Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/01/03 3:7 p.m.14 views

CVE-2025-54166

An out-of-bounds read vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the following versions: QTS...

6.9CVSS6.8AI score0.00285EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/01/12 12:0 a.m.3 views

PT-2024-1137

Name of the Vulnerable Software and Affected Versions Relax-and-Recover aka ReaR versions 2.7 and earlier Description The issue is related to information disclosure. It allows local attackers to gain access to system secrets that are otherwise only readable by root. This occurs when using GRUB...

6.8CVSS6.3AI score0.00291EPSS
Exploits1References93
Debian
Debian
added 2023/05/05 12:2 p.m.36 views

[SECURITY] [DSA 5399-1] odoo security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5399-1 [email protected] https://www.debian.org/security/ Sebastien Delafond May 05, 2023 https://www.debian.org/security/faq -...

8.7CVSS7.6AI score0.0141EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:28 a.m.3 views

SUSE CVE-2022-23581

Tensorflow is an Open Source Machine Learning Framework. The Grappler optimizer in TensorFlow can be used to cause a denial of service by altering a SavedModel such that IsSimplifiableReshape would trigger CHECK failures. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this...

6.5CVSS6.3AI score0.01151EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2022/10/06 5:14 p.m.6 views

CVE-2022-41853 Remote code execution in HyperSQL DataBase

Those using java.sql.Statement or java.sql.PreparedStatement in hsqldb HyperSQL DataBase to process untrusted input may be vulnerable to a remote code execution attack. By default it is allowed to call any static method of any Java class in the classpath resulting in code execution. The issue can...

8CVSS9.8AI score0.03519EPSS
Exploits1References4
OSV
OSV
added 2022/01/12 10:51 p.m.7 views

GHSA-VP5X-3V8R-QPRW Deserialization of Untrusted Data in Dubbo

A deserialization vulnerability existed in dubbo hessian-lite 3.2.11 and its earlier versions, which could lead to malicious code execution. Most Dubbo users use Hessian2 as the default serialization/deserialization protocol, during Hessian catch unexpected exceptions, Hessian will log out some...

9.8CVSS6AI score0.15313EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/08/17 12:0 a.m.29 views

Photon OS 1.0: Dnsmasq / Libtasn1 PHSA-2018-1.0-0109 (deprecated)

An update of 'libtasn1', 'dnsmasq' packages of Photon OS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2018-1.0-0109. The text itself is copyright C...

7.5CVSS7AI score0.02825EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2016/08/04 12:0 a.m.41 views

K2 Joomla! Extension Cross Site Scripting

================================================================ K2 Joomla! Extension PoC: http://localhost/administrator/index.php?option=comk2&view=categori...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2012/08/21 12:0 a.m.13 views

SAP Crystal Reports 'ebus-3-3-2-7.dll'远程代码执行漏洞

BUGTRAQ ID: 55086 SAP Crystal Reports是报表制作产品。 SAP Crystal Reports在实现上存在远程代码执行漏洞,攻击者可利用此漏洞在受影响应用中执行任意代码。 0 SAP Crystal Reports 厂商补丁: SAP --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.onapsis.com/...

6.9AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2012/08/17 12:0 a.m.30 views

SAP Crystal Reports crystalras.exe OBUnmarshal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Crystal Reports. Authentication is not required to exploit this vulnerability. The flaw exists within the ebus-3-3-2-7.dll component which is used by the crystalras.exe service. This process...

10CVSS7.7AI score
Exploits0References1
Rows per page
Query Builder