Lucene search
K

78 matches found

Circl
Circl
added 2026/06/29 8:0 a.m.12 views

CVE-2025-2902

creationtimestamp| type| source ---|---|--- 2026-06-29 08:00:55+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mpfzht3xd223 2026-06-29 08:48:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpg45kog3k2e 2026-06-29 10:41:57+00:00| seen|...

8.3CVSS5.8AI score0.00195EPSS
Exploits0References4
CVE
CVE
added 2026/06/29 5:52 a.m.13 views

CVE-2025-2902

CVE-2025-2902 describes an improper authorization vulnerability in the maintenance utility (management GUI) of Hitachi Virtual Storage Platform family. Affected products include Hitachi Virtual Storage Platform E390/E590/E790/E990/E1090 and E390H/E590H/E790H/E1090H (before DKCMAIN Ver. 93-07-26-x...

8.3CVSS5.8AI score0.00195EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/29 5:52 a.m.7 views

CVE-2025-2902

Improper Authorization Vulnerability of Maintenance Utility in Hitachi Virtual Storage Platform. This issue affects Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H: before DKCMAIN Ver. 93-07-26-xx/00, GUM Ver. 93-07-26/00; Hitachi Virtual Storage Platfo...

8.3CVSS5.8AI score0.00195EPSS
Exploits0References2
Circl
Circl
added 2026/04/29 3:11 p.m.8 views

CVE-2026-2902

creationtimestamp| type| source ---|---|--- 2026-04-29 15:11:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mknf2z2skm2p...

6.1CVSS4.9AI score0.00215EPSS
Exploits0References1
CVE
CVE
added 2026/04/29 11:17 a.m.14 views

CVE-2026-2902

The CVE-2026-2902 entry concerns the WordPress plugin WP Meteor Website Speed Optimization Addon. Affected component: the plugin’s frontend_rewrite logic uses a WPMETEOR[N]WPMETEOR placeholder, with insufficient input sanitization and output escaping, making all versions up to 3.4.16 vulnerable t...

6.1CVSS5.5AI score0.00215EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/03/31 6:53 a.m.3 views

Security information for Hitachi Disk Array Systems

Overview A vulnerability exists in the management gui maintenance utility of Hitachi Disk Array Systems that involves improper authorization vulnerability. CVE-2025-2902 Impact Regarding the impact of the vulnerability, please refer to the vendor advisory. Solution Please refer to the 'Vendor...

8.3CVSS5.9AI score0.00195EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/25 12:0 a.m.9 views

Amazon Linux 2 : postgresql (ALAS-2025-2902)

The version of postgresql installed on the remote host is prior to 9.2.24-8. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2902 advisory. Buffer over-read in PostgreSQL GB18030 encoding validation allows a database input provider to achieve temporary denial of...

5.9CVSS6.7AI score0.00612EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 3:38 a.m.19 views

CVE-2023-2902

A vulnerability was found in NFine Rapid Development Platform 20230511. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /SystemManage/Organize/GetTreeGridJson?search=false=1681813520783=10000=1==asc. The manipulation leads to improper access...

6.5CVSS6.8AI score0.00678EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:23 p.m.11 views

CVE-2020-2902

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

8.8CVSS7AI score0.00568EPSS
Exploits0
OSV
OSV
added 2024/03/26 8:15 p.m.3 views

CVE-2024-2902

A vulnerability was found in Tenda AC7 15.03.06.44 and classified as critical. This issue affects the function fromSetWifiGusetBasic of the file /goform/WifiGuestSet. The manipulation of the argument shareSpeed leads to stack-based buffer overflow. The attack may be initiated remotely. The exploi...

8.8CVSS6.3AI score0.01755EPSS
Exploits1References4
CVE
CVE
added 2024/03/26 8:0 p.m.60 views

CVE-2024-2902

CVE-2024-2902 affects Tenda AC7 firmware version 15.03.06.44. The vulnerability is in the function fromSetWifiGusetBasic within /goform/WifiGuestSet, where manipulating the shareSpeed argument causes a stack-based buffer overflow. Exploitation can be performed remotely and the vulnerability has b...

9CVSS8.9AI score0.01755EPSS
Exploits1References4Affected Software1
Circl
Circl
added 2024/02/26 9:12 a.m.5 views

CVE-2014-2902

creationtimestamp| type| source ---|---|--- 2024-02-26 09:12:05+00:00| seen| https://t.me/ctinow/193176...

7.5CVSS7.3AI score0.00812EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/01/24 8:23 p.m.3 views

Malicious code in wlwz-2312-2902 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware da8481e470c8fb3c78dd38b15cf1ac8de2e6a56a3618353715e2067515844803 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2024/01/24 8:23 p.m.8 views

MAL-2024-433 Malicious code in wlwz-2312-2902 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware da8481e470c8fb3c78dd38b15cf1ac8de2e6a56a3618353715e2067515844803 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Circl
Circl
added 2024/01/09 3:17 p.m.7 views

CVE-2019-2902

creationtimestamp| type| source ---|---|--- 2024-01-09 15:17:19+00:00| seen| https://t.me/ctinow/165051...

7.5CVSS7.9AI score0.01252EPSS
Exploits0References1
Circl
Circl
added 2023/11/29 11:1 a.m.7 views

CVE-2020-2902

creationtimestamp| type| source ---|---|--- 2023-11-29 11:01:08+00:00| seen| https://t.me/arpsyndicate/721...

8.8CVSS8AI score0.00568EPSS
Exploits0References1
CVE
CVE
added 2023/05/25 10:0 p.m.44 views

CVE-2023-2902

CVE-2023-2902 affects NFine Rapid Development Platform (version 20230511). The issue lies in the GetTreeGridJson endpoint under SystemManage/Organize, enabling improper access controls that could be exploited remotely. Public exploit information exists per the sources, with confidentiality impact...

6.5CVSS5.4AI score0.00678EPSS
Exploits1References3Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:58 a.m.5 views

SUSE CVE-2010-2902

The SVG implementation in Google Chrome before 5.0.375.125 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via unknown vectors...

10CVSS7.1AI score0.01529EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:3 a.m.3 views

SUSE CVE-2020-2902

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle V...

8.8CVSS8.7AI score0.00568EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/01/31 12:0 a.m.34 views

Debian DLA-2902-1 : graphicsmagick - LTS security update

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-2902 advisory. - GraphicsMagick through 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c. CVE-2020-12672 Note that Nessus has not tested for this issue but has...

7.5CVSS8.4AI score0.02853EPSS
Exploits1References5
Rows per page
Query Builder