Lucene search
K

17 matches found

OSV
OSV
added 18 hours ago3 views

ROOT-OS-UBUNTU-2204-CVE-2024-36918 CVE-2024-36918 in rootio-linux - Patched by Root

Root has patched CVE-2024-36918 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

5.5CVSS6.9AI score0.00225EPSS
Exploits0
Circl
Circl
added 2026/03/19 12:0 a.m.1 views

CVE-2024-36918

creationtimestamp| type| source ---|---|--- 2026-03-19 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/...

5.5CVSS7.1AI score0.00225EPSS
Exploits0References1
Circl
Circl
added 2026/01/06 4:10 p.m.5 views

CVE-2020-36918

creationtimestamp| type| source ---|---|--- 2026-01-06 16:10:58+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115849026353201544 2026-01-06 17:03:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mbrgnvhapa2c 2026-01-07 21:03:12+00:00| seen|...

5.1CVSS5.7AI score0.00142EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/11 7:35 p.m.3 views

CVE-2025-36918

In aocservicereadmessage of aocipccore.c, there is a possible out of bounds read due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

6.3AI score0.00091EPSS
Exploits0References1
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-36918 Malicious code in tifeedly (npm)

The package tifeedly was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 5:3 a.m.11 views

CVE-2023-36918

In SAP Enable Now - versions WPBMANAGER 1.0, WPBMANAGERCE 10, WPBMANAGERHANA 10, ENABLENOWCONSUMPDEL 1704, the X-Content-Type-Options response header is not implemented, allowing an unauthenticated attacker to trigger MIME type sniffing, which leads to Cross-Site Scripting, which could result in...

6.1CVSS6.9AI score0.00345EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 11:13 p.m.22 views

CVE-2022-36918

Jenkins Buckminster Plugin 1.1.1 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existence of an attacker-specified file path on the Jenkins controller file system...

4.3CVSS6.6AI score0.0047EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-36918

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: Check bloom filter map value size This patch adds a missing check to bloom filter creating, rejecting values above KMALLOCMAXSIZE. This brings the bloom ma...

5.5CVSS6.4AI score0.00225EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/06/03 1:12 p.m.21 views

CVE-2024-36918

In the Linux kernel, the following vulnerability has been resolved: bpf: Check bloom filter map value size This patch adds a missing check to bloom filter creating, rejecting values above KMALLOCMAXSIZE. This brings the bloom map in line with many other map types. The lack of this protection can...

4.4CVSS7AI score0.00225EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/06/01 2:23 a.m.4 views

SUSE CVE-2024-36918

In the Linux kernel, the following vulnerability has been resolved: bpf: Check bloom filter map value size This patch adds a missing check to bloom filter creating, rejecting values above KMALLOCMAXSIZE. This brings the bloom map in line with many other map types. The lack of this protection can...

5.5CVSS6.3AI score0.00225EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2024/05/30 4:15 p.m.29 views

CVE-2024-36918

In the Linux kernel, the following vulnerability has been resolved: bpf: Check bloom filter map value size This patch adds a missing check to bloom filter creating, rejecting values above KMALLOCMAXSIZE. This brings the bloom map in line with many other map types. The lack of this protection can...

5.5CVSS6.2AI score0.00225EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2024/05/30 3:29 p.m.30 views

CVE-2024-36918

In the Linux kernel, the following vulnerability has been resolved: bpf: Check bloom filter map value size This patch adds a missing check to bloom filter creating, rejecting values above KMALLOCMAXSIZE. This brings the bloom map in line with many other map types. The lack of this protection can...

5.5CVSS6.9AI score0.00225EPSS
Exploits0
NVD
NVD
added 2023/07/11 3:15 a.m.14 views

CVE-2023-36918

In SAP Enable Now - versions WPBMANAGER 1.0, WPBMANAGERCE 10, WPBMANAGERHANA 10, ENABLENOWCONSUMPDEL 1704, the X-Content-Type-Options response header is not implemented, allowing an unauthenticated attacker to trigger MIME type sniffing, which leads to Cross-Site Scripting, which could result in...

6.1CVSS6.2AI score0.00345EPSS
Exploits0References2
CVE
CVE
added 2023/07/11 2:49 a.m.54 views

CVE-2023-36918

CVE-2023-36918 affects SAP Enable Now components WPB_MANAGER 1.0, WPB_MANAGER_CE 10, WPB_MANAGER_HANA 10 and ENABLE_NOW_CONSUMP_DEL 1704. The root cause is absence of the X-Content-Type-Options response header, enabling MIME type sniffing and leading to Cross-Site Scripting that could disclose or...

6.1CVSS6.2AI score0.00345EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/11 2:49 a.m.12 views

CVE-2023-36918 Cross-Site Scripting vulnerability in SAP Enable Now

In SAP Enable Now - versions WPBMANAGER 1.0, WPBMANAGERCE 10, WPBMANAGERHANA 10, ENABLENOWCONSUMPDEL 1704, the X-Content-Type-Options response header is not implemented, allowing an unauthenticated attacker to trigger MIME type sniffing, which leads to Cross-Site Scripting, which could result in...

6.1CVSS6.9AI score0.00345EPSS
Exploits0References2
Circl
Circl
added 2022/07/27 6:50 p.m.6 views

CVE-2022-36918

creationtimestamp| type| source ---|---|--- 2022-07-27 18:50:01+00:00| seen| https://t.me/cibsecurity/47101...

4.3CVSS4.6AI score0.0047EPSS
Exploits0References1
CVE
CVE
added 2022/07/27 2:28 p.m.98 views

CVE-2022-36918

The CVE-2022-36918 entry concerns Jenkins Buckminster Plugin, affected version 1.1.1 and earlier. The vulnerability is that a permission check is not performed in a method implementing form validation, which allows attackers with Overall/Read permission to check for the existence of an attacker-s...

4.3CVSS4.4AI score0.0047EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder