26 matches found
Ubuntu: Security Advisory (USN-8034-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Kaspersky Security Bulletin 2025. Statistics
All statistics in this report come from Kaspersky Security Network KSN, a global cloud service that receives information from components in our security solutions voluntarily provided by Kaspersky users. Millions of Kaspersky users around the globe assist us in collecting information about...
Ubuntu: Security Advisory (USN-7879-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-58274
Hikvision CSMP Comprehensive Security Management Platform iSecure Center through 2024-08-01 allows execution of a command within $ in /center/api/installation/detection JSON data, as exploited in the wild in 2024 and 2025...
CVE-2023-53691
Hikvision CSMP Comprehensive Security Management Platform iSecure Center through 2023-06-25 allows file upload via /center/api/files directory traversal, as exploited in the wild in 2024 and 2025...
Ubuntu: Security Advisory (USN-7833-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-58274
CVE-2024-58274 affects Hikvision CSMP iSecure Center (through 2024-08-01). Affected component is the JSON data handling in /center/api/installation/detection, where unverified use of the $() command can lead to arbitrary command execution. Documents indicate exploitation in the wild during 2024 a...
EUVD-2025-34153
A vulnerability has been identified in Solid Edge SE2024 All versions V224.0 Update 14, Solid Edge SE2025 All versions V225.0 Update 6. The affected applications contains an out of bounds read vulnerability while parsing specially crafted PRT files. This could allow an attacker to crash the...
CVE-2025-8887
Authorization Bypass Through User-Controlled Key, Missing Authorization, Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Usta Information Systems Inc. Aybs Interaktif allows Forceful Browsing, Parameter Injection, Input Data Manipulation.This issue affects Aybs...
EUVD-2025-17662
Malicious code in bioql PyPI...
Liferay Portal和Liferay DXP 安全漏洞
Liferay Portal and Liferay DXP are both products of Liferay, Inc.Liferay Portal is a J2EE based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP...
CVE-2025-43743
Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.5, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15 and 7.4 GA through update 92 allows any authenticated remote user to view other calendars by...
CVE-2025-43755
A Stored cross-site scripting vulnerability in the Liferay Portal 7.4.0 t through 7.4.3.132, and Liferay DXP 2025.Q2.0, 2025.Q1.0 through 2025.Q1.13, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.17 and 7.4 GA through update 92...
Ubuntu: Security Advisory (USN-7703-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GHSA-G4WG-MPFG-X2Q6 Liferay Portal Login Bypass Vulnerability
Liferay Portal 7.3.0 through 7.4.3.132, and Liferay DXP 2025.Q1 through 2025.Q1.6, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15, 7.4 GA through update 92 and 7.3 GA through update 36 allows unauthenticated users with valid...
CVE-2024-46975
creationtimestamp| type| source ---|---|--- 2025-02-22 15:20:16+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5031 2025-02-22 17:56:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lirvein6jq2t 2025-02-22 19:10:24+00:00| seen| https://t.me/cvedetector/18734...
CVE-2018-9205
creationtimestamp| type| source ---|---|--- 2024-12-23 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2024-12-23 2025-02-02 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-02-02 2025-04-12 00:00:00+00:00| seen| The Shadowserver...
CVE-2024-45761
creationtimestamp| type| source ---|---|--- 2024-12-09 18:53:06+00:00| seen| https://t.me/cvedetector/12417 2025-02-06 02:41:38+00:00| seen| Telegram/ngnRRkl3prhObdnqrDmTDUSlK3JqMM0siEGWM24ay-JoDBb 2025-02-06 02:42:28+00:00| seen| Telegram/9vf3Kl5IoP2NwvIdzXFKh9PljG43WO4JdUFFoce8REIWpXmA...
CVE-2024-42327
creationtimestamp| type| source ---|---|--- 2024-11-27 12:15:05+00:00| seen| https://infosec.exchange/users/cve/statuses/113554863211557834 2024-11-27 12:18:43+00:00| seen| https://infosec.exchange/users/cve/statuses/113554877465801853 2024-11-30 06:16:53+00:00| seen| https://t.me/icscert/969...
Dassault Systèmes eDrawings 安全漏洞
Dassault Systèmes eDrawings is a Dassault Systèmes France application from SolidWorks for viewing and sharing CAD models. A security vulnerability exists in Dassault Systèmes eDrawings versions 2024 through 2025, which stems from the presence of a heap-based buffer overflow and an uninitialized...