Lucene search
+L

188 matches found

osv
osv
added 2026/06/04 8:38 p.m.4 views

ROOT-APP-NPM-CVE-2024-4067 CVE-2024-4067 in @rootio/micromatch - Patched by Root

Root has patched CVE-2024-4067 in the @rootio/micromatch package for Root:npm. Multiple fixed versions available...

5.3CVSS7.3AI score0.01429EPSS
Exploits1
euvd
euvd
added 2026/01/22 4:51 p.m.7 views

EUVD-2026-4067

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in bslthemes Myour myour allows PHP Local File Inclusion.This issue affects Myour: from n/a through = 1.5.1...

5.5AI score0.00541EPSS
Exploits0References2
ibm
ibm
added 2025/12/23 2:37 p.m.6 views

Security Bulletin: Vulnerability in micromatch affects IBM Db2 Big SQL on Cloud Pak for Data

Summary A vulnerability in nodes.js module micromatch affects IBM Db2 Big SQL 7 on Cloud Pak for Data 5 Vulnerability Details CVEID:CVE-2024-4067 DESCRIPTION: The NPM package micromatch prior to 4.0.8 is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability occurs in...

5.3CVSS7.2AI score0.01429EPSS
Exploits1Affected Software1
ibm
ibm
added 2025/07/07 5:58 p.m.11 views

Security Bulletin: IBM watsonx Orchestrate Cartridge affected by vulnerability in micromatch-4.0.5.tgz

Summary IBM watsonx Orchestrate Cartridge contains a vulnerable version of micromatch-4.0.5.tgz Vulnerability Details CVEID:CVE-2024-4067 DESCRIPTION: The NPM package micromatch prior to 4.0.8 is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability occurs in micromatch.brac...

5.3CVSS6.7AI score0.01429EPSS
Exploits1Affected Software1
ibm
ibm
added 2025/06/30 6:8 a.m.7 views

Security Bulletin: IBM Maximo Application Suite - Manage Component uses micromatch-4.0.5.tgz which is vulnerable to CVE-2024-4067

Summary Security Bulletin: IBM Maximo Application Suite - Manage Component uses micromatch-4.0.5.tgz which is vulnerable to CVE-2024-4067. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-4067 DESCRIPTION: The NPM package...

5.3CVSS6.8AI score0.01429EPSS
Exploits1Affected Software1
ibm
ibm
added 2025/06/25 4:22 p.m.6 views

Security Bulletin: IBM Storage Fusion Data Foundation is vulnerable to CVE-2024-4067 in micromatch-4.0.4

Summary micromatch-4.0.4 is used by IBM Storage Fusion Data Foundation in management-console. This bulletin identifies the steps to take to address the vulnerability CVE-2024-4067 in IBM Storage Fusion Data Foundation. Vulnerability Details CVEID:CVE-2024-4067 DESCRIPTION: The NPM package...

5.3CVSS6.4AI score0.01429EPSS
Exploits1Affected Software1
circl
circl
added 2025/06/11 3:29 p.m.15 views

CVE-2024-4067

creationtimestamp| type| source ---|---|--- 2025-06-11 15:29:00+00:00| seen| https://gist.github.com/EduardoCorpay/fdaeb4ec65cc4a1c8fcd2fb0162de09c...

5.3CVSS8.9AI score0.01429EPSS
Exploits1References1
circl
circl
added 2025/04/29 3:11 p.m.10 views

CVE-2025-4067

creationtimestamp| type| source ---|---|--- 2025-04-29 15:11:35+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/13831 2025-04-29 15:50:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnxn3354yb24 2025-04-29 19:20:52+00:00| seen|...

6.9CVSS5.4AI score0.00438EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2025/04/29 3:0 p.m.14 views

CVE-2025-4067 ScriptAndTools Online-Travling-System viewpackage.php access control

A vulnerability classified as critical has been found in ScriptAndTools Online-Travling-System 1.0. Affected is an unknown function of the file /admin/viewpackage.php. The manipulation leads to improper access controls. It is possible to launch the attack remotely. The exploit has been disclosed ...

6.9CVSS7AI score0.00438EPSS
Exploits0References4
cve
cve
added 2025/04/29 3:0 p.m.66 views

CVE-2025-4067

CVE-2025-4067 affects ScriptAndTools Online-Travling-System 1.0. A vulnerability in an unknown function within /admin/viewpackage.php leads to improper access controls. This enables remote exploitation; the exploit has been disclosed publicly. Reports vary on remediation status, with some sources...

6.9CVSS5.4AI score0.00438EPSS
Exploits0References4Affected Software1
nessus
nessus
added 2025/03/03 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2009-4067

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in the auerswaldprobe function in the Auerswald Linux USB driver for the Linux kernel before 2.6.27 allows physically proximate attackers to...

7.2CVSS7.2AI score0.0206EPSS
Exploits2References2
ibm
ibm
added 2025/01/28 10:8 p.m.26 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to micromatch-4.0.5.tgz CVE-2024-4067

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to micromatch-4.0.5.tgz CVE-2024-4067. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-4067 DESCRIPTION: Node.js micromatch module is vulnerable to a denial of...

5.3CVSS6.7AI score0.01429EPSS
Exploits1Affected Software1
ibm
ibm
added 2025/01/28 10:8 p.m.35 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to micromatch-4.0.5.tgz CVE-2024-4067

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to micromatch-4.0.5.tgz CVE-2024-4067. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-4067 DESCRIPTION: Node.js micromatch module is vulnerable to a denial of...

5.3CVSS6.6AI score0.01429EPSS
Exploits1Affected Software1
nessus
nessus
added 2024/11/06 12:0 a.m.25 views

RHEL 8 / 9 : Satellite 6.16.0 (Critical) (RHSA-2024:8906)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:8906 advisory. Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessit...

9.8CVSS6.9AI score0.28637EPSS
Exploits4References277
redhat
redhat
added 2024/11/05 5:49 p.m.285 views

Critical: Red Hat Security Advisory: Satellite 6.16.0 release

A new release is now available for Red Hat Satellite 6.16 for RHEL 8 and 9. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

9.8CVSS6.8AI score0.28637EPSS
Exploits4References262
nessus
nessus
added 2024/10/31 12:0 a.m.15 views

SUSE SLED15: pgadmin4 / pgadmin4-cloud / pgadmin4-desktop / pgadmin4-doc / etc (SUSE-SU-2024:3771-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3771-1 advisory. - CVE-2024-38355: Fixed socket.io: unhandled 'error' event bsc1226967 - CVE-2024-38998: Fixed...

10CVSS7AI score0.09685EPSS
Exploits9References29
openvas
openvas
added 2024/10/30 12:0 a.m.31 views

openSUSE Security Advisory (SUSE-SU-2024:3771-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.09685EPSS
Exploits9References13
osv
osv
added 2024/10/29 12:55 p.m.33 views

SUSE-SU-2024:3771-1 Security update for pgadmin4

This update for pgadmin4 fixes the following issues: - CVE-2024-38355: Fixed socket.io: unhandled 'error' event bsc1226967 - CVE-2024-38998: Fixed requirejs: prototype pollution via function config bsc1227248 - CVE-2024-38999: Fixed requirejs: prototype pollution via function s.contexts..configur...

10CVSS6.5AI score0.09685EPSS
Exploits9References21
ibm
ibm
added 2024/09/26 11:43 a.m.35 views

Security Bulletin: The Discovery Connector nodes in IBM App Connect Enterprise are vulnerable to a denial of service due to node.js micromatch module (CVE-2024-4067).

Summary The Discovery Connector nodes in IBM App Connect Enterprise are vulnerable to a denial of service due to node.js micromatch module CVE-2024-4067. This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details CVEID:CVE-2024-4067 DESCRIPTION: Node.js...

5.3CVSS6.2AI score0.01429EPSS
Exploits1Affected Software1
ibm
ibm
added 2024/09/13 7:30 a.m.26 views

Security Bulletin: IBM Maximo Application Suite uses micromatch-4.0.5.tgz which is vulnerable to CVE-2024-4067.

Summary IBM Maximo Application Suite uses micromatch-4.0.5.tgz which is vulnerable to CVE-2024-4067. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2024-4067 DESCRIPTION: Node.js micromatch module is vulnerable to a denial of servic...

5.3CVSS6.2AI score0.01429EPSS
Exploits1Affected Software1
Rows per page
Query Builder