Lucene search
K

13 matches found

OSV
OSV
added yesterday4 views

ROOT-OS-DEBIAN-13-CVE-2025-40274 CVE-2025-40274 in rootio-linux - Patched by Root

Root has patched CVE-2025-40274 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

5.4AI score0.00155EPSS
Exploits0
OSV
OSV
added 2 days ago5 views

ROOT-OS-UBUNTU-2404-CVE-2025-40274 CVE-2025-40274 in rootio-linux - Patched by Root

Root has patched CVE-2025-40274 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.4AI score0.00155EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2025/12/06 10:15 p.m.2 views

CVE-2025-40274

In the Linux kernel, the following vulnerability has been resolved: KVM: guestmemfd: Remove bindings on memslot deletion when gmem is dying When unbinding a memslot from a guestmemfd instance, remove the bindings even if the guestmemfd file is dying, i.e. even if its file refcount has gone to zer...

5.8AI score0.00155EPSS
Exploits0References10
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-40274 Malicious code in yankee-sierra-vpta (npm)

The package yankee-sierra-vpta was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 11:27 p.m.8 views

CVE-2022-40274

Gridea version 0.9.3 allows an external attacker to execute arbitrary code remotely on any client attempting to view a malicious markdown file through Gridea. This is possible because the application has the 'nodeIntegration' option enabled...

7.8CVSS7.7AI score0.00416EPSS
Exploits1References1
Circl
Circl
added 2023/08/14 7:19 a.m.6 views

CVE-2023-40274

creationtimestamp| type| source ---|---|--- 2023-08-14 07:19:02+00:00| seen| https://t.me/cibsecurity/68413...

7.5CVSS7.3AI score0.00921EPSS
Exploits1References1
Chainguard
Chainguard
added 2023/08/14 1:15 a.m.192 views

CVE-2023-40274 vulnerabilities

Vulnerabilities for packages: zola...

7.5CVSS7.4AI score0.00921EPSS
Exploits1
Wolfi
Wolfi
added 2023/08/14 1:15 a.m.49 views

CVE-2023-40274 vulnerabilities

Vulnerabilities for packages: zola...

7.5CVSS7.7AI score0.00921EPSS
Exploits1
CVE
CVE
added 2023/08/14 12:0 a.m.394 views

CVE-2023-40274

CVE-2023-40274 affects zola 0.13.0–0.17.2 where the built‑in server (zola serve) mishandles path traversal sequences, allowing an attacker to escape the webroot and read arbitrary filesystem files via URL paths containing sequences like ../. This is due to the handle_request logic not properly sa...

7.5CVSS7.4AI score0.00921EPSS
Exploits1References2Affected Software1
Circl
Circl
added 2022/09/30 8:36 p.m.3 views

CVE-2022-40274

creationtimestamp| type| source ---|---|--- 2022-09-30 20:36:15+00:00| seen| https://t.me/cibsecurity/50777...

7.8CVSS7.5AI score0.00416EPSS
Exploits1References1
CVE
CVE
added 2022/09/30 4:18 p.m.48 views

CVE-2022-40274

CVE-2022-40274 affects Gridea 0.9.3. The root cause is the application running with nodeIntegration enabled, allowing an attacker to remotely execute arbitrary code when a user views a malicious Markdown file. Impact is described as high in multiple sources. The documentation does not indicate a ...

7.8CVSS7.8AI score0.00416EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/09/30 4:18 p.m.13 views

CVE-2022-40274

Gridea version 0.9.3 allows an external attacker to execute arbitrary code remotely on any client attempting to view a malicious markdown file through Gridea. This is possible because the application has the 'nodeIntegration' option enabled...

8AI score0.00416EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/09/30 4:18 p.m.6 views

CVE-2022-40274

Gridea version 0.9.3 allows an external attacker to execute arbitrary code remotely on any client attempting to view a malicious markdown file through Gridea. This is possible because the application has the 'nodeIntegration' option enabled...

7.9AI score0.00416EPSS
Exploits1References2
Rows per page
Query Builder