Lucene search
K

26 matches found

Circl
Circl
added 2026/06/19 5:54 p.m.7 views

CVE-2017-20275

creationtimestamp| type| source ---|---|--- 2026-06-19 17:54:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3monvyf2cgt24...

8.8CVSS5.8AI score0.00232EPSS
Exploits0References1
NVD
NVD
added 2026/06/19 5:16 p.m.13 views

CVE-2017-20275

Joomla! Component PHP-Bridge 1.2.3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id parameter. Attackers can send GET requests to index.php with option=comphpbridge&view=phpview parameters and...

8.8CVSS0.00232EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/02 12:0 a.m.5 views

openSUSE 16 Security Update : gimp (openSUSE-SU-2026:20275-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20275-1 advisory. Changes in gimp: - CVE-2026-2239: Fixed a heap buffer overflow in psd-util.c bsc1257959. Tenable has extracted the preceding description block directly...

6.5CVSS7.3AI score0.00485EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2025/06/04 5:15 p.m.4 views

CVE-2025-20275

A vulnerability in the file opening process of Cisco Unified Contact Center Express Unified CCX Editor could allow an unauthenticated attacker to execute arbitrary code on an affected device. This vulnerability is due to insecure deserialization of Java objects by the affected software. An attack...

7.8CVSS6.2AI score0.00162EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2025/06/04 5:15 p.m.9 views

CVE-2025-20275

A vulnerability in the file opening process of Cisco Unified Contact Center Express Unified CCX Editor could allow an unauthenticated attacker to execute arbitrary code on an affected device. This vulnerability is due to insecure deserialization of Java objects by the affected software. An attack...

7.8CVSS0.00162EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/04 4:18 p.m.15 views

CVE-2025-20275 Cisco Unified Contact Center Express Editor Remote Code Execution Vulnerability

A vulnerability in the file opening process of Cisco Unified Contact Center Express Unified CCX Editor could allow an unauthenticated attacker to execute arbitrary code on an affected device. This vulnerability is due to insecure deserialization of Java objects by the affected software. An attack...

5.3CVSS0.00162EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/04 4:18 p.m.8 views

CVE-2025-20275 Cisco Unified Contact Center Express Editor Remote Code Execution Vulnerability

A vulnerability in the file opening process of Cisco Unified Contact Center Express Unified CCX Editor could allow an unauthenticated attacker to execute arbitrary code on an affected device. This vulnerability is due to insecure deserialization of Java objects by the affected software. An attack...

5.3CVSS5.9AI score0.00162EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:48 a.m.8 views

CVE-2024-20275

A vulnerability in the cluster backup feature of Cisco Secure Firewall Management Center FMC Software, formerly Firepower Management Center Software, could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system. This vulnerability is due to...

6.1CVSS7.7AI score0.00509EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:14 p.m.6 views

CVE-2022-20275

In DevicePolicyManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS6AI score0.00095EPSS
Exploits0References1
Circl
Circl
added 2024/10/23 7:54 p.m.5 views

CVE-2024-20275

creationtimestamp| type| source ---|---|--- 2024-10-23 19:54:37+00:00| seen| https://t.me/cvedetector/8737...

6.1CVSS4.8AI score0.00509EPSS
Exploits0References1
CVE
CVE
added 2023/12/12 6:6 p.m.203 views

CVE-2023-20275

CVE-2023-20275 affects Cisco ASA Software and Cisco Firepower Threat Defense (FTD) Software, specifically the AnyConnect SSL VPN feature. The root cause is improper validation of the inner source IP address after decryption, allowing an authenticated, remote attacker to send packets that appear t...

4.3CVSS4.6AI score0.00412EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2023/12/07 11:51 a.m.5 views

CVE-2023-20275

creationtimestamp| type| source ---|---|--- 2023-12-07 11:51:04+00:00| exploited| https://t.me/truesecator/5173 2023-12-24 16:51:49+00:00| seen| https://t.me/ctinow/159059...

4.3CVSS4.6AI score0.00412EPSS
Exploits0References2
NVD
NVD
added 2022/09/29 4:15 a.m.19 views

CVE-2019-20275

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during the year 2019. Notes: none...

Exploits0
Circl
Circl
added 2022/08/12 6:46 p.m.6 views

CVE-2022-20275

creationtimestamp| type| source ---|---|--- 2022-08-12 18:46:40+00:00| seen| https://t.me/cibsecurity/48074...

5.5CVSS5.5AI score0.00095EPSS
Exploits0References1
OSV
OSV
added 2022/08/12 3:15 p.m.3 views

CVE-2022-20275

In DevicePolicyManager, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for...

5.5CVSS5.9AI score0.00095EPSS
Exploits0References1
CVE
CVE
added 2022/08/11 3:15 p.m.62 views

CVE-2022-20275

CVE-2022-20275 affects Android 13 devices due to a side-channel disclosure in the DevicePolicyManager that can reveal whether an app is installed without query permissions. The root cause is a information-disclosure path that enables local access to installation state without user interaction or ...

5.5CVSS5.4AI score0.00095EPSS
Exploits0References1Affected Software1
Ubuntu
Ubuntu
added 2021/03/22 4:55 p.m.121 views

USN-4886-1: Privoxy vulnerabilities

It was discovered that Privoxy incorrectly handled CGI requests. An attacker could possibly use this issue to cause a denial of service or obtain sensitive information. CVE-2020-35502, CVE-2021-20209, CVE-2021-20210, CVE-2021-20213, CVE-2021-20215, CVE-2021-20216, CVE-2021-20217, CVE-2021-20272,...

7.8CVSS7.2AI score0.02355EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/03/22 12:0 a.m.25 views

openSUSE Security Update : privoxy (openSUSE-2021-443)

This update for privoxy fixes the following issues : Update to version 3.0.32 : - Security/Reliability boo1183129 - ssplit: Remove an assertion that could be triggered with a crafted CGI request. Commit 2256d7b4d67. OVE-20210203-0001. CVE-2021-20272 Reported by: Joshua Rogers Opera - cgisendbanne...

7.5CVSS7.1AI score0.02108EPSS
Exploits0References7
Debian
Debian
added 2021/03/09 5:51 p.m.21 views

[SECURITY] [DLA 2587-1] privoxy security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2587-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA March 09, 2021 https://wiki.debian.org/LTS -...

7.5CVSS7.8AI score0.02108EPSS
Exploits0
Circl
Circl
added 2021/03/09 4:51 p.m.6 views

CVE-2021-20275

creationtimestamp| type| source ---|---|--- 2021-03-09 16:51:39+00:00| seen| https://t.me/cibsecurity/24591...

7.5CVSS7.2AI score0.01953EPSS
Exploits0References1
Rows per page
Query Builder