Lucene search
K

32 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:11 a.m.8 views

CVE-2023-32672

An Incorrect authorisation check in SQLLab in Apache Superset versions up to and including 2.1.0. This vulnerability allows an authenticated user to query tables that they do not have proper access to within Superset. The vulnerability can be exploited by leveraging a SQL parsing vulnerability...

4.3CVSS7AI score0.0074EPSS
Exploits0References1
Circl
Circl
added 2025/04/11 8:50 a.m.9 views

CVE-2025-32672

creationtimestamp| type| source ---|---|--- 2025-04-11 08:50:14+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/11390 2025-04-11 11:37:49+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmjwksbzig2v 2025-04-11 11:48:44+00:00| seen|...

8.1CVSS8.7AI score0.00828EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/04/11 8:43 a.m.25 views

CVE-2025-32672 WordPress Ultimate Bootstrap Elements for Elementor plugin <= 1.4.9 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in g5theme Ultimate Bootstrap Elements for Elementor ultimate-bootstrap-elements-for-elementor allows PHP Local File Inclusion.This issue affects Ultimate Bootstrap Elements for...

8.1CVSS0.00828EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/09 4:14 p.m.5 views

WordPress Ultimate Bootstrap Elements for Elementor plugin <= 1.4.9 - Local File Inclusion Vulnerability

Local File Inclusion Vulnerability discovered by LVT-tholv2k in WordPress Plugin Ultimate Bootstrap Elements for Elementor versions = 1.4.9...

8.1CVSS8.2AI score0.00828EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2021-32672

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Redis is an open source, in-memory database that persists on disk. When using the Redis Lua Debugger, users can send malformed requests that cause the debugger'...

5.3CVSS6.3AI score0.01702EPSS
Exploits0References2
NVD
NVD
added 2024/05/14 3:36 p.m.14 views

CVE-2024-32672

A Segmentation Fault issue discovered in Samsung Open Source Escargot JavaScript engine allows remote attackers to cause a denial of service via crafted input. This issue affects Escargot: 4.0.0...

5.3CVSS5.3AI score0.00791EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/09 6:54 a.m.22 views

CVE-2024-32672

A Segmentation Fault issue discovered in Samsung Open Source Escargot JavaScript engine allows remote attackers to cause a denial of service via crafted input. This issue affects Escargot: 4.0.0...

5.3CVSS7AI score0.00791EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/09 6:54 a.m.29 views

CVE-2024-32672

A Segmentation Fault issue discovered in Samsung Open Source Escargot JavaScript engine allows remote attackers to cause a denial of service via crafted input. This issue affects Escargot: 4.0.0...

5.3CVSS5.7AI score0.00791EPSS
Exploits0References1
NVD
NVD
added 2023/09/06 2:15 p.m.31 views

CVE-2023-32672

An Incorrect authorisation check in SQLLab in Apache Superset versions up to and including 2.1.0. This vulnerability allows an authenticated user to query tables that they do not have proper access to within Superset. The vulnerability can be exploited by leveraging a SQL parsing vulnerability...

4.3CVSS4.6AI score0.0074EPSS
Exploits0References1
CVE
CVE
added 2023/09/06 1:16 p.m.53 views

CVE-2023-32672

The CVE-2023-32672 entry concerns an incorrect authorization check in SQLLab of Apache Superset up to version 2.1.0. The vulnerability allows an authenticated user to query tables they should not access due to a SQL parsing vulnerability. The affected component is Apache Superset’s SQLLab feature...

4.3CVSS4.5AI score0.0074EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/08/31 12:15 p.m.0 views

BELL-CVE-2021-32672 CVE-2021-32672 does not affect BellSoft software

Bulletin has no description...

4.3CVSS5.8AI score0.01702EPSS
Exploits0References1
NVD
NVD
added 2023/05/29 6:15 p.m.10 views

CVE-2022-32672

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2022. Notes: none...

6.5AI score
Exploits0
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-5221-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.1AI score0.31049EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/09/29 12:0 a.m.81 views

GLSA-202209-17 : Redis: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202209-17 Redis: Multiple Vulnerabilities - Redis is an open source, in-memory database that persists on disk. In affected versions specially crafted Lua scripts executing in Redis can cause the heap-based Lua stack to be...

9.8CVSS8.1AI score0.31049EPSS
Exploits3References21
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/29 2:12 p.m.52 views

Security Bulletin: IBM Cloud Pak for Multicloud Management Monitoring is vulnerable to various attacks due to its use of redis (CVE-2021-32675, CVE-2021-32626, CVE-2021-32672)

Summary Redis is used by several components in IBM Cloud Pak for Multicloud Management Monitoring as an in-memory shared cache database. It is not exposed outside the cluster. Vulnerability Details CVEID: CVE-2021-32672 DESCRIPTION: Redis could allow a remote authenticated attacker to obtain...

8.8CVSS1.3AI score0.1578EPSS
Exploits0Affected Software1
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.31 views

CVE-2021-32672 affecting package redis for versions less than 6.2.6-1

CVE-2021-32672 affecting package redis for versions less than 6.2.6-1. An upgraded version of the package is available that resolves this issue...

5.3CVSS6.6AI score0.01702EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/11/25 12:0 a.m.28 views

openSUSE: Security Advisory for redis (openSUSE-SU-2021:3772-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9CVSS7.4AI score0.1578EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/11/24 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2021:3772-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS6.8AI score0.1578EPSS
Exploits0References2
OSV
OSV
added 2021/11/23 2:48 p.m.14 views

OPENSUSE-SU-2021:3772-1 Security update for redis

This update for redis fixes the following issues: - CVE-2021-32627: Fixed integer to heap buffer overflows with streams bsc1191305. - CVE-2021-32628: Fixed integer to heap buffer overflows handling ziplist-encoded data types bsc1191305. - CVE-2021-32687: Fixed integer to heap buffer overflow with...

9CVSS6.8AI score0.1578EPSS
Exploits0References16
OpenVAS
OpenVAS
added 2021/11/06 12:0 a.m.44 views

Debian: Security Advisory (DLA-2810-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS6.9AI score0.1578EPSS
Exploits0References3
Rows per page
Query Builder