Lucene search
K

20 matches found

OSV
OSV
added 3 days ago1 views

ROOT-OS-UBUNTU-2204-CVE-2026-31403 CVE-2026-31403 in rootio-linux - Patched by Root

Root has patched CVE-2026-31403 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

5.5CVSS5.8AI score0.00123EPSS
Exploits0
OSV
OSV
added 3 days ago2 views

ROOT-OS-UBUNTU-2404-CVE-2026-31403 CVE-2026-31403 in rootio-linux - Patched by Root

Root has patched CVE-2026-31403 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.5CVSS5.8AI score0.00123EPSS
Exploits0
OSV
OSV
added 3 days ago3 views

ROOT-OS-DEBIAN-12-CVE-2026-31403 CVE-2026-31403 in rootio-linux - Patched by Root

Root has patched CVE-2026-31403 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...

5.5CVSS5.9AI score0.00123EPSS
Exploits0
OSV
OSV
added 3 days ago3 views

ROOT-OS-DEBIAN-11-CVE-2026-31403 CVE-2026-31403 in rootio-linux - Patched by Root

Root has patched CVE-2026-31403 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

5.5CVSS5.9AI score0.00123EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.19 views

SUSE SLES15 Security Update : kernel (SUSE-SU-2026:2202-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2202-1 advisory. The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: -...

9.8CVSS6.9AI score0.92766EPSS
Exploits38References184
Tenable Nessus
Tenable Nessus
added 2026/04/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-31403

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd The /proc/fs/nfs/exports proc entry is created at module init and persists for the module's...

7.8CVSS6AI score0.00123EPSS
Exploits0References3
OSV
OSV
added 2026/04/04 6:9 a.m.2 views

BELL-CVE-2026-31403

Bulletin has no description...

7.8CVSS5.8AI score0.00123EPSS
Exploits0References1
Circl
Circl
added 2026/04/03 4:9 p.m.2 views

CVE-2026-31403

creationtimestamp| type| source ---|---|--- 2026-04-03 16:09:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mim46qlf6e2n 2026-05-05 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/debian-linux-kernel-multiple-vulnerabilities20260506 2026-05-31 20:00:00+00:00| seen...

7.8CVSS5.7AI score0.00123EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 10:47 a.m.7 views

CVE-2022-31403

ITOP v3.0.1 was discovered to contain a cross-site scripting XSS vulnerability via /itop/pages/ajax.render.php...

6.1CVSS6.2AI score0.01711EPSS
Exploits1References1
Circl
Circl
added 2025/04/04 2:40 p.m.11 views

CVE-2025-31403

creationtimestamp| type| source ---|---|--- 2025-04-04 14:40:15+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3llyninijha2p 2025-04-04 15:48:17+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114280477286926972 2025-04-04 15:48:17+00:00| seen|...

9.3CVSS8.7AI score0.00369EPSS
Exploits0References4
NVD
NVD
added 2024/06/11 5:15 a.m.25 views

CVE-2024-31403

Incorrect authorization vulnerability in Cybozu Garoon 5.0.0 to 6.0.0 allows a remote authenticated attacker to alter and/or obtain the data of Memo...

5.4CVSS0.00288EPSS
Exploits0References2
CVE
CVE
added 2023/11/14 12:59 a.m.72 views

CVE-2023-31403

CVE-2023-31403 – SAP Business One 10.0 improper access control involves insufficient authentication/authorization checks on the SMB shared folder, allowing an attacker to read/write to that folder and potentially execute files via the installation process. Affected software is SAP Business One (1...

9.6CVSS8AI score0.00436EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/20 10:39 a.m.34 views

Security Bulletin: IBM Security Verify Governance is vulnerable to sensitive information exposure and denial of service (CVE-2021-31403, CVE-2021-33609)

Summary IBM Security Verify Governance is vulnerable to sensitive information exposure and denial of service due to vulnerabilities in Vaadin JAR. The fix involves upgrading the Vaadin JAR to the patched version. Vulnerability Details CVEID:CVE-2021-31403 DESCRIPTION: Vaadin could allow a local...

4.3CVSS5.2AI score0.00915EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/04 12:42 p.m.29 views

Security Bulletin: IBM Security Verify Governance is vulnerable to sensitive information exposure (CVE-2021-31403)

Summary IBM Security Verify Governance is vulnerable to sensitive information exposure due to vulnerabilities in Vaadin JAR CVE-2021-31403. The fix involves upgrading the Vaadin JAR to the patched version. Vulnerability Details CVEID:CVE-2021-31403 DESCRIPTION: Vaadin could allow a local attacker...

4CVSS4.4AI score0.00306EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/06/14 5:15 p.m.6 views

CVE-2022-31403

ITOP v3.0.1 was discovered to contain a cross-site scripting XSS vulnerability via /itop/pages/ajax.render.php...

6.1CVSS6.2AI score0.01711EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/06/14 4:17 p.m.22 views

CVE-2022-31403

ITOP v3.0.1 was discovered to contain a cross-site scripting XSS vulnerability via /itop/pages/ajax.render.php...

6.2AI score0.01711EPSS
Exploits1References3
CVE
CVE
added 2022/06/14 4:17 p.m.67 views

CVE-2022-31403

CVE-2022-31403 affects the IT service management platform iTop (notably v3.0.x, with the core issue reported as an XSS via /itop/pages/ajax.render.php). The Red Hat advisory confirms the existence of an XSS vulnerability in ITOP 3.0.1, with public-facing impact described as cross-site scripting. ...

6.1CVSS6AI score0.01711EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2021/04/23 4:5 p.m.207 views

CVE-2021-31403

CVE-2021-31403 is a timing-side-channel vulnerability in Vaadin’s UIDL request handler (com.vaadin:vaadin-server). A non-constant-time comparison of CSRF tokens can let a local attacker guess the token. Affected are Vaadin Server versions: 7.0.0–7.7.23 and 8.0.0–8.12.2. IBM advisories describe it...

4CVSS3.6AI score0.00306EPSS
Exploits0References3Affected Software1
vulnersOsv
vulnersOsv
added 2021/04/19 2:51 p.m.4 views

ca.qc.ircm:plate-layout (=0.8), com.github.mvysny.karibudsl:karibu-dsl-v8 (>=1.0.0 <=1.0.4) +65 more potentially affected by CVE-2021-31403 via com.vaadin:vaadin-server (>=8.0.0 <=8.12.2)

com.vaadin:vaadin-server MAVEN version =8.0.0, =1.0.0, =1.0.0, =1.1.20, =1.0.0, =2.0.3, =8.0.0, =8.0.0, =8.0.0, =8.0.0, =8.0.0, =8.0.0, =8.12.2 and more Source cves: CVE-2021-31403 Source advisory: OSV:GHSA-75XC-QVXH-27F8...

4CVSS5.8AI score0.00306EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2021/04/19 2:51 p.m.62 views

Timing side channel vulnerability in UIDL request handler in Vaadin 7 and 8

Non-constant-time comparison of CSRF tokens in UIDL request handler in com.vaadin:vaadin-server versions 7.0.0 through 7.7.23 Vaadin 7.0.0 through 7.7.23, and 8.0.0 through 8.12.2 Vaadin 8.0.0 through 8.12.2 allows attacker to guess a security token via timing attack -...

4CVSS3.9AI score0.00306EPSS
Exploits0References6Affected Software2
Rows per page
Query Builder