Lucene search
+L

12 matches found

nessus
nessus
added 2026/03/24 12:0 a.m.6 views

TencentOS Server 4: grafana (TSSA-2026:0177)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0177 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

9.8CVSS8AI score0.02784EPSS
Exploits3References2
opensuse
opensuse
added 2026/03/14 12:0 a.m.4 views

heroic-games-launcher-2.20.1-3.1 on GA media (moderate)

heroic-games-launcher-2.20.1-3.1 on GA media Announcement ID: openSUSE-SU-2026:10327-1 Rating: moderate Cross-References: CVE-2026-28292 CVSS scores: CVE-2026-28292 SUSE : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerabili...

9.8CVSS5.8AI score0.01296EPSS
Exploits1
nvd
nvd
added 2026/03/10 7:17 p.m.14 views

CVE-2026-28292

simple-git, an interface for running git commands in any node.js application, has an issue in versions 3.15.0 through 3.32.2 that allows an attacker to bypass two prior CVE fixes CVE-2022-25860 and CVE-2022-25912 and achieve full remote code execution on the host machine. Version 3.23.0 contains ...

9.8CVSS0.01296EPSS
Exploits1References7
circl
circl
added 2026/03/10 6:38 p.m.8 views

CVE-2026-28292

creationtimestamp| type| source ---|---|--- 2026-03-10 18:38:56+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-r275-fr43-pm7q 2026-03-10 20:10:05+00:00| seen| https://gist.github.com/alon710/55440ca983eb1e00bbb022804644523d 2026-03-12 18:00:14+00:00| seen|...

9.8CVSS7.1AI score0.01296EPSS
Exploits1References5
cve
cve
added 2026/03/10 6:34 p.m.37 views

CVE-2026-28292

The CVE-2026-28292 entry concerns the Node.js package simple-git. Affected versions are 3.15.0 through 3.32.2 and the issue bypasses prior fixes from CVE-2022-25860 and CVE-2022-25912, enabling full remote code execution on the host. A fix is noted in version 3.23.0. No exploitation details or in...

9.8CVSS6.4AI score0.01296EPSS
Exploits1References7Affected Software1
osv
osv
added 2026/03/10 6:34 p.m.10 views

CVE-2026-28292 simple-git has blockUnsafeOperationsPlugin bypass via case-insensitive protocol.allow config key that enables RCE

simple-git, an interface for running git commands in any node.js application, has an issue in versions 3.15.0 through 3.32.2 that allows an attacker to bypass two prior CVE fixes CVE-2022-25860 and CVE-2022-25912 and achieve full remote code execution on the host machine. Version 3.23.0 contains ...

9.8CVSS6.7AI score0.01296EPSS
Exploits1References9
nvd
nvd
added 2023/04/11 9:15 p.m.22 views

CVE-2023-28292

Raw Image Extension Remote Code Execution Vulnerability...

7.8CVSS8AI score0.00598EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2023/04/11 7:13 p.m.25 views

CVE-2023-28292 Raw Image Extension Remote Code Execution Vulnerability

...

7.8CVSS7.2AI score0.00598EPSS
Exploits0References1
cve
cve
added 2023/04/11 7:13 p.m.132 views

CVE-2023-28292

CVE-2023-28292 is a Windows Raw Image Extension Remote Code Execution vulnerability. The issues affect the Windows Raw Image Extensions component (Windows 10/11 families and related builds) and are described in multiple sources (NVD/MSRC/NCSC). Root cause and affected specifics are tied to the Ra...

7.8CVSS7.9AI score0.00598EPSS
Exploits0References1Affected Software1
nessus
nessus
added 2023/04/11 12:0 a.m.206 views

Microsoft Windows Raw Image Extensions Library Multiple Vulnerabilities (April 2023)

The Windows 'Raw Image Extensions' app installed on the remote host is affected by multiple code execution vulnerabilities: - A remote code execution vulnerability exists in the Microsoft Windows Codecs Library Raw Image. An attacker who successfully exploited the vulnerability could execute...

8.4CVSS9.3AI score0.00617EPSS
Exploits0References4
cvelist
cvelist
added 2021/01/22 7:44 p.m.11 views

CVE-2020-28292

...

Exploits0
cve
cve
added 2021/01/22 7:44 p.m.22 views

CVE-2020-28292

CVE-2020-28292 entry is rejected/not used and does not represent an active vulnerability.

6.9AI score
Exploits0
Rows per page
Query Builder