Lucene search
K

161 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel before version 5.13.6, the drivers/usb/host/max3421-hcd.c file allowed physically nearby attackers to cause a denial of service including use-after-free errors and panic conditions by removing a MAX-3421 USB device under certain circumstances...

6.8CVSS6.3AI score0.00333EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/20 2:59 p.m.4 views

EUVD-2026-3421

IBM Sterling Connect:Direct for UNIX Container 6.3.0.0 through 6.3.0.6 Interim Fix 016, and 6.4.0.0 through 6.4.0.3 Interim Fix 019 IBM® Sterling Connect:Direct for UNIX contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication,...

8.4CVSS5.4AI score0.001EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001558)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001558 advisory. drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service use-after-free and panic by...

6.8CVSS6.5AI score0.00333EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-24662

Malware in sbrugna...

6.8CVSS6.8AI score0.00333EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-20359

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00124EPSS
Exploits0References1
OSV
OSV
added 2025/09/15 1:12 a.m.1 views

ECHO-3421-28F1-F2D2

Bulletin has no description...

7.8CVSS8.4AI score0.00152EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/10 2:27 a.m.7 views

CVE-2025-20693

In wlan STA driver, there is a possible out of bounds read due to an incorrect bounds check. This could lead to remote proximal/adjacent information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS09812521; Issue ID: MSV-34...

6.5CVSS6.8AI score0.00124EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:4 p.m.10 views

CVE-2022-3421

An attacker can pre-create the /Applications/Google\ Drive.app/Contents/MacOS directory which is expected to be owned by root to be owned by a non-root user. When the Drive for Desktop installer is run for the first time, it will place a binary in that directory with execute permissions and set i...

7.3CVSS7AI score0.00098EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/11 6:16 p.m.10 views

WordPress Everest Forms plugin <= 3.1.1 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by mikemyers in WordPress Plugin Everest Forms versions = 3.1.1...

6.1CVSS7.3AI score0.00297EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2025/04/11 3:37 p.m.15 views

CVE-2025-3421

creationtimestamp| type| source ---|---|--- 2025-04-11 15:37:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmkdyc2kc42a 2025-04-11 16:27:15+00:00| seen| https://t.me/cvedetector/22748...

6.1CVSS8.7AI score0.00297EPSS
Exploits0References2
CVE
CVE
added 2025/04/11 12:42 p.m.72 views

CVE-2025-3421

The CVE-2025-3421 entry concerns the Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin. Affected: WordPress plugin Everest Forms versions up to and including 3.1.1. Issue: Reflected Cross-Site Scripting via the form_id parameter due to insufficient...

6.1CVSS6AI score0.00297EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/04/11 12:42 p.m.24 views

CVE-2025-3421 Everest Forms <= 3.1.1 - Reflected Cross-Site Scripting

The Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'formid' parameter in all versions up to, and including, 3.1.1 due to insufficient input sanitization and output escaping...

6.1CVSS0.00297EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/04/11 12:42 p.m.20 views

CVE-2025-3421 Everest Forms <= 3.1.1 - Reflected Cross-Site Scripting

The Everest Forms – Contact Form, Quiz, Survey, Newsletter & Payment Form Builder for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'formid' parameter in all versions up to, and including, 3.1.1 due to insufficient input sanitization and output escaping...

6.1CVSS6.3AI score0.00297EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2014-3421

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on the /tmp/gnus.face.ppm temporary fil...

3.3CVSS7.5AI score0.00347EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/09/26 12:0 a.m.11 views

openSUSE Security Advisory (SUSE-SU-2024:3421-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3CVSS7.4AI score0.00548EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.14 views

RHEL 7 : emacs (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - emacs: multiple temporary file issues CVE-2014-3424 - emacs: command execution via shell metacharacters...

9.8CVSS8.3AI score0.01603EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/05/28 12:0 a.m.39 views

RHEL 9 : kernel (RHSA-2024:3421)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3421 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Marvin vulnerability...

7.8CVSS7.2AI score0.28058EPSS
Exploits16References20
OSV
OSV
added 2024/04/07 1:15 p.m.2 views

CVE-2024-3421

A vulnerability was found in SourceCodester Online Courseware 1.0. It has been classified as critical. This affects an unknown part of the file admin/deactivatestud.php. The manipulation of the argument selector leads to sql injection. It is possible to initiate the attack remotely. The exploit h...

9.8CVSS5.7AI score0.0068EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/04/07 12:31 p.m.17 views

CVE-2024-3421 SourceCodester Online Courseware deactivatestud.php sql injection

A vulnerability was found in SourceCodester Online Courseware 1.0. It has been classified as critical. This affects an unknown part of the file admin/deactivatestud.php. The manipulation of the argument selector leads to sql injection. It is possible to initiate the attack remotely. The exploit h...

6.5CVSS7.3AI score0.0068EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/04/07 12:31 p.m.16 views

CVE-2024-3421 SourceCodester Online Courseware deactivatestud.php sql injection

A vulnerability was found in SourceCodester Online Courseware 1.0. It has been classified as critical. This affects an unknown part of the file admin/deactivatestud.php. The manipulation of the argument selector leads to sql injection. It is possible to initiate the attack remotely. The exploit h...

6.5CVSS7AI score0.0068EPSS
Exploits1References4
Rows per page
Query Builder