Lucene search
K

20 matches found

Circl
Circl
added 2026/03/12 10:17 p.m.8 views

CVE-2026-32248

creationtimestamp| type| source ---|---|--- 2026-03-12 22:17:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgvgiq367b2x 2026-03-13 07:32:29+00:00| seen| https://infosec.exchange/users/offseq/statuses/116220700178176253 2026-03-13 08:10:06+00:00| seen|...

9.8CVSS4.8AI score0.00627EPSS
Exploits0References3
OSV
OSV
added 2026/03/12 7:14 p.m.4 views

CVE-2026-32248 Parse Server: Account takeover via operator injection in authentication data identifier

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.12 and 8.6.38, an unauthenticated attacker can take over any user account that was created with an authentication provider that does not validate the format of the user...

9.3CVSS5.8AI score0.00627EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 10:56 p.m.6 views

CVE-2022-32248

Due to missing input validation in the Manage Checkbooks component of SAP S/4HANA - version 101, 102, 103, 104, 105, 106, an attacker could insert or edit the value of an existing field in the database. This leads to an impact on the integrity of the data...

5.3CVSS6.8AI score0.00617EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/06 5:1 p.m.29 views

CVE-2025-32248

Cross-Site Request Forgery CSRF vulnerability in SwiftXR SwiftXR 3D/AR/VR Viewer swiftxr-3darvr-viewer allows Cross Site Request Forgery.This issue affects SwiftXR 3D/AR/VR Viewer: from n/a through = 1.0.7...

5.4CVSS7.2AI score0.00212EPSS
Exploits0References1
NVD
NVD
added 2025/04/04 4:15 p.m.6 views

CVE-2025-32248

Cross-Site Request Forgery CSRF vulnerability in SwiftXR SwiftXR 3D/AR/VR Viewer swiftxr-3darvr-viewer allows Cross Site Request Forgery.This issue affects SwiftXR 3D/AR/VR Viewer: from n/a through = 1.0.7...

5.4CVSS0.00212EPSS
Exploits0References1
CVE
CVE
added 2025/04/04 3:59 p.m.56 views

CVE-2025-32248

Technical details for CVE-2025-32248 are not provided in the connected documents; no root-cause, affected components, exploit data, or fixes are included. Monitor for updates.

5.4CVSS7.2AI score0.00212EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/04 3:59 p.m.8 views

CVE-2025-32248 WordPress SwiftXR (3D/AR/VR) Viewer plugin <= 1.0.7 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in SwiftXR SwiftXR 3D/AR/VR Viewer allows Cross Site Request Forgery. This issue affects SwiftXR 3D/AR/VR Viewer: from n/a through 1.0.7...

5.4CVSS7.2AI score0.00212EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/04 3:59 p.m.16 views

CVE-2025-32248 WordPress SwiftXR (3D/AR/VR) Viewer plugin <= 1.0.7 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in SwiftXR SwiftXR 3D/AR/VR Viewer swiftxr-3darvr-viewer allows Cross Site Request Forgery.This issue affects SwiftXR 3D/AR/VR Viewer: from n/a through = 1.0.7...

5.4CVSS0.00212EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/04 1:38 p.m.7 views

WordPress SwiftXR (3D/AR/VR) Viewer plugin <= 1.0.7 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Affan Ali - @MuslimFromPK in WordPress Plugin SwiftXR 3D/AR/VR Viewer versions = 1.0.7...

5.4CVSS8.4AI score0.00212EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-32248

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2TREECONNECT and...

7.5CVSS6.6AI score0.0406EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/08/31 12:0 a.m.31 views

CBL Mariner 2.0 Security Update: kernel (CVE-2023-32248)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-32248 advisory. - A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw...

7.5CVSS7.1AI score0.0406EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2023/08/30 2:44 p.m.33 views

CVE-2023-32248 affecting package kernel for versions less than 5.15.126.1-1

CVE-2023-32248 affecting package kernel for versions less than 5.15.126.1-1. A patched version of the package is available...

7.5CVSS8AI score0.0406EPSS
Exploits0
Circl
Circl
added 2023/07/24 8:26 p.m.6 views

CVE-2023-32248

creationtimestamp| type| source ---|---|--- 2023-07-24 20:26:27+00:00| seen| https://t.me/cibsecurity/67171...

7.5CVSS6.5AI score0.0406EPSS
Exploits0References1
OSV
OSV
added 2023/07/24 4:15 p.m.7 views

AZL-27760 CVE-2023-32248 affecting package kernel for versions less than 5.15.126.1-1

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2TREECONNECT and SMB2QUERYINFO commands. The issue results from the lack of proper validation of a pointer prior to accessing it. An attacker can leverage this...

7.5CVSS6.7AI score0.0406EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2023/07/24 4:15 p.m.26 views

CVE-2023-32248

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2TREECONNECT and SMB2QUERYINFO commands. The issue results from the lack of proper validation of a pointer prior to accessing it. An attacker can leverage this...

7.5CVSS6.7AI score0.0406EPSS
Exploits0References8
CVE
CVE
added 2023/07/24 3:19 p.m.121 views

CVE-2023-32248

CVE-2023-32248 describes a flaw in the Linux kernel’s ksmbd (the in-kernel SMB server) related to the handling of SMB2_TREE_CONNECT and SMB2_QUERY_INFO. The issue stems from the lack of proper validation of a pointer before access, which attackers can leverage to cause a denial-of-service conditi...

7.5CVSS8.1AI score0.0406EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/07/24 3:19 p.m.27 views

CVE-2023-32248 Tree connection null pointer dereference denial-of-service vulnerability

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2TREECONNECT and SMB2QUERYINFO commands. The issue results from the lack of proper validation of a pointer prior to accessing it. An attacker can leverage this...

7.5CVSS8.4AI score0.0406EPSS
Exploits0References4
NVD
NVD
added 2022/07/12 9:15 p.m.13 views

CVE-2022-32248

Due to missing input validation in the Manage Checkbooks component of SAP S/4HANA - version 101, 102, 103, 104, 105, 106, an attacker could insert or edit the value of an existing field in the database. This leads to an impact on the integrity of the data...

5.3CVSS0.00617EPSS
Exploits0References2
CVE
CVE
added 2022/07/12 8:27 p.m.58 views

CVE-2022-32248

CVE-2022-32248 describes an input validation error in SAP S/4HANA (Manage Checkbooks component) affecting versions 101–106. The issue allows an attacker to insert or edit the value of an existing database field, leading to data integrity impact. The CVSS shows a network attack vector, no authenti...

5.3CVSS5.1AI score0.00617EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2019/09/11 12:0 a.m.5 views

CentOS Web Panel Input Validation Error Vulnerability (CNVD-2019-32248)

CentOS Web Panel CWP is a free web hosting control panel. An input validation error vulnerability exists in CentOS Web Panel version 0.9.8.851, which can be exploited by an attacker to delete an affected user's mail account...

6.5CVSS6.9AI score0.01787EPSS
Exploits2References1
Rows per page
Query Builder