Lucene search
K

66 matches found

Packet Storm
Packet Storm
added 2026/03/03 12:0 a.m.158 views

📄 libvips 8.19.0 vips_extract_area_build Local Integer Overflow

This Python script performs an advanced security audit on libvips version 8.19.0. It specifically targets the integer overflow vulnerability in the function vipsextractareabuild...

5.5CVSS6AI score0.00214EPSS
Exploits2
Circl
Circl
added 2026/02/27 5:50 a.m.25 views

CVE-2026-3284

creationtimestamp| type| source ---|---|--- 2026-02-27 05:50:25+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfszc5jyy32n...

5.5CVSS4AI score0.00214EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2025/06/02 2:29 a.m.5 views

CVE-2025-20677

In Bluetooth driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00412256; Issue ID: MSV-3284...

6.7AI score0.00144EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:13 p.m.6 views

CVE-2022-3284

Download key for a file in a vault was passed in an insecure way that could easily be logged in M-Files New Web in M-Files before 22.11.12011.0. This issue affects M-Files New Web: before 22.11.12011.0...

7.5CVSS6.9AI score0.00672EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:29 p.m.6 views

CVE-2009-3284

Directory traversal vulnerability in phpspot PHP BBS, PHP Image Capture BBS, PHP & CSS BBS, PHP BBS CE, PHPRSSBuilder, and webshot, dated before 20090914, allows remote attackers to read arbitrary files via unspecified vectors...

5CVSS7.2AI score0.01505EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/19 2:22 a.m.4 views

CVE-2025-3284 User Registration & Membership PRO – Custom Registration Form, Login Form, and User Profile <= 5.1.3 - Cross-Site Request Forgery to User Deletion

The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.1.3. This is due to missing or incorrect nonce validation on the userregistrationprodeleteaccount...

4.3CVSS4.3AI score0.00133EPSS
Exploits0References2
CVE
CVE
added 2025/04/19 2:22 a.m.57 views

CVE-2025-3284

CVE-2025-3284 concerns WordPress plugin User Registration & Membership PRO (

4.3CVSS4.3AI score0.00133EPSS
Exploits0References2
OSV
OSV
added 2023/08/31 12:15 p.m.0 views

BELL-CVE-2018-3284 CVE-2018-3284 does not affect BellSoft software

Bulletin has no description...

4.4CVSS5.8AI score0.023EPSS
Exploits0References1
NVD
NVD
added 2023/03/06 11:15 a.m.14 views

CVE-2022-3284

Download key for a file in a vault was passed in an insecure way that could easily be logged in M-Files New Web in M-Files before 22.11.12011.0. This issue affects M-Files New Web: before 22.11.12011.0...

7.5CVSS6.7AI score0.00672EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/03/06 10:39 a.m.12 views

CVE-2022-3284 Insecure way of passing a download key

Download key for a file in a vault was passed in an insecure way that could easily be logged in M-Files New Web in M-Files before 22.11.12011.0. This issue affects M-Files New Web: before 22.11.12011.0...

6.5CVSS6.9AI score0.00672EPSS
Exploits0References3
CVE
CVE
added 2023/03/06 10:39 a.m.59 views

CVE-2022-3284

CVE-2022-3284 affects M-Files New Web versions prior to 22.11.12011.0, where the download key for a vault file was passed insecurely and could be logged. Multiple sources (NVD, Red Hat, PRION, CNNVD, PT-Security) corroborate this issue and specify impact to confidentiality (high) with no integrit...

7.5CVSS6.7AI score0.00672EPSS
Exploits0References3Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 6:33 p.m.56 views

K50148721: MySQL vulnerabilities CVE-2018-3282, CVE-2018-3283, CVE-2018-3284, CVE-2018-3285, and CVE-2018-3286

Security Advisory Description CVE-2018-3282 Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Storage Engines. Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allow...

4.9CVSS5.5AI score0.03968EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/01/31 12:0 a.m.25 views

Debian dla-3284 : libapache-session-ldap-perl - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3284 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3284-1 [email protected]...

8.1CVSS7.4AI score0.00559EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2022/09/17 12:0 a.m.29 views

SUSE SLES15: flatpak / flatpak-devel / flatpak-zsh-completion / libflatpak0 / etc (SUSE-SU-2022:3284-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3284-1 advisory. - CVE-2021-41133: Fixed sandbox bypass via recent syscalls bsc1191507. - CVE-2021-43860: Fixed metadata validation bsc1194610...

8.8CVSS6.8AI score0.01346EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2019:0555-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.0595EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2021/06/08 12:0 a.m.4 views

PT-2021-3284 · Microsoft · Sharepoint Server +1

Name of the Vulnerable Software and Affected Versions: Microsoft SharePoint Server affected versions not specified Microsoft SharePoint Foundation affected versions not specified Microsoft SharePoint Enterprise Server affected versions not specified Description: The issue is related to incorrect...

8.8CVSS7.4AI score0.02121EPSS
Exploits0References11
OSV
OSV
added 2020/11/06 7:15 p.m.3 views

CVE-2020-3284

A vulnerability in the enhanced Preboot eXecution Environment PXE boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BIOS and runs over the...

9.8CVSS6AI score0.02767EPSS
Exploits0References1
CVE
CVE
added 2020/11/06 6:16 p.m.84 views

CVE-2020-3284

Cisco IOS XR 64-bit devices are affected by CVE-2020-3284 due to a vulnerability in the enhanced PXE boot loader. The issue arises because internal commands during the PXE network boot process are not properly verified, allowing an unauthenticated, remote attacker to execute unsigned code if they...

9.8CVSS9.1AI score0.02767EPSS
Exploits0References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2020/08/12 12:0 a.m.38 views

Oracle Linux 6 : postgresql-jdbc (ELSA-2020-3284)

The remote Oracle Linux 6 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-3284 advisory. 8.4.704-4 - require explicitly jdk-1.6 due to ABI bytecode compatibility 8.4.704-3 - fixed XXE vulnerability CVE-2020-13692 Tenable has extracted the preceding...

7.7CVSS7.5AI score0.04094EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2020/04/01 8:4 a.m.34 views

CVE-2018-3284

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Serve...

4.4CVSS2AI score0.023EPSS
Exploits0References2
Rows per page
Query Builder