9CVSS6.4AI score0.00407EPSS
Exploits0References4
Rows per page
Query Builder