Lucene search
K

169 matches found

NVD
NVD
added 2026/01/30 2:16 p.m.7 views

CVE-2026-1682

A flaw has been found in Free5GC SMF up to 4.1.0. Affected is the function HandlePfcpAssociationReleaseRequest of the file internal/pfcp/handler/handler.go of the component PFCP UDP Endpoint. Executing a manipulation can lead to null pointer dereference. The attack may be launched remotely. The...

7.5CVSS0.00667EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

MiracleLinux 4 : firefox-17.0.7-1.0.1.AXS4, xulrunner-17.0.7-1.0.1.AXS4 (AXSA:2013-543:06)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-543:06 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security issues fixed with this releas...

10CVSS8.5AI score0.69021EPSS
Exploits9References11
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

MiracleLinux 3 : firefox-17.0.7-1.0.1.AXS3, xulrunner-17.0.7-1.0.1.AXS3 (AXSA:2013-552:05)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-552:05 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security issues fixed with this releas...

10CVSS8.5AI score0.69021EPSS
Exploits9References11
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.7 views

Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2025-1208)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS7.5AI score0.00374EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.7 views

Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2025-1558)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS7.5AI score0.00374EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2025-1574)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS7.5AI score0.00374EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/19 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2025-1219)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS7.5AI score0.00374EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/17 12:0 a.m.4 views

EulerOS Virtualization 2.12.1 : python-requests (EulerOS-SA-2025-1558)

According to the versions of the python-requests package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : An unclaimed Amazon S3 bucket, 'codeconf', is referenced in an audio file link within the .rst documentation file. This...

4.3CVSS5AI score0.00374EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/13 4:37 p.m.7 views

Security Bulletin: An unclaimed Amazon S3 bucket vulnerability (CVE-2024-1682)affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component.

Summary Potential unclaimed Amazon S3 bucket vulnerability CVE-2024-1682 has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. The vulnerability have been addressed. Refer to details for...

4.3CVSS6.2AI score0.00374EPSS
Exploits0Affected Software2
Vulnrichment
Vulnrichment
added 2025/02/27 11:22 p.m.5 views

CVE-2025-1682 Cardealer <= 1.6.4 - Arbitrary Theme Option Update to Authenticated (Subscriber+) Privilege Escalation

The Cardealer theme for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.6.4 due to missing capability check on the 'savesettings' function. This makes it possible for authenticated attackers, with subscriber-level access and above, to modify the default user ro...

8.8CVSS8.6AI score0.00531EPSS
Exploits0References3
CVE
CVE
added 2025/02/27 11:22 p.m.60 views

CVE-2025-1682

CVE-2025-1682 concerns the WordPress Cardealer theme (versions &lt;= 1.6.4). The root cause is a missing capability check in the save_settings function, enabling an authenticated user with subscriber-level access or higher to perform an Arbitrary Theme Option Update and escalate privileges by cha...

8.8CVSS8.7AI score0.00531EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/02/27 11:22 p.m.16 views

CVE-2025-1682 Cardealer <= 1.6.4 - Arbitrary Theme Option Update to Authenticated (Subscriber+) Privilege Escalation

The Cardealer theme for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.6.4 due to missing capability check on the 'savesettings' function. This makes it possible for authenticated attackers, with subscriber-level access and above, to modify the default user ro...

8.8CVSS0.00531EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/02/10 12:0 a.m.6 views

Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2025-1146)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.7AI score0.00374EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.7 views

EulerOS 2.0 SP11 : python-requests (EulerOS-SA-2025-1146)

According to the versions of the python-requests package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An unclaimed Amazon S3 bucket, 'codeconf', is referenced in an audio file link within the .rst documentation file. This bucket has been...

4.3CVSS5AI score0.00374EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/02/10 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2025-1181)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.7AI score0.00374EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/02/10 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2025-1197)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.7AI score0.00374EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/02/10 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2025-1165)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.7AI score0.00374EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 11:7 p.m.9 views

CVE-2022-1682

Reflected Xss using url based payload in GitHub repository neorazorx/facturascripts prior to 2022.07. Xss can use to steal user's cookies which lead to Account takeover or do any malicious activity in victim's browser...

9.4CVSS6.7AI score0.00724EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2025/01/14 12:0 a.m.8 views

Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2025-1061)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.9AI score0.00374EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/01/14 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for python-requests (EulerOS-SA-2025-1029)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS4.9AI score0.00374EPSS
Exploits0References2
Rows per page
Query Builder