Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-22912

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A global-buffer-overflow was found in SWFTools v0.9.2, in the function countline at swf5compiler.flex:327. It allows an attacker to cause code execution...

7.8CVSS7.5AI score0.00357EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 11:58 a.m.9 views

CVE-2025-22912

RE11S v1.11 was discovered to contain a command injection vulnerability via the component /goform/formAccept...

9.8CVSS8AI score0.0188EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/16 12:0 a.m.26 views

CVE-2025-22912

RE11S v1.11 was discovered to contain a command injection vulnerability via the component /goform/formAccept...

0.0188EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/01/16 12:0 a.m.7 views

CVE-2025-22912

RE11S v1.11 was discovered to contain a command injection vulnerability via the component /goform/formAccept...

8.2AI score0.0188EPSS
Exploits1References2
NVD
NVD
added 2024/04/02 9:15 p.m.13 views

CVE-2024-30349

Foxit PDF Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS8.2AI score0.00748EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/04/02 8:14 p.m.21 views

CVE-2024-30349 Foxit PDF Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Foxit PDF Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS8.2AI score0.00748EPSS
Exploits0References2
CVE
CVE
added 2024/04/02 8:14 p.m.71 views

CVE-2024-30349

CVE-2024-30349 describes a remote code execution in Foxit PDF Reader via U3D file parsing. The flaw arises from inadequate validation of user-supplied data during U3D parsing, causing an out-of-bounds write that can execute code in the target process. Exploitation requires user interaction (visit...

7.8CVSS8.3AI score0.00748EPSS
Exploits0References2Affected Software2
Circl
Circl
added 2024/01/19 7:26 p.m.5 views

CVE-2024-22912

creationtimestamp| type| source ---|---|--- 2024-01-19 19:26:50+00:00| seen| https://t.me/ctinow/170359 2024-01-25 19:16:40+00:00| seen| https://t.me/ctinow/173711...

7.8CVSS7.4AI score0.00357EPSS
Exploits1References2
CVE
CVE
added 2024/01/19 12:0 a.m.47 views

CVE-2024-22912

SWFTools v0.9.2 is affected by CVE-2024-22912: a global-buffer-overflow in the countline function (swf5compiler.flex:327) can lead to code execution. This is documented across multiple sources (NVD/CVE listings and vendor advisories). The vulnerability stems from improper input length validation ...

7.8CVSS7.7AI score0.00357EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/01/20 12:0 a.m.72 views

CVE-2023-22912

CVE-2023-22912 affects MediaWiki releases prior to 1.35.9, 1.36.x up to 1.38.x before 1.38.5, and 1.39.x before 1.39.1. The CheckUser TokenManager uses AES-CTR with a repeated nonce, enabling an adversary to decrypt data. Impact is confidentiality of tokens, with network-based exposure and no exp...

5.3CVSS5.1AI score0.00389EPSS
Exploits1References1Affected Software1
OpenVAS
OpenVAS
added 2022/12/23 12:0 a.m.28 views

MediaWiki < 1.35.9, 1.38.0 < 1.38.5, 1.39.0 < 1.39.1 Multiple Vulnerabilities - Windows

MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...

6.1CVSS5.8AI score0.00867EPSS
Exploits4References5
OpenVAS
OpenVAS
added 2022/12/23 12:0 a.m.23 views

MediaWiki < 1.35.9, 1.38.0 < 1.38.5, 1.39.0 < 1.39.1 Information Disclosure Vulnerability - Linux

MediaWiki is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.1CVSS5.5AI score0.00867EPSS
Exploits4References5
vulnersOsv
vulnersOsv
added 2022/02/18 12:0 a.m.3 views

2app (>=1.0.0 <=1.2.8), 2fa-cli (>=1.0.0 <=1.0.4) +4339 more potentially affected by CVE-2022-22912 via plist (>=0.2.1 <=3.0.4)

plist NPM version =0.2.1, =1.0.0, =1.0.0, =0.0.1, =1.0.0, =0.0.1, =1.0.0, =0.0.1-beta.0, =0.0.1, =0.0.12, =0.1.1, =1.0.0, =0.20.0, =0.21.1 - @allroundexperts/rn-swiper =1.0.1 and more Source cves: CVE-2022-22912 Source advisory: OSV:GHSA-4CPG-3VGW-4877...

9.8CVSS7.8AI score0.02553EPSS
Exploits1
NVD
NVD
added 2022/02/17 7:15 p.m.17 views

CVE-2022-22912

Prototype pollution vulnerability via .parse in Plist before v3.0.4 allows attackers to cause a Denial of Service DoS and may lead to remote code execution...

9.8CVSS0.02553EPSS
Exploits1References1
CVE
CVE
added 2022/02/17 6:50 p.m.181 views

CVE-2022-22912

CVE-2022-22912 concerns plist.js, where a prototype pollution flaw in the .parse() function in Plist before 3.0.4 can trigger a Denial of Service and may enable remote code execution. Multiple connected sources confirm the vulnerability class and impact, describing it as a prototype pollution vec...

9.8CVSS9.6AI score0.02553EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/17 6:50 p.m.23 views

CVE-2022-22912

Prototype pollution vulnerability via .parse in Plist before v3.0.4 allows attackers to cause a Denial of Service DoS and may lead to remote code execution...

9.9AI score0.02553EPSS
Exploits1References1
CVE
CVE
added 2021/06/11 3:49 p.m.72 views

CVE-2021-22912

The CVE-2021-22912 issue affects Nextcloud iOS app (before 3.4.2). The root cause is that searches for sharees default to querying the lookup server instead of restricting to the local Nextcloud server unless a global search is explicitly chosen, causing information disclosure of sharee searches....

6.5CVSS5.9AI score0.01367EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder