Lucene search
K

7657 matches found

Slackware Linux
Slackware Linux
added 2024/01/21 8:53 p.m.38 views

[slackware-security] tigervnc

New tigervnc packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: extra/tigervnc/tigervnc-1.12.0-i586-5slack15.0.txz: Rebuilt. Recompiled against xorg-server-1.20.14, including the latest patches for several securit...

9.8CVSS7.2AI score0.02106EPSS
Exploits0
Openbugbounty
Openbugbounty
added 2024/01/19 11:6 a.m.3 views

current-logic.com Cross Site Scripting vulnerability OBB-3838217

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/01/18 12:0 a.m.5 views

PT-2024-19413 · Unknown · Anything-Llm

Name of the Vulnerable Software and Affected Versions: AnythingLLM versions prior to commit 08d33cfd8 Description: AnythingLLM is an application that turns any document, resource, or piece of content into context that any LLM can use as references during chatting. In versions prior to commit...

7.5CVSS7.5AI score0.01045EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2024/01/17 12:0 a.m.21 views

Slackware: Security Advisory (SSA:2024-016-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.01614EPSS
Exploits2References4
Slackware Linux
Slackware Linux
added 2024/01/16 8:56 p.m.33 views

[slackware-security] xorg-server

New xorg-server packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/xorg-server-1.20.14-i586-11slack15.0.txz: Rebuilt. This update fixes security issues: Heap buffer overflow in DeviceFocusEvent an...

9.8CVSS7.6AI score0.02106EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2024/01/16 12:0 a.m.23 views

Trend Micro Apex Central Cross-Site Scripting Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Apex Central. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.1CVSS7.5AI score0.02454EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/01/16 12:0 a.m.22 views

Trend Micro Apex Central Cross-Site Scripting Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trend Micro Apex Central. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.1CVSS7.5AI score0.02454EPSS
Exploits0References1
Citrix
Citrix
added 2024/01/16 12:0 a.m.110 views

Citrix StoreFront Security Bulletin for CVE-2023-5914

A vulnerability has been discovered in Citrix StoreFront, which, if exploited, may result in a Cross-site scripting XSS attack. Affected Versions: The following supported versions of Citrix StoreFront are affected by the vulnerability: Current Release CR Citrix StoreFront before 2308.1 Citrix...

6.1CVSS6.2AI score0.73142EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/01/10 6:38 p.m.6 views

crypto-js: PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard

A vulnerability was found in crypto-js in how PBKDF2 is 1,000 times weaker than originally specified in 1993 and at least 1,300,000 times weaker than the current industry standard. This issue is because both default to SHA1, a cryptographic hash algorithm considered insecure since at least 2005,...

9.1CVSS7.1AI score0.00635EPSS
Exploits0References5
CNVD
CNVD
added 2024/01/10 12:0 a.m.31 views

Siemens JT2Go and Teamcenter Visualization Buffer Overflow Vulnerability (CNVD-2024-01390)

JT2Go is a JT file viewer.Teamcenter Visualization is a software that provides teamwork capabilities for designing 2D and 3D scenarios. A buffer overflow vulnerability exists in Siemens JT2Go and Teamcenter Visualization, which can be exploited by an attacker to execute code in the context of the...

7.8CVSS7.6AI score0.00264EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/01/10 12:0 a.m.3 views

Adobe Substance 3D Stager 缓冲区错误漏洞

Adobe Substance 3D Stager is a virtual 3D studio from the American company Audobee Adobe. A security vulnerability exists in Adobe Substance 3D Stager, which can be exploited by an attacker to bypass ASLR and execute arbitrary code in the current user's context...

5.5CVSS7.5AI score0.00289EPSS
Exploits0References3
CNVD
CNVD
added 2024/01/10 12:0 a.m.17 views

Siemens Solid Edge Uninitialized Pointer Access Vulnerability (CNVD-2024-01400)

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. An uninitialized pointer access vulnerability exists in Siemens Solid Edge, which can be exploited by an attacker to execute code in the...

7.8CVSS7.1AI score0.00201EPSS
Exploits0References1
CNVD
CNVD
added 2024/01/10 12:0 a.m.20 views

Siemens Solid Edge Out-of-Bounds Read Vulnerability (CNVD-2024-01406)

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. Siemens Solid Edge suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute code in the context ...

7.8CVSS7AI score0.00201EPSS
Exploits0References1
Prion
Prion
added 2024/01/09 10:15 a.m.15 views

Heap overflow

A vulnerability has been identified in Solid Edge SE2023 All versions V223.0 Update 10. The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process...

4.4CVSS7.8AI score0.00205EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/01/09 12:0 a.m.1 views

Siemens JT2GO和Teamcenter Visualization 安全漏洞

JT2Go is a JT file viewer.Teamcenter Visualization is a software that provides teamwork capabilities for designing 2D and 3D scenarios. A buffer overflow vulnerability exists in Siemens JT2Go and Teamcenter Visualization, which can be exploited by an attacker to execute code in the context of the...

7.8CVSS7.6AI score0.00264EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/01/09 12:0 a.m.4 views

Siemens Solid Edge 安全漏洞

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. A buffer overflow vulnerability exists in Samsung Solid Edge, which can be exploited by an attacker to execute code in the context of th...

7.8CVSS7.6AI score0.00205EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/01/09 12:0 a.m.4 views

Siemens Solid Edge 缓冲区错误漏洞

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. Siemens Solid Edge suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute code in the context...

7.8CVSS7.4AI score0.00201EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/01/09 12:0 a.m.5 views

Siemens Solid Edge 缓冲区错误漏洞

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. An uninitialized pointer access vulnerability exists in Siemens Solid Edge, which can be exploited by an attacker to execute code in the...

7.8CVSS7.2AI score0.00201EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/01/09 12:0 a.m.4 views

Siemens Solid Edge 安全漏洞

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. A buffer overflow vulnerability exists in Samsung Solid Edge, which can be exploited by an attacker to execute code in the context of th...

7.8CVSS7.6AI score0.00204EPSS
Exploits0References3
CVE
CVE
added 2024/01/08 12:19 p.m.46 views

CVE-2023-6552

Summary of CVE-2023-6552 (TasmoAdmin) : Affected product is TasmoAdmin; root cause is lack of validation of the current GET parameter during the language change action, causing an open redirect. Connected sources indicate Open Redirect in TasmoAdmin with versions prior to 3.3.0. Impact is an open...

6.1CVSS6.2AI score0.00484EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder