Lucene search
K

24 matches found

NVD
NVD
added 2026/02/25 8:23 p.m.8 views

CVE-2026-2636

This vulnerability is caused by a CWE‑159: "Improper Handling of Invalid Use of Special Elements" weakness, which leads to an unrecoverable inconsistency in the CLFS.sys driver. This condition forces a call to the KeBugCheckEx function, allowing an unprivileged user to trigger a system crash...

5.5CVSS0.0041EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.6 views

PT-2026-21986

Name of the Vulnerable Software and Affected Versions Windows versions prior to September 2025 cumulative update for Windows 11 2024 LTSC and Windows Server 2025 Windows 11 23H2 and earlier Description The issue is caused by improper handling of invalid use of special elements within the CLFS.sys...

5.5CVSS5.8AI score0.0041EPSS
Exploits2References13
Positive Technologies
Positive Technologies
added 2025/11/11 12:0 a.m.5 views

PT-2025-46508

Name of the Vulnerable Software and Affected Versions Microsoft Windows affected versions not specified Description A race condition exists in the Windows Kernel due to improper synchronization when multiple threads concurrently access shared kernel resources. This flaw allows a local authenticat...

7CVSS6.2AI score0.061EPSS
Exploits6References103
GithubExploit
GithubExploit
added 2025/11/08 9:4 a.m.260 views

Exploit for Out-of-bounds Write in Samsung Android

🔐 CVE-2025-21042 — Samsung Image Codec Remote Code Execution...

9.8CVSS8.1AI score0.11606EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2025/11/06 8:10 a.m.8 views

Security Bulletin: Multiple Vulnerabilities in IBM® Java SDK affect IBM WebSphere Application Server and IBM WebSphere Liberty shipped with IBM Security Guardium Key Lifecycle Manager (CVE-2025-53066, CVE-2025-53057)

Summary IBM WebSphere Application Server and IBM WebSphere Liberty is shipped as a component of IBM Security Guardium Key Lifecycle Manager SKLM/GKLM. Information about multiple security vulnerabilities affecting IBM WebSphere Application Server and IBM WebSphere Liberty has been published in a...

7.5CVSS6.5AI score0.00633EPSS
Exploits0Affected Software1
Android Security Bulletins
Android Security Bulletins
added 2025/11/03 12:0 a.m.24 views

Android Automotive OS Update Bulletin—November 2025Stay organized with collectionsSave and categorize content based on your preferences.

The Android Automotive OS AAOS Update Bulletin contains details of security vulnerabilities affecting the Android Automotive OS platform. The full AAOS update comprises the security patch level of 2025-11-05 or later from the November 2025 Android Security Bulletin in addition to all issues in th...

7.8AI score
Exploits0
Photon
Photon
added 2025/10/23 12:0 a.m.16 views

Important Photon OS Security Update - PHSA-2025-5.0-0655

Updates of 'linux-esx', 'linux' packages of Photon OS have been released...

6.4AI score0.00231EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/09/29 1:34 a.m.5 views

mysql: DML unspecified vulnerability (CPU Apr 2025)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...

4.9CVSS5.7AI score0.00642EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/09/22 7:39 p.m.15 views

CVE-2025-59434 Critical Multi-Tenant Variable Disclosure in Flowise Cloud via Custom JavaScript Function

Flowise is a drag & drop user interface to build a customized large language model flow. Prior to August 2025 Cloud-Hosted Flowise, an authenticated vulnerability in Flowise Cloud allows any user on the free tier to access sensitive environment variables from other tenants via the Custom JavaScri...

9.6CVSS6.3AI score0.03146EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2025/09/09 7:0 a.m.11 views

Description of the security update for SharePoint Server Subscription Edition: September 09, 2025 (KB5002784)

Description of the security update for SharePoint Server Subscription Edition: September 09, 2025 KB5002784 Summary Important: Prior to installing this Cumulative Update, if you're running the 2013 Style Workflows, you must install the August 2025 patch for SharePoint Workflow manager to your Far...

8.8CVSS7.6AI score0.18084EPSS
Exploits0
GithubExploit
GithubExploit
added 2025/08/23 1:37 a.m.194 views

Exploit for External Control of File Name or Path in Microsoft

CVE-2025-33053 POC Exploit Overview The working director...

8.8CVSS9.7AI score0.81558EPSS
Exploits10
Malwarebytes
Malwarebytes
added 2025/08/13 3:49 p.m.9 views

Microsoft patches some very important vulnerabilities in August’s patch Tuesday

In the August 2025 patch Tuesday round Microsoft fixed a total of 111 Microsoft vulnerabilities. A few of them are very important for people to apply. Even if you’re not a tech expert, keeping your Windows system up to date is one of the simplest and most effective ways to protect yourself from...

9.8CVSS8.5AI score0.06706EPSS
Exploits6
Positive Technologies
Positive Technologies
added 2025/08/12 12:0 a.m.3 views

PT-2025-32855

Name of the Vulnerable Software and Affected Versions Windows versions prior to August 2025 Patch Tuesday Description A relative path traversal vulnerability exists in the Windows Kerberos implementation. This flaw allows an authorized attacker to elevate privileges on a network. The vulnerabilit...

9CVSS6AI score0.02593EPSS
Exploits1References76
GithubExploit
GithubExploit
added 2025/08/06 10:37 a.m.213 views

Exploit for CVE-2025-54253

🔥 CVE-2025-54253 — Critical RCE Vulnerability in Adobe AEM For...

10CVSS9.2AI score0.87515EPSS
Exploits7
Qualys Blog
Qualys Blog
added 2025/05/13 7:13 p.m.66 views

Microsoft and Adobe Patch Tuesday, May 2025 Security Update Review

Microsoft's May 2025 Patch Tuesday rolls out critical security updates, addressing multiple vulnerabilities across Windows, Office, and other key products. Here's a quick breakdown of what you need to know. Microsoft Patch Tuesday for May 2025 In this month's Patch Tuesday, May 2025 edition,...

8.8CVSS9.9AI score0.57672EPSS
Exploits9
OSV
OSV
added 2025/05/13 4:15 p.m.5 views

CVE-2025-22462

An authentication bypass in Ivanti Neurons for ITSM on-prem only before 2023.4, 2024.2 and 2024.3 with the May 2025 Security Patch allows a remote unauthenticated attacker to gain administrative access to the system...

9.8CVSS7.6AI score0.01871EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.4 views

PT-2025-20981 · Microsoft · Office Excel +1

Name of the Vulnerable Software and Affected Versions: Microsoft Office Excel affected versions not specified Description: A heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. This issue enables remote attackers to execute arbitrary code...

7.8CVSS9.6AI score0.00585EPSS
Exploits0References9
GithubExploit
GithubExploit
added 2025/04/08 2:34 p.m.118 views

Exploit for Classic Buffer Overflow in Qualcomm Qca9367_Firmware

CVE-2024-53027-WIP Work in Progress for POC CVE-2024-53027:...

7.5CVSS8.2AI score0.00276EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2025/04/07 12:0 a.m.8 views

PT-2025-15202 · Qualcomm · Snapdragon Qam8620P +40

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon versions prior to the April 2025 patchday Qualcomm 205 Mobile Platform affected versions not specified Qualcomm 215 Mobile Platform affected versions not specified Snapdragon 1200 Wearable Platform affected versions not...

7.8CVSS6.5AI score0.00084EPSS
Exploits0References7
Qualys Blog
Qualys Blog
added 2025/02/11 7:46 p.m.55 views

Microsoft and Adobe Patch Tuesday, February 2025 Security Update Review

As the second Patch Tuesday of 2025 arrives, Microsoft has released crucial updates to strengthen cybersecurity defenses. Let's explore the highlights and what they mean for users. Microsoft Patch Tuesday for February 2025 Microsoft Patch's Tuesday, February 2025 edition addressed 67...

8.1CVSS9.1AI score0.29778EPSS
Exploits2
Rows per page
Query Builder