Lucene search
+L

502 matches found

Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.16 views

PT-2026-4885

Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in rethinkdb src/cjson modules. This vulnerability is associated with program files cJSON.Cc. This issue affects rethinkdb: through v2.4.4...

10CVSS5.9AI score0.00296EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 9:21 a.m.16 views

CVE-2021-41196

TensorFlow is an open source platform for machine learning. In affected versions the Keras pooling layers can trigger a segfault if the size of the pool is 0 or if a dimension is negative. This is due to the TensorFlow's implementation of pooling operations where the values in the sliding window...

5.5CVSS6.6AI score0.0023EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:30 a.m.14 views

CVE-2019-16667

diagcommand.php in pfSense 2.4.4-p3 allows CSRF via the txtCommand or txtRecallBuffer field, as demonstrated by executing OS commands. This occurs because csrfcallback produces a "CSRF token expired" error and a Try Again button when a CSRF token is missing...

8.8CVSS6.9AI score0.54541EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:18 a.m.38 views

CVE-2025-1326

The Homey theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the homeyreservationdel function in all versions up to, and including, 2.4.4. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete...

4.3CVSS6.6AI score0.002EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/12/31 12:0 a.m.6 views

WordPress RapidLoad plugin <= 2.4.4 - Missing Authorization to Authenticated (Subscriber+) Limited Setting Reset vulnerability

Missing Authorization to Authenticated Subscriber+ Limited Setting Reset vulnerability discovered by Tieu Pham Trong Nhan - TechlabCorp in WordPress Plugin RapidLoad versions = 2.4.4...

4.3CVSS5.4AI score0.00281EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/12/09 6:30 p.m.6 views

EUVD-2025-201904

Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in rethinkdb.This issue affects rethinkdb: before 2.4.4...

9.3CVSS6.4AI score0.00343EPSS
Exploits0References2
CVE
CVE
added 2025/12/09 7:54 a.m.28 views

CVE-2025-14310

CVE-2025-14310 describes a classic buffer overflow in rethinkdb caused by a buffer copy without checking input size, affecting rethinkdb before 2.4.4. According to connected sources, the flaw can enable arbitrary code execution or denial of service, with high impact to confidentiality, integrity,...

9.3CVSS6.6AI score0.00343EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 7:54 a.m.30 views

CVE-2025-14310

Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in rethinkdb.This issue affects rethinkdb: before 2.4.4...

9.3CVSS0.00343EPSS
Exploits0References1
OSV
OSV
added 2025/12/09 7:54 a.m.4 views

CVE-2025-14310

Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in rethinkdb.This issue affects rethinkdb: before 2.4.4...

9.3CVSS6.9AI score0.00343EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

RethinkDB 安全漏洞

RethinkDB is a database in the RethinkDB open source. A security vulnerability exists in RethinkDB versions prior to 2.4.4 that stems from a buffer overflow...

9.3CVSS6.8AI score0.00343EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.5 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: expat (UTSA-2025-991053)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991053 advisory. Expat aka libexpat before 2.4.4 has an integer overflow in the doProlog function. Tenable has extracted the preceding description block directly from the Unity Linux...

7.5CVSS7.1AI score0.03992EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.7 views

PT-2025-49809

Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in rethinkdb.This issue affects rethinkdb: before 2.4.4...

9.3CVSS7AI score0.00343EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/02 12:0 a.m.7 views

NewStart CGSL MAIN 6.06 : audit Vulnerability (NS-SA-2025-0236)

The remote NewStart CGSL host, running version MAIN 6.06, has audit packages installed that are affected by a vulnerability: - Audit before 2.4.4 in Linux does not sanitize escape characters in filenames. CVE-2015-5186 Note that Nessus has not tested for these issues but has instead relied only o...

5.3CVSS6.4AI score0.02755EPSS
Exploits0References3
OPENSUSE Linux
OPENSUSE Linux
added 2025/11/26 12:0 a.m.3 views

openbao-2.4.4-1.1 on GA media (moderate)

openbao-2.4.4-1.1 on GA media Announcement ID: openSUSE-SU-2025:15767-1 Rating: moderate Cross-References: CVE-2025-64761 CVSS scores: CVE-2025-64761 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N CVE-2025-64761 SUSE : 7.4 CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N...

7.4CVSS7.2AI score0.00322EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2025/11/25 11:15 p.m.5 views

CVE-2025-64713

WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. Prior to version 2.4.4, an out-of-bounds array access issue exists in WAMR's fast interpreter mode during WASM bytecode loading. When framerefbottom and frameoffsetbottom arrays are at capacity and a GETGLOBALI32...

7.4CVSS6.9AI score0.0029EPSS
Exploits1References2
EUVD
EUVD
added 2025/11/25 10:13 p.m.5 views

EUVD-2025-199655

WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. Prior to version 2.4.4, an out-of-bounds array access issue exists in WAMR's fast interpreter mode during WASM bytecode loading. When framerefbottom and frameoffsetbottom arrays are at capacity and a GETGLOBALI32...

5.1CVSS6.4AI score0.0029EPSS
Exploits1References2
OSV
OSV
added 2025/11/25 10:6 p.m.12 views

CVE-2025-64704 WebAssembly Micro Runtime vulnerable to a segmentation fault in v128.store instruction

WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. Prior to version 2.4.4, WAMR is susceptible to a segmentation fault in v128.store instruction. This issue has been patched in version 2.4.4...

4.7CVSS6.7AI score0.00164EPSS
Exploits1References4
NVD
NVD
added 2025/11/25 1:15 a.m.5 views

CVE-2025-64761

OpenBao is an open source identity-based secrets management system. Prior to version 2.4.4, a privileged operator could use the identity group subsystem to add a root policy to a group identity group, escalating their or another user's permissions in the system. Specifically this is an issue when...

7.5CVSS0.00322EPSS
Exploits0References3
Snyk
Snyk
added 2025/11/25 12:42 a.m.1 views

Incorrect Privilege Assignment

Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment via the identity/groups endpoints. An attacker can gain unauthorized root-level permissions by adding a root policy to a group, thereby escalating their own or another user's privileges. Note: This is only...

7.5CVSS7AI score0.00322EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/25 12:1 a.m.13 views

CVE-2025-64761 OpenBao Privileged Operator Identity Group Root Escalation

OpenBao is an open source identity-based secrets management system. Prior to version 2.4.4, a privileged operator could use the identity group subsystem to add a root policy to a group identity group, escalating their or another user's permissions in the system. Specifically this is an issue when...

7.5CVSS0.00322EPSS
Exploits0References3
Rows per page
Query Builder