Lucene search
+L

104 matches found

RedhatCVE
RedhatCVE
added 2026/03/25 2:35 p.m.5 views

CVE-2026-4701

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the JavaScript Engine component...

9.8CVSS5.7AI score0.00461EPSS
Exploits0References5
Circl
Circl
added 2026/03/25 1:17 a.m.2 views

CVE-2026-4701

creationtimestamp| type| source ---|---|--- 2026-03-25 01:17:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhtw6b4fl72h 2026-03-25 03:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/mozilla-products-multiple-vulnerabilities20260325 2026-03-25 03:00:13+00:00|...

9.8CVSS4.9AI score0.00461EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-4701

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.8AI score0.00461EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2026/03/25 12:0 a.m.14 views

firefox-esr-140.9.0-1.1 on GA media (moderate)

firefox-esr-140.9.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10413-1 Rating: moderate Cross-References: CVE-2025-59375 CVE-2026-4684 CVE-2026-4685 CVE-2026-4686 CVE-2026-4687 CVE-2026-4688 CVE-2026-4689 CVE-2026-4690 CVE-2026-4691 CVE-2026-4692 CVE-2026-4693 CVE-2026-4694 CVE-2026-4695...

8.8CVSS6.8AI score0.01279EPSS
Exploits1
OSV
OSV
added 2026/03/24 1:16 p.m.4 views

DEBIAN-CVE-2026-4701

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.9AI score0.00461EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/03/24 12:30 p.m.3 views

CVE-2026-4701

Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS7.2AI score0.00461EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/03/24 12:30 p.m.6 views

CVE-2026-4701

Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

9.8CVSS5.8AI score0.00461EPSS
Exploits0References6
NVD
NVD
added 2025/12/02 3:16 a.m.6 views

CVE-2025-20790

In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patc...

5.3CVSS0.00347EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/02 12:0 a.m.5 views

PT-2025-48637

In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patc...

6.8AI score0.00347EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 2:49 a.m.9 views

CVE-2012-4701

Directory traversal vulnerability in Tridium Niagara AX 3.5, 3.6, and 3.7 allows remote attackers to read sensitive files, and consequently execute arbitrary code, by leveraging 1 valid credentials or 2 the guest feature...

9.3CVSS7.5AI score0.06367EPSS
Exploits0References1
NVD
NVD
added 2025/05/15 3:16 p.m.11 views

CVE-2025-4701

A vulnerability, which was classified as problematic, has been found in VITA-MLLM Freeze-Omni up to 20250421. This issue affects the function torch.load of the file models/utils.py. The manipulation of the argument path leads to deserialization. It is possible to launch the attack on the local ho...

5.3CVSS0.00169EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/05/15 2:31 p.m.21 views

CVE-2025-4701 VITA-MLLM Freeze-Omni utils.py torch.load deserialization

A vulnerability, which was classified as problematic, has been found in VITA-MLLM Freeze-Omni up to 20250421. This issue affects the function torch.load of the file models/utils.py. The manipulation of the argument path leads to deserialization. It is possible to launch the attack on the local ho...

5.3CVSS0.00169EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/05/15 2:31 p.m.9 views

CVE-2025-4701 VITA-MLLM Freeze-Omni utils.py torch.load deserialization

A vulnerability, which was classified as problematic, has been found in VITA-MLLM Freeze-Omni up to 20250421. This issue affects the function torch.load of the file models/utils.py. The manipulation of the argument path leads to deserialization. It is possible to launch the attack on the local ho...

5.3CVSS6.8AI score0.00169EPSS
Exploits0References4
CVE
CVE
added 2025/05/15 2:31 p.m.56 views

CVE-2025-4701

The CVE-2025-4701 issue affects VITA-MLLM Freeze-Omni (up to 20250421), specifically the torch.load usage in models/utils.py where improper handling of the path argument enables deserialization and a potential local-host exploit. Root cause: manipulation of the path parameter in torch.load leads ...

5.3CVSS5.3AI score0.00169EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2024/05/13 11:58 a.m.86 views

Exploit for CVE-2024-4701

CVE-2024-4701-POC POC for CVE-2024-4701 Download the genie do...

9.9CVSS7.3AI score0.24629EPSS
Exploits1
Cvelist
Cvelist
added 2024/05/10 6:37 p.m.38 views

CVE-2024-4701 Path Traversal vulnerability via File Uploads in Genie

A path traversal issue potentially leading to remote code execution in Genie for all versions prior to 4.3.18...

9.9CVSS10AI score0.24629EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/05/10 6:37 p.m.20 views

CVE-2024-4701 Path Traversal vulnerability via File Uploads in Genie

A path traversal issue potentially leading to remote code execution in Genie for all versions prior to 4.3.18...

9.9CVSS7.8AI score0.24629EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2024/05/09 9:35 p.m.7 views

com.netflix.genie:genie-app (>=3.0.0 <=4.3.17), com.netflix.genie:genie-security (>=4.0.0-rc.1 <=4.0.0-rc.31) +3 more potentially affected by CVE-2024-4701 via com.netflix.genie:genie-web (>=0.22 <=4.3.17)

com.netflix.genie:genie-web MAVEN version =0.22, =3.0.0, =4.0.0-rc.1, =4.0.0, =4.0.0, =0.22, =1.0.1 Source cves: CVE-2024-4701 Source advisory: OSV:GHSA-WPCV-5JGP-69F3...

9.9CVSS7.4AI score0.24629EPSS
Exploits1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/01/24 8:23 p.m.4 views

Malicious code in wlwz-2312-4701 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5647e3b4fee9f16ffbe29eb2b149fff29235e592669b9e4aec6ac1de97016a24 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2024/01/24 8:23 p.m.10 views

MAL-2024-594 Malicious code in wlwz-2312-4701 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5647e3b4fee9f16ffbe29eb2b149fff29235e592669b9e4aec6ac1de97016a24 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Rows per page
Query Builder