Lucene search
K

21212 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/04/25 9:44 a.m.63 views

Security Bulletin: Multiple Vulnerabilities in IBM webMethods Integration

Summary Multiple vulnerabilities were addressed in the latest fix release for IBM webMethods Integration 11.1 Vulnerability Details CVEID:CVE-2024-34397 DESCRIPTION: GNOME GLib could allow a remote attacker to conduct spoofing attacks, caused by a flaw when a GDBus-based client subscribes to...

9.1CVSS9.2AI score0.54026EPSS
Exploits5Affected Software1
The Hacker News
The Hacker News
added 2025/04/25 8:57 a.m.14 views

Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers

Cybersecurity researchers have disclosed three security flaws in the Rack Ruby web server interface that, if successfully exploited, could enable attackers to gain unauthorized access to files, inject malicious data, and tamper with logs under certain conditions. The vulnerabilities, flagged by...

6.9CVSS7.4AI score0.01095EPSS
Exploits2
SUSE CVE
SUSE CVE
added 2025/04/24 3:23 a.m.1 views

SUSE CVE-2025-46394

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

6.3CVSS7AI score0.00149EPSS
Exploits0References9
Packet Storm News
Packet Storm News
added 2025/04/24 12:0 a.m.3 views

Crypto-NcRNA: Non-Coding RNA (NcRNA) Based Encryption Algorithm

In the looming post-quantum era, traditional cryptographic systems are increasingly vulnerable to quantum computing attacks that can compromise their mathematical foundations. To address this critical challenge, we propose crypto-ncRNA-a bio-convergent cryptographic framework that leverages the...

6.7AI score
Exploits0
NVD
NVD
added 2025/04/23 4:15 p.m.11 views

CVE-2025-46394

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.3CVSS0.00149EPSS
Exploits0References6
OSV
OSV
added 2025/04/23 4:15 p.m.6 views

AZL-61191 CVE-2025-46394 affecting package busybox 1.35.0-18

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.3CVSS7.1AI score0.00149EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/04/23 4:15 p.m.6 views

CVE-2025-46394

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.3CVSS7.1AI score0.00149EPSS
Exploits0References4
OSV
OSV
added 2025/04/23 4:15 p.m.5 views

CVE-2025-46394

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.3CVSS6.8AI score
Exploits0References5
OSV
OSV
added 2025/04/23 4:15 p.m.6 views

AZL-60936 CVE-2025-46394 affecting package busybox 1.36.1-22

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.3CVSS7.2AI score0.00149EPSS
Exploits0References1
OSV
OSV
added 2025/04/23 4:15 p.m.1 views

ALPINE-CVE-2025-46394

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.3CVSS6.8AI score0.00149EPSS
Exploits0References1
OSV
OSV
added 2025/04/23 4:15 p.m.3 views

DEBIAN-CVE-2025-46394

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.3CVSS7.3AI score0.00149EPSS
Exploits0References1
OSV
OSV
added 2025/04/23 4:15 p.m.1 views

UBUNTU-CVE-2025-46394

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.3CVSS7.1AI score0.00149EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/04/23 4:15 p.m.5 views

CVE-2025-46394

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.3CVSS7.1AI score0.00149EPSS
Exploits0References5
Snyk
Snyk
added 2025/04/23 9:55 a.m.1 views

Directory Traversal

Overview github.com/grafana/grafana/pkg/api/pluginproxy is an open-source platform for monitoring and observability. Affected versions of this package are vulnerable to Directory Traversal. An attacker can gain unauthorized read-only access to sensitive endpoints by appending an extra slash to th...

8.3CVSS7.6AI score0.10611EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/04/23 12:0 a.m.4 views

PT-2025-17652

Name of the Vulnerable Software and Affected Versions BusyBox versions through 1.37.0 Description The issue allows local users to launch a network application with an argv0 containing an ANSI terminal escape sequence. This can lead to a denial of service when netstat is used by a victim, causing...

2.5CVSS6.1AI score0.00238EPSS
Exploits0References33
AlpineLinux
AlpineLinux
added 2025/04/23 12:0 a.m.12 views

CVE-2025-46394

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.3CVSS7AI score0.00149EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/04/23 12:0 a.m.8 views

CVE-2025-46394

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.3CVSS7.3AI score0.00149EPSS
Exploits0
Cvelist
Cvelist
added 2025/04/23 12:0 a.m.15 views

CVE-2025-46394

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.2CVSS0.00149EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/04/23 12:0 a.m.4 views

BusyBox 安全漏洞

BusyBox is a suite of applications containing several linux commands and tools by Denis Vlasenko, a Ukrainian individual developer. A security vulnerability exists in BusyBox 1.37.0 and earlier versions, which originates from the fact that tar can hide filenames via terminal escape sequences...

3.3CVSS6.5AI score0.00149EPSS
Exploits0References4
CVE
CVE
added 2025/04/23 12:0 a.m.167 views

CVE-2025-46394

CVE-2025-46394 affects BusyBox tar up to version 1.37.0. A TAR archive can misuse terminal escape sequences to hide filenames from listings, causing a mismatch between on-disk contents and what is shown to the user. The vulnerability is a UI misinformation issue (CWE-451) with low overall impact ...

3.3CVSS4.1AI score0.00149EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder