Lucene search
K

20 matches found

NVD
NVD
added 2026/07/04 12:16 p.m.8 views

CVE-2026-14625

A security flaw has been discovered in NousResearch hermes-agent up to 0.15.2. The affected element is the function shell.exec of the file tuigateway/server.py. The manipulation results in protection mechanism failure. It is possible to launch the attack remotely. The exploit has been released to...

6.5CVSS0.00224EPSS
Exploits0References5
OSV
OSV
added 2026/06/26 8:51 a.m.6 views

BIT-NODE-MIN-2026-48931

A flaw in Node.js HTTP Agent can cause a client to accept as valid a response that is send before the client has sent the request. This vulnerability affects all supported release lines: Node.js 22, Node.js 24, and Node.js 26...

3.7CVSS6.1AI score0.00371EPSS
Exploits1References5
OSV
OSV
added 2026/06/26 8:51 a.m.5 views

BIT-NODE-2026-48931

A flaw in Node.js HTTP Agent can cause a client to accept as valid a response that is send before the client has sent the request. This vulnerability affects all supported release lines: Node.js 22, Node.js 24, and Node.js 26...

3.7CVSS5.8AI score0.00371EPSS
Exploits1References5
OSV
OSV
added 2026/06/22 8:16 p.m.3 views

ALPINE-CVE-2026-48931

A flaw in Node.js HTTP Agent can cause a client to accept as valid a response that is send before the client has sent the request. This vulnerability affects all supported release lines: Node.js 22, Node.js 24, and Node.js 26...

3.7CVSS5.8AI score0.00371EPSS
Exploits1References1
CVE
CVE
added 2026/06/22 6:59 p.m.49 views

CVE-2026-48931

CVE-2026-48931 describes a flaw in Node.js HTTP Agent where a client may treat a response as valid if it is sent before the client issues a request. Affected are all supported Node.js lines (22, 24, 26). The documented impact is low severity (CVSS v3.0 base score 3.7) with no confidentiality or a...

3.7CVSS5.9AI score0.00371EPSS
Exploits1References4Affected Software1
AlpineLinux
AlpineLinux
added 2026/06/22 6:59 p.m.6 views

CVE-2026-48931

A flaw in Node.js HTTP Agent can cause a client to accept as valid a response that is send before the client has sent the request. This vulnerability affects all supported release lines: Node.js 22, Node.js 24, and Node.js 26...

3.7CVSS5.8AI score0.00371EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/15 4:9 p.m.8 views

Security Bulletin: IBM Sterling Connect:Direct File Agent is vulnerable to multiple issues

Summary There are vulnerabilities in IBM Semeru Runtime version 17 used by IBM Sterling Connect:Direct File Agent. IBM Sterling Connect:Direct File Agent has addressed the applicable CVEs CVE-2026-34282, CVE-2026-22016, CVE-2026-23865, CVE-2026-22021, CVE-2026-22013, CVE-2026-22018, CVE-2026-2200...

8.7CVSS5.4AI score0.00702EPSS
Exploits1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/11 6:2 p.m.3 views

CVE-2026-0230

A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent on macOS allows a local administrator to disable the agent. This issue could be leveraged by malware to perform malicious activity without detection...

6.7CVSS5.8AI score0.00144EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/28 12:0 a.m.7 views

PT-2025-48334

Netskope was notified about a potential gap in its agent NS Client on Windows systems. If this gap is successfully exploited, a local, authenticated user with Administrator privileges can improperly load the driver as a generic kernel service. This triggers the flaw, causing a system crash...

5.9CVSS6.6AI score0.0011EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-2564

Malware in sbrugna...

6.5CVSS6.3AI score0.01149EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-0521

Malicious code in bioql PyPI...

9.8CVSS8.5AI score0.01392EPSS
Exploits0References5
Redos
Redos
added 2025/09/22 12:0 a.m.4 views

ROS-20250922-08

Twisted Web HTTP 1.1 server vulnerability in the twisted.web.http module of the Twisted networking framework is related to the HTTP request processing flaws. Exploitation of the vulnerability allows an attacker acting remotely to gain access to confidential data. remotely to gain access to...

8.3CVSS6.8AI score0.03608EPSS
Exploits1
CNNVD
CNNVD
added 2025/06/10 12:0 a.m.5 views

OSSEC HIDS agent for Windows 安全漏洞

OSSEC HIDS agent for Windows is an OSSEC open source intrusion detection system for windows. A security vulnerability exists in OSSEC HIDS agent for Windows prior to version 3.8.0 that stems from improper input validation and could lead to remote code execution or elevation of privilege...

9.5CVSS7.7AI score0.00297EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/03/25 12:0 a.m.11 views

PT-2025-12843 · Arista · Arista Ng Firewall

Name of the Vulnerable Software and Affected Versions: Arista NG Firewall affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Arista NG Firewall with minimal user interaction required. The flaw exists within the...

9.6CVSS8.9AI score0.00502EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2024/07/31 12:0 a.m.7 views

The vulnerability of Acronis Agent, a software protection tool from Acronis Cyber Protect 15, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of Acronis Agent, a software solution for data protection, within Acronis Cyber Protect 15, is related to insufficient protection of operational data due to improper privilege assignment. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthoriz...

7.7CVSS7.2AI score0.00371EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/10/25 12:0 a.m.6 views

Bosch ctrlX HMI Web Panel Trust Management Issue Vulnerability

Bosch ctrlX HMI Web Panel WR21 is an HMI panel from Bosch Germany. The ctrlX HMI Web Panel WR21 version suffers from a security vulnerability that originates from a security flaw in the Android Agent application, which allows an attacker to take control of the network of a malicious MQTT agent...

8.8CVSS7.3AI score0.00428EPSS
Exploits0References2
OSV
OSV
added 2023/04/18 4:15 p.m.3 views

CVE-2023-28141

An NTFS Junction condition exists in the Qualys Cloud Agent for Windows platform in versions before 4.8.0.31. Attackers may write files to arbitrary locations via a local attack vector. This allows attackers to assume the privileges of the process, and they may delete or otherwise on unauthorized...

6.3CVSS6.7AI score0.00183EPSS
Exploits0References1
OSV
OSV
added 2018/06/12 11:33 a.m.15 views

USN-3680-1 libvirt vulnerability and update

Ken Johnson and Jann Horn independently discovered that microprocessors utilizing speculative execution of a memory read may allow unauthorized memory reads via sidechannel attacks. An attacker in the guest could use this to expose sensitive guest information, including kernel memory. This update...

7.5CVSS7.1AI score0.60631EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2016/08/26 12:0 a.m.60 views

Apache HTTP Server 2.2.x < 2.2.32 Multiple Vulnerabilities

Binary data 9486.prm...

8.1CVSS8.3AI score0.55724EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2007/06/04 8:3 a.m.38 views

Moderate: Red Hat Security Advisory: mutt security update

An updated mutt package that fixes several security bugs is now available for Red Hat Enterprise Linux 3, 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Mutt is a text-mode mail user agent. A flaw was found in the way Mutt used...

3.5CVSS6.5AI score0.02423EPSS
Exploits1References4
Rows per page
Query Builder