Lucene search
K

38 matches found

Cvelist
Cvelist
added 2026/01/20 9:56 p.m.16 views

CVE-2026-21974

...

5.3CVSS0.00219EPSS
Exploits0References1
CVE
CVE
added 2026/01/20 9:56 p.m.15 views

CVE-2026-21974

CVE-2026-21974 affects Oracle Life Sciences Central Designer (component: Platform) with vulnerable version 7.0.1.0. An unauthenticated attacker with network access via HTTP can read a subset of data. The base CVSSv3.1 score is 5.3 (Confidentiality impact: Low). The connected Red Hat, ENISA EUVD, ...

5.3CVSS5.4AI score0.00219EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/20 9:56 p.m.2 views

CVE-2026-21974

...

5.3CVSS7.4AI score0.00219EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/25 12:0 a.m.2 views

Oracle Linux 8 : mingw-expat (ELSA-2025-21974)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-21974 advisory. - Fix the following CVEs CVE-2023-52425 CVE-2024-28757 CVE-2024-45490 CVE-2024-45491 CVE-2024-45492 CVE-2024-50602 CVE-2024-8176 CVE-2025-59375 Tenable has...

9.8CVSS7AI score0.02006EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2025/11/25 12:0 a.m.1 views

RockyLinux 8 : mingw-expat (RLSA-2025:21974)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:21974 advisory. expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing CVE-2025-59375 Tenable h...

7.5CVSS6.3AI score0.01279EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/08/06 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-21974

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: return fail if interface is down in bnxtqueuememalloc The bnxtqueuememalloc is...

5.5CVSS6.3AI score0.00174EPSS
Exploits0References3
OSV
OSV
added 2025/04/02 5:58 a.m.1 views

BELL-CVE-2025-21974

Bulletin has no description...

5.5CVSS7.2AI score0.00174EPSS
Exploits0References1
NVD
NVD
added 2025/04/01 4:15 p.m.9 views

CVE-2025-21974

In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: return fail if interface is down in bnxtqueuememalloc The bnxtqueuememalloc is called to allocate new queue memory when a queue is restarted. It internally accesses rx buffer descriptor corresponding to the index. The ...

5.5CVSS0.00174EPSS
Exploits0References3
CVE
CVE
added 2025/04/01 3:47 p.m.84 views

CVE-2025-21974

CVE-2025-21974 affects the Linux kernel with the bnxt ethernet driver. The vulnerability stems from bnxt_queue_mem_alloc() dereferencing an rx buffer descriptor when a queue restarts while the interface is down, which can trigger a kernel panic. The issue is resolved in the Linux kernel via fixes...

5.5CVSS7.1AI score0.00174EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/04/01 3:47 p.m.13 views

CVE-2025-21974 eth: bnxt: return fail if interface is down in bnxt_queue_mem_alloc()

In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: return fail if interface is down in bnxtqueuememalloc The bnxtqueuememalloc is called to allocate new queue memory when a queue is restarted. It internally accesses rx buffer descriptor corresponding to the index. The ...

0.00174EPSS
Exploits0References3
OSV
OSV
added 2025/04/01 3:47 p.m.6 views

CVE-2025-21974 eth: bnxt: return fail if interface is down in bnxt_queue_mem_alloc()

In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: return fail if interface is down in bnxtqueuememalloc The bnxtqueuememalloc is called to allocate new queue memory when a queue is restarted. It internally accesses rx buffer descriptor corresponding to the index. The ...

5.5CVSS6.1AI score0.00174EPSS
Exploits0References6
GithubExploit
GithubExploit
added 2025/01/10 6:0 p.m.221 views

Exploit for Out-of-bounds Write in Vmware Cloud_Foundation

CVE-2021-21974 PoC - VMware ESXi RCE Exploit Descrição Est...

8.8CVSS9.1AI score0.45063EPSS
Exploits7
NVD
NVD
added 2024/05/03 3:15 a.m.17 views

CVE-2023-42084

PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

5.5CVSS3.3AI score0.00391EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:12 a.m.58 views

CVE-2023-42084

CVE-2023-42084 is a documented EMF parsing out-of-bounds read vulnerability in PDF-XChange Editor. It causes information disclosure by failing to validate EMF data, potentially reading past allocated memory. Exploitation requires user interaction (visiting a malicious page or opening a malicious ...

5.5CVSS3.6AI score0.00391EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2024/05/03 2:12 a.m.16 views

CVE-2023-42084 PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

3.3CVSS3.7AI score0.00391EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/07/18 8:18 p.m.16 views

CVE-2023-21974

...

9CVSS9.2AI score0.00521EPSS
Exploits0References1
CVE
CVE
added 2023/07/18 8:18 p.m.85 views

CVE-2023-21974

The CVE-2023-21974 entry maps to Oracle Application Express Team Calendar Plugin (versions 18.2–22.1). The vulnerability stems from insufficient input validation in the plugin’s User Account component, allowing a low-privileged attacker with network access via HTTP to compromise the plugin, with ...

9CVSS8.8AI score0.00521EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/07/18 8:18 p.m.16 views

CVE-2023-21974

...

9CVSS9.4AI score0.00521EPSS
Exploits0References1
Rapid7 Blog
Rapid7 Blog
added 2023/02/09 6:36 p.m.84 views

Nearly 19,000 ESXi Servers Still Vulnerable to CVE-2021-21974

Last week, multiple organizations issued warnings that a ransomware campaign dubbed “ESXiArgs” was targeting VMware ESXi servers, allegedly by leveraging CVE-2021-21974—a nearly two-year-old heap overflow vulnerability. Two years. And yet, Rapid7 research has found that a significant number of ES...

5.8CVSS0.7AI score0.45063EPSS
Exploits7
hivepro
hivepro
added 2023/02/09 6:52 a.m.175 views

The ESXiArgs ransomware attack is targeting VMware ESXi servers globally

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A global ransomware attack, known as ESXiArgs, is affecting servers using VMware ESXi hypervisors version 6.x prior to 6.7 due to a vulnerability CVE-2021-21974 caused by a heap overflow issue in the Ope...

5.8CVSS3.6AI score0.45063EPSS
Exploits7
Rows per page
Query Builder