Lucene search
+L

60 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 7 : libwebp-0.3.0-10.el7 (AXSA:2021-1858:01)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-1858:01 advisory. libwebp: heap-based buffer overflow in PutLE16 CVE-2018-25011 libwebp: heap-based buffer overflow in WebPDecodeInto functions CVE-2020-36328 libwebp...

9.8CVSS5.9AI score0.02662EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : libwebp-1.0.0-3.el8 (AXSA:2021-2201:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2201:02 advisory. libwebp: heap-based buffer overflow in PutLE16 CVE-2018-25011 libwebp: heap-based buffer overflow in WebPDecodeInto functions CVE-2020-36328 libwebp...

9.8CVSS5.9AI score0.02662EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-25011

Malicious code in bioql PyPI...

6.3CVSS5.8AI score0.00592EPSS
Exploits1References2
NVD
NVD
added 2025/09/18 12:15 p.m.25 views

CVE-2024-25011

Ericsson Catalog Manager and Ericsson Order Care APIs do not have authentication enabled by default. Authentication checks can be configured to remediate the information disclosure issue...

5.3CVSS0.00258EPSS
Exploits0References1
Circl
Circl
added 2025/09/18 11:48 a.m.18 views

CVE-2024-25011

creationtimestamp| type| source ---|---|--- 2025-09-18 11:48:09+00:00| seen| Telegram/Qd5YiNkh3Ep71IKXeXe9OgR38qsKZjCMR20h93RoQ2PXYF4...

5.3CVSS4.8AI score0.00258EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/09/18 11:38 a.m.3 views

CVE-2024-25011 Ericsson Catalog Manager and Ericsson Order Care - Exposure of Sensitive Information Vulnerability

Ericsson Catalog Manager and Ericsson Order Care APIs do not have authentication enabled by default. Authentication checks can be configured to remediate the information disclosure issue...

5.3CVSS6.2AI score0.00258EPSS
Exploits0References1
Circl
Circl
added 2025/07/30 9:1 a.m.11 views

CVE-2025-25011

creationtimestamp| type| source ---|---|--- 2025-07-30 09:01:24+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lv6b4hzbyo2h...

7CVSS6.6AI score0.00138EPSS
Exploits0References1
CVE
CVE
added 2025/07/30 12:15 a.m.46 views

CVE-2025-25011

CVE-2025-25011 affects Elastic Beats (notably Filebeat) installed via Windows, where the Windows install script can trigger an Uncontrolled Search Path Element leading to Local Privilege Escalation through insecure directory permissions. Affected versions include Beats prior to 9.1.0 (with mainte...

7CVSS6.5AI score0.00138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:23 a.m.8 views

CVE-2023-25011

PC settings tool Ver10.1.26.0 and earlier, PC settings tool Ver11.0.22.0 and earlier allows a attacker to write to the registry as administrator privileges with standard user privileges...

7.8CVSS6.8AI score0.00165EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:9 p.m.12 views

CVE-2021-25011

The Maps Plugin using Google Maps for WordPress plugin before 1.8.1 does not have proper authorisation and CSRF in most of its AJAX actions, which could allow any authenticated users, such as subscriber to delete arbitrary posts and update the plugin's settings...

5.7CVSS6.9AI score0.0042EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:17 a.m.8 views

CVE-2019-25011

NetBox through 2.6.2 allows an Authenticated User to conduct an XSS attack against an admin via a GFM-rendered field, as demonstrated by /dcim/sites/add/ comments...

5.4CVSS6AI score0.00555EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.11 views

Alibaba Cloud Linux 3 : 0038: libwebp (ALINUX3-SA-2021:0038)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0038 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2018-25011: A flaw was found in libweb...

9.8CVSS7.6AI score0.02662EPSS
Exploits0References4
Redos
Redos
added 2024/03/13 12:0 a.m.12 views

ROS-2-1453

2.1453 Multiple vulnerabilities in libwebp 1. Vulnerability description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...

9.8CVSS10AI score0.02662EPSS
Exploits0
Circl
Circl
added 2023/02/15 7:36 a.m.7 views

CVE-2023-25011

creationtimestamp| type| source ---|---|--- 2023-02-15 07:36:33+00:00| seen| https://t.me/cibsecurity/58215 2025-03-19 16:18:16+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8091...

7.8CVSS7.8AI score0.00165EPSS
Exploits0References2
NVD
NVD
added 2023/02/15 4:15 a.m.32 views

CVE-2023-25011

PC settings tool Ver10.1.26.0 and earlier, PC settings tool Ver11.0.22.0 and earlier allows a attacker to write to the registry as administrator privileges with standard user privileges...

7.8CVSS7.6AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 2023/02/15 4:15 a.m.7 views

CVE-2023-25011

PC settings tool Ver10.1.26.0 and earlier, PC settings tool Ver11.0.22.0 and earlier allows a attacker to write to the registry as administrator privileges with standard user privileges...

7.8CVSS7.1AI score0.00165EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/15 12:0 a.m.9 views

CVE-2023-25011

PC settings tool Ver10.1.26.0 and earlier, PC settings tool Ver11.0.22.0 and earlier allows a attacker to write to the registry as administrator privileges with standard user privileges...

6.8AI score0.00165EPSS
Exploits0References1
CVE
CVE
added 2023/02/15 12:0 a.m.63 views

CVE-2023-25011

The CVE-2023-25011 entry concerns NEC PC Settings Tool (Library) shipped with NEC systems. Affected versions are PC Settings Tool 10.x (specifically 10.1.26.0 and earlier) and 11.x (11.0.22.0 and earlier). The root cause is missing authentication for critical functions, enabling a user with stand...

7.8CVSS7.5AI score0.00165EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/02/15 12:0 a.m.33 views

CVE-2023-25011

PC settings tool Ver10.1.26.0 and earlier, PC settings tool Ver11.0.22.0 and earlier allows a attacker to write to the registry as administrator privileges with standard user privileges...

7.8AI score0.00165EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/02/10 7:15 a.m.2 views

CVE-2023-22369

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-25011. Reason: This candidate is a duplicate of CVE-2023-25011. Notes: All CVE users should reference CVE-2023-25011 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage...

7.8CVSS7.1AI score0.00165EPSS
Exploits0References1
Rows per page
Query Builder