Lucene search
+L

18 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/07/10 3:53 a.m.8 views

Security Bulletin: Multiple Vulnerabilities in IBM Library Support for Spring

Summary Multiple vulnerabilities were addressed in IBM Library Support for Spring 3.2.28 Vulnerability Details CVEID:CVE-2026-41003 DESCRIPTION: An attacker able to influence values in RelyingPartyRegistration may be able to run arbitrary code on HTML forms generated by Spring Security filters...

8.1CVSS6.3AI score0.00489EPSS
Exploits0Affected Software1
Circl
Circl
added 2026/06/10 4:0 a.m.12 views

CVE-2026-41003

creationtimestamp| type| source ---|---|--- 2026-06-10 04:00:47+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnvt6vxdwr24 2026-06-19 02:11:28+00:00| seen| https://bsky.app/profile/securitylab-jp.bsky.social/post/3mombbn42ys2n...

7.6CVSS5.8AI score0.00204EPSS
Exploits0References2
NVD
NVD
added 2026/06/10 12:16 a.m.16 views

CVE-2026-41003

An attacker able to influence values in RelyingPartyRegistration may be able to run arbitrary code on HTML forms generated by Spring Security filters. Affected versions: Spring Security 5.7.0 through 5.7.23; 5.8.0 through 5.8.25; 6.3.0 through 6.3.16; 6.4.0 through 6.4.16; 6.5.0 through 6.5.10;...

7.6CVSS0.00204EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/09 11:46 p.m.8 views

CVE-2026-41003 Unencoded HTML Outputs in Spring Security May Allow Cross-Site Scripting

An attacker able to influence values in RelyingPartyRegistration may be able to run arbitrary code on HTML forms generated by Spring Security filters. Affected versions: Spring Security 5.7.0 through 5.7.23; 5.8.0 through 5.8.25; 6.3.0 through 6.3.16; 6.4.0 through 6.4.16; 6.5.0 through 6.5.10;...

7.6CVSS5.8AI score0.00204EPSS
Exploits0References1
Spring Security Advisories
Spring Security Advisories
added 2026/06/09 12:0 a.m.11 views

cve-2026-41003 - HIGH - Unencoded HTML Outputs in Spring Security May Allow Cross-Site Scripting

cve-2026-41003 - HIGH - Unencoded HTML Outputs in Spring Security May Allow Cross-Site Scripting...

7.6CVSS6.1AI score0.00204EPSS
Exploits0
Circl
Circl
added 2026/01/12 7:31 p.m.8 views

CVE-2025-41003

creationtimestamp| type| source ---|---|--- 2026-01-12 19:31:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcarqiil4m2e...

5.1CVSS5.8AI score0.00251EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/10 4:5 a.m.2 views

EUVD-2025-41003

Malicious code in galih-sroto22-crottsekebon npm...

6.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-41003

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bpf: Fix regsetminmax corruption of fakereg Juan reported that after doing some changes to...

7.8CVSS5.7AI score0.00281EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/07/16 7:27 p.m.27 views

CVE-2024-41003

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix regsetminmax corruption of fakereg Juan reported that after doing some changes to buzzer 0 and implementing a new fuzzing strategy guided by coverage, they noticed the following in one of the probes: ... 13: 79 r6 = u64 ...

4.4CVSS7AI score0.00281EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/07/16 2:33 a.m.5 views

SUSE CVE-2024-41003

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix regsetminmax corruption of fakereg Juan reported that after doing some changes to buzzer 0 and implementing a new fuzzing strategy guided by coverage, they noticed the following in one of the probes: ... 13: 79 r6 = u64 ...

7.8CVSS6.2AI score0.00281EPSS
Exploits0References3
Circl
Circl
added 2024/07/12 4:4 p.m.7 views

CVE-2024-41003

creationtimestamp| type| source ---|---|--- 2024-07-12 16:04:59+00:00| seen| https://t.me/cvedetector/725 2024-07-16 18:04:49+00:00| seen| https://t.me/proxybar/2168 2024-07-24 12:51:30+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/10876 2024-07-24 14:14:49+00:00|...

7.8CVSS4.6AI score0.00281EPSS
Exploits0References4
OSV
OSV
added 2024/07/12 1:15 p.m.6 views

DEBIAN-CVE-2024-41003

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix regsetminmax corruption of fakereg Juan reported that after doing some changes to buzzer 0 and implementing a new fuzzing strategy guided by coverage, they noticed the following in one of the probes: ... 13: 79 r6 = u64 ...

7.8CVSS5.1AI score0.00281EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/07/12 12:44 p.m.79 views

CVE-2024-41003

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix regsetminmax corruption of fakereg Juan reported that after doing some changes to buzzer 0 and implementing a new fuzzing strategy guided by coverage, they noticed the following in one of the probes: ... 13: 79 r6 = u64 ...

7.8CVSS5.7AI score0.00281EPSS
Exploits0
Circl
Circl
added 2023/01/27 12:39 a.m.8 views

CVE-2022-41003

creationtimestamp| type| source ---|---|--- 2023-01-27 00:39:08+00:00| seen| https://t.me/cibsecurity/56969...

9.8CVSS7.3AI score0.01733EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/01/26 9:24 p.m.5 views

CVE-2022-41003

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...

7.2CVSS8AI score0.01733EPSS
Exploits1References1
CVE
CVE
added 2023/01/26 9:24 p.m.64 views

CVE-2022-41003

CVE-2022-41003 is a real vulnerability affecting the Siretta QUARTZ-GOLD router family, specifically the DetranCLI command parsing functionality in version G5.0.1.5-210720-141020. The connected TALOS report details concrete technical aspects: multiple stack-based buffer overflow vulnerabilities w...

9.8CVSS9.9AI score0.01733EPSS
Exploits1References2Affected Software1
Circl
Circl
added 2022/03/03 12:25 a.m.8 views

CVE-2021-41003

creationtimestamp| type| source ---|---|--- 2022-03-03 00:25:24+00:00| seen| https://t.me/cibsecurity/38329...

6.1CVSS6.5AI score0.00795EPSS
Exploits0References1
CVE
CVE
added 2022/03/02 9:41 p.m.1965 views

CVE-2021-41003

CVE-2021-41003 affects Aruba AOS-CX API interface across Aruba CX 6200F, 6300, 6400, 8320, 8325, 8400, and CX 8360 series. Reported as multiple unauthenticated command‑injection vulnerabilities with affected AOS-CX versions: 10.06.xxxx (<=10.06.0170), 10.07.xxxx (<=10.07.0050), 10.08.xxxx (...

6.1CVSS7.1AI score0.00795EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder