Lucene search
K

144 matches found

Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.6 views

PT-2026-52290

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A slab out-of-bounds write exists in the kl5kusb105 USB serial driver. The function klsi 105 prepare write buffer incorrectly handles the bulk-out buffer by storing a two-byte length...

7.8CVSS6.1AI score0.00148EPSS
Exploits0References25
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Firefox and Thunderbird

A out-of-bounds read can occur during the decoding of H264 videos. This can lead to a potentially exploitable crash. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...

5.5CVSS6.3AI score0.00293EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Chromium

Inappropriate implementation in the iframe Sandbox in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to leak cross-origin data through a crafted HTML page...

6.5CVSS6.6AI score0.00515EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Chromium

“Type Confusion” in MathML in Google Chrome prior to version 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

8.8CVSS7.3AI score0.00566EPSS
Exploits1References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Chromium

The use of “after free” in PDFs in Google Chrome before version 105.0.5195.125 allowed a remote attacker to potentially exploit heap corruption through a crafted PDF file. Chromium security severity: High...

8.8CVSS7.3AI score0.00606EPSS
Exploits0References2
Circl
Circl
added 2026/02/13 5:0 a.m.8 views

CVE-2026-2033

creationtimestamp| type| source ---|---|--- 2026-02-13 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-26-105/ 2026-02-21 00:02:32+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfdd2ldott2h...

8.1CVSS7.8AI score0.01682EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 7 : qemu-kvm-1.5.3-105.el7.4 (AXSA:2016-232:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-232:02 advisory. qemu-kvm is an open source virtualizer that provides hardware emulation for the KVM hypervisor. qemu-kvm acts as a virtual machine monitor together with the K...

8.8CVSS7.3AI score0.00916EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:47 p.m.3 views

Malicious code in riyanto-105 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a74b179e907300f46c498dc1b09b51647609feefe9fc0622cb81bbd597f1ebc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/10/19 7:8 p.m.4 views

JLSEC-2025-130 FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the colorcorrect filter, in the av_...

FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the colorcorrect filter, in the avmalloc function in libavutil/mem.c:105:9 component...

7.8CVSS7AI score0.00377EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2014-4552

Malware in sbrugna...

9CVSS6.1AI score0.03994EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2016-2311

Malware in sbrugna...

5.9CVSS5.9AI score0.00642EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-58401

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00596EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-2836

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.01212EPSS
Exploits0References5
OSV
OSV
added 2024/07/01 12:0 a.m.29 views

ASB-A-336268889

In multiple locations, there is a possible way to conduct local privilege escalation due to memory corruption. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

4.7CVSS7.1AI score0.00193EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2024/03/01 4:21 p.m.28 views

Security Bulletin: Information disclosure vulnerability in IBM WebSphere Application Server Liberty affect IBM Business Automation Workflow - CVE-2023-44483

Summary IBM WebSphere Application Server Liberty is shipped as a component of IBM Business Automation Workflow for User Management Services and Process Federation Server. IBM WebSphere Applciation Server Liberty is also the basis for containerized IBM Business Automation Workflow. A security...

6.5CVSS6.6AI score0.01212EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/02/16 1:31 p.m.29 views

Security Bulletin: IBM Match 360 is vulnerable to Apache Santuario used within IBM WebSphere Application Server Liberty (CVE-2023-44483)

Summary IBM Match 360 is vulnerable to Apache Santuario used within IBM WebSphere Application Server Liberty. Apache Santuario could allow a remote authenticated attacker to obtain sensitive information, caused by the storage of a private key in the log files when using the JSR 105 API. By gainin...

6.5CVSS6.6AI score0.01212EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/15 3:10 p.m.17 views

Security Bulletin: Vulnerability in Santuario affects IBM Process Mining CVE-2023-44483

Summary There is a vulnerability in Santuario that could allow a remote authenticated attacker to obtain sensitive information on the system. The code is used by IBM Process Mining. This bulletin identifies the security fixes to apply to address the vulnerability. Vulnerability Details...

6.5CVSS6.8AI score0.01212EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/11/28 10:15 a.m.4 views

CVE-2023-6150

Incorrect Use of Privileged APIs vulnerability in ESKOM Computer e-municipality module allows Collect Data as Provided by Users. This issue affects e-municipality module: before v.105...

7.5CVSS5.8AI score0.00596EPSS
Exploits0References3
OSV
OSV
added 2023/11/28 10:15 a.m.2 views

CVE-2023-6150

Incorrect Use of Privileged APIs vulnerability in ESKOM Computer e-municipality module allows Collect Data as Provided by Users.This issue affects e-municipality module: before v.105...

7.5CVSS5.8AI score0.00596EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/11/28 10:15 a.m.4 views

CVE-2023-6151

Incorrect Use of Privileged APIs vulnerability in ESKOM Computer e-municipality module allows Collect Data as Provided by Users. This issue affects e-municipality module: before v.105...

7.5CVSS5.8AI score0.00596EPSS
Exploits0References3
Rows per page
Query Builder