Lucene search
K

20 matches found

CVE
CVE
added 2026/06/30 10:38 p.m.14 views

CVE-2026-13915

CVE-2026-13915 affects Chrome for iOS (Google Chrome on iOS) prior to version 150.0.7871.47. The vulnerability is described as a use-after-free that could lead to heap corruption when a remote attacker convinces a user to perform specific UI gestures on a crafted HTML page. Impact details in the ...

8.8CVSS5.8AI score0.00316EPSS
Exploits0References2Affected Software1
The Hacker News
The Hacker News
added 2025/12/31 1:37 p.m.8 views

Critical CVSS 9.8 Flaw Found in IBM API Connect Authentication System

IBM has disclosed details of a critical security flaw in API Connect that could allow attackers to gain remote access to the application. The vulnerability, tracked as CVE-2025-13915 , is rated 9.8 out of a maximum of 10.0 on the CVSS scoring system. It has been described as an authentication...

9.8CVSS6.7AI score0.08673EPSS
Exploits0
Circl
Circl
added 2025/12/26 2:43 p.m.7 views

CVE-2025-13915

creationtimestamp| type| source ---|---|--- 2025-12-26 14:43:19+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115786396429197847 2025-12-26 15:44:10+00:00| seen| https://infosec.exchange/users/vuldb/statuses/115786635668538679 2025-12-27 06:04:12+00:00| seen|...

9.8CVSS6AI score0.08673EPSS
Exploits0References32
Vulnrichment
Vulnrichment
added 2025/12/26 1:16 p.m.3 views

CVE-2025-13915 Authentication bypass in IBM API Connect

IBM API Connect 10.0.8.0 through 10.0.8.5, and 10.0.11.0 could allow a remote attacker to bypass authentication mechanisms and gain unauthorized access to the application...

9.8CVSS6.6AI score0.08673EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/25 2:4 p.m.11 views

Security Bulletin: Authentication bypass in IBM API Connect

Summary Internal testing has revealed a potential authentication bypass in IBM API Connect Vulnerability Details CVEID:CVE-2025-13915 DESCRIPTION: IBM API Connect could allow a remote attacker to bypass authentication mechanisms and gain unauthorized access to the application. CWE:CWE-305:...

9.8CVSS7AI score0.08673EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/06/01 3:36 p.m.5 views

CVE-2024-13915

Android based smartphones from vendors such as Ulefone and Krüger contain "com.pri.factorytest" application preloaded onto devices during manufacturing process. The application "com.pri.factorytest" version name: 1.0, version code: 1 exposes a ”com.pri.factorytest.emmc.FactoryResetService“ servic...

6.9CVSS6.6AI score0.00183EPSS
Exploits0References1
Circl
Circl
added 2025/05/30 4:29 p.m.15 views

CVE-2024-13915

creationtimestamp| type| source ---|---|--- 2025-05-30 16:29:10+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqfnoti27oe2 2025-05-30 20:06:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqfzsqmajr2q 2025-06-02...

6.9CVSS5.1AI score0.00183EPSS
Exploits0References5
NVD
NVD
added 2025/05/30 4:15 p.m.20 views

CVE-2024-13915

Android based smartphones from vendors such as Ulefone and Krüger&Matz contain "com.pri.factorytest" application preloaded onto devices during manufacturing process. The application "com.pri.factorytest" version name: 1.0, version code: 1 exposes a ”com.pri.factorytest.emmc.FactoryResetService“...

6.9CVSS0.00183EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 3:9 p.m.13 views

CVE-2024-13915 Unrestricted Access to Exported Service in com.pri.factorytest

Android based smartphones from vendors such as Ulefone and Krüger&Matz contain "com.pri.factorytest" application preloaded onto devices during manufacturing process. The application "com.pri.factorytest" version name: 1.0, version code: 1 exposes a ”com.pri.factorytest.emmc.FactoryResetService“...

6.9CVSS0.00183EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:12 p.m.6 views

CVE-2020-13915

Insecure permissions in emfd/libemf in Ruckus Wireless Unleashed through 200.7.10.102.92 allow a remote attacker to overwrite admin credentials via an unauthenticated crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R310, R500, R510 R600, R610, R710, R720, R750, T300, T301n,...

7.5CVSS7.2AI score0.01897EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:27 a.m.8 views

CVE-2019-13915

b3log Wide before 1.6.0 allows three types of attacks to access arbitrary files. First, the attacker can write code in the editor, and compile and run it approximately three times to read an arbitrary file. Second, the attacker can create a symlink, and then place the symlink into a ZIP archive. ...

7.5CVSS7AI score0.02561EPSS
Exploits1References1
Circl
Circl
added 2023/09/14 10:30 p.m.4 views

CVE-2017-13915

creationtimestamp| type| source ---|---|--- 2023-09-14 22:30:48+00:00| seen| https://t.me/cibsecurity/70483...

4.8AI score
Exploits0References1
NVD
NVD
added 2023/09/14 7:15 p.m.7 views

CVE-2017-13915

Rejected reason: This candidate is unused by its CNA...

6.6AI score
Exploits0
CVE
CVE
added 2021/11/23 7:59 p.m.27 views

CVE-2018-13915

CVE-2018-13915 is rejected/not used; this candidate number was not assigned to any issue.

7.3AI score
Exploits0
Circl
Circl
added 2020/07/28 6:55 p.m.5 views

CVE-2020-13915

creationtimestamp| type| source ---|---|--- 2020-07-28 18:55:28+00:00| seen| https://t.me/cibsecurity/13696...

7.5CVSS7.4AI score0.01897EPSS
Exploits0References1
OSV
OSV
added 2020/07/28 3:15 p.m.6 views

CVE-2020-13915

Insecure permissions in emfd/libemf in Ruckus Wireless Unleashed through 200.7.10.102.92 allow a remote attacker to overwrite admin credentials via an unauthenticated crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R310, R500, R510 R600, R610, R710, R720, R750, T300, T301n,...

7.5CVSS7.2AI score0.01897EPSS
Exploits0References1
CVE
CVE
added 2020/07/28 2:46 p.m.43 views

CVE-2020-13915

CVE-2020-13915 concerns Ruckus Wireless Unleashed firmware versions affecting a broad range of devices (e.g., C110, E510, H320, H510, M510, R320, R310, R500, R510/R600, R610, R710, R720, R750, T300, T301n/s, T310c/d/n/s, T610, T710/ T710s). The root cause is insecure permissions in emfd/libemf, e...

7.5CVSS7.5AI score0.01897EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/07/18 3:15 p.m.36 views

CVE-2019-13915

b3log Wide before 1.6.0 allows three types of attacks to access arbitrary files. First, the attacker can write code in the editor, and compile and run it approximately three times to read an arbitrary file. Second, the attacker can create a symlink, and then place the symlink into a ZIP archive. ...

7.5CVSS7.5AI score0.02561EPSS
Exploits1References1
CVE
CVE
added 2019/07/18 2:24 p.m.59 views

CVE-2019-13915

CVE-2019-13915 : In b3log Wide, prior to version 1.6.0, three attack types enable arbitrary file read/write. 1) An attacker can insert and run code in the editor about three times to read an arbitrary file. 2) An attacker can create a symlink and place it in a ZIP archive; an unzip operation gran...

7.5CVSS7.4AI score0.02561EPSS
Exploits1References1Affected Software1
CVE
CVE
added 1976/01/01 12:0 a.m.14 views

CVE-2017-13915

CVE-2017-13915 entry is rejected/not used by its CNA.

6.8AI score
Exploits0
Rows per page
Query Builder