Lucene search
K

62 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-46436

Malicious code in bioql PyPI...

4.3CVSS6.2AI score0.00679EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-6955

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A missing authorization check vulnerability exists in GitLab Remote Development affecting all versions prior to 16.5.6, 16.6 prior to 16.6.4 and 16.7 prior to...

6.6CVSS6AI score0.00552EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:54 a.m.9 views

CVE-2023-2030

An issue has been discovered in GitLab CE/EE affecting all versions from 12.2 prior to 16.5.6, 16.6 prior to 16.6.4, and 16.7 prior to 16.7.2 in which an attacker could potentially modify the metadata of signed commits...

5.3CVSS6.4AI score0.00384EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.186 views

GitLab Password Reset Account Takeover

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GitLab Password Reset Account Takeover', 'Description' = 'This module exploits an account-take-over vulnerability that allows users to take contr...

10CVSS7.4AI score0.94955EPSS
Exploits16
Tenable Nessus
Tenable Nessus
added 2024/05/06 12:0 a.m.28 views

GitLab 0 < 16.5.6 / 16.6 < 16.6.4 / 16.7 < 16.7.2 (CVE-2023-6955)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An improper access control vulnerability exists in GitLab Remote Development affecting all versions prior to 16.5.6, 16.6 prior to 16.6.4 and 16.7 prior to 16.7.2. This condition allows an attacker to...

6.6CVSS6.1AI score0.00552EPSS
Exploits0References3
NVD
NVD
added 2024/02/21 7:15 a.m.24 views

CVE-2023-42873

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sonoma 14.1, tvOS 17.1, macOS Monterey 12.7.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, macOS Ventura 13.6.1. An app may be able to execute arbitrary code with kernel privileges...

7.8CVSS7.2AI score0.00225EPSS
Exploits0References10
Prion
Prion
added 2024/02/21 7:15 a.m.22 views

Default credentials

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sonoma 14.1, tvOS 17.1, macOS Monterey 12.7.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, macOS Ventura 13.6.1. An app may be able to execute arbitrary code with kernel privileges...

7AI score0.00225EPSS
Exploits0References6
Prion
Prion
added 2024/02/21 7:15 a.m.26 views

Code injection

This issue was addressed with improved handling of symlinks. This issue is fixed in watchOS 10.1, macOS Sonoma 14.1, tvOS 17.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, macOS Ventura 13.6.1. A malicious app may be able to gain root privileges...

6AI score0.00387EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2024/02/21 7:15 a.m.35 views

CVE-2023-42843

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, Safari 17.1, macOS Sonoma 14.1. Visiting a malicious website may lead to address bar spoofing...

7.5CVSS6.8AI score0.0086EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/02/21 6:41 a.m.25 views

CVE-2023-42873

The issue was addressed with improved bounds checks. This issue is fixed in macOS Sonoma 14.1, tvOS 17.1, macOS Monterey 12.7.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, macOS Ventura 13.6.1. An app may be able to execute arbitrary code with kernel privileges...

7.5AI score0.00225EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/02/21 6:41 a.m.29 views

CVE-2023-42843

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, Safari 17.1, macOS Sonoma 14.1. Visiting a malicious website may lead to address bar spoofing...

7.5AI score0.0086EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2024/02/21 6:41 a.m.18 views

CVE-2023-42843

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, Safari 17.1, macOS Sonoma 14.1. Visiting a malicious website may lead to address bar spoofing...

7.5CVSS6AI score0.0086EPSS
Exploits0
Cvelist
Cvelist
added 2024/02/21 6:41 a.m.33 views

CVE-2023-42942

This issue was addressed with improved handling of symlinks. This issue is fixed in watchOS 10.1, macOS Sonoma 14.1, tvOS 17.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1, macOS Ventura 13.6.1. A malicious app may be able to gain root privileges...

7.3AI score0.00387EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/02/21 12:0 a.m.3 views

Apple iOS and iPadOS Security Vulnerabilities

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS version 16.7.2 and iPadOS version 16.7.2, which originates from an applicatio...

7.8CVSS7.5AI score0.00225EPSS
Exploits0References8
CNNVD
CNNVD
added 2024/02/21 12:0 a.m.3 views

Apple iOS and iPadOS Security Vulnerabilities

Apple iOS and Apple iPadOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS version 16.7.2 and iPadOS version 16.7.2, which originates from a visit ...

7.5CVSS6.4AI score0.0086EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/02/21 12:0 a.m.3 views

Apple iOS and iPadOS Security Vulnerabilities

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS version 16.7.2 and iPadOS version 16.7.2, which originates from an applicatio...

5.5CVSS6.3AI score0.00425EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2024/01/12 1:56 p.m.29 views

CVE-2023-4812

Removed by vendor...

7.6CVSS6.6AI score0.0051EPSS
Exploits0
Debian CVE
Debian CVE
added 2024/01/12 1:56 p.m.32 views

CVE-2023-6955

Removed by vendor...

6.6CVSS6.3AI score0.00552EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2024/01/12 12:0 a.m.40 views

CVE-2023-4812

An issue has been discovered in GitLab EE affecting all versions starting from 15.3 before 16.5.6, all versions starting from 16.6 before 16.6.4, all versions starting from 16.7 before 16.7.2. The required CODEOWNERS approval could be bypassed by adding changes to a previously approved merge...

7.6CVSS6.5AI score0.0051EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/01/11 12:0 a.m.5 views

PT-2024-1046 · Mattermost +2 · Mattermost +3

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 8.13 through 16.5.6 GitLab CE/EE versions 16.6 through 16.6.4 GitLab CE/EE versions 16.7 through 16.7.2 Description: The issue is related to incorrect authorization checks in GitLab, allowing a user to abuse...

8.8CVSS7.7AI score0.00829EPSS
Exploits0References38
Rows per page
Query Builder