Lucene search
K

9 matches found

vulnersOsv
vulnersOsv
added 2025/12/12 11:0 p.m.11 views

ai.catboost:catboost-spark_4.0_2.13 (=1.2.10), ai.catboost:catboost-spark_4.1_2.13 (=1.2.10) +541 more potentially affected by CVE-2025-67721 via io.airlift:aircompressor (=2.0.2)

io.airlift:aircompressor MAVEN version =2.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on io.airlift:aircompressor and may be impacted: - ai.catboost:catboost-spark4.02.13 =1.2.10 - ai.catboost:catboost-spark4.12.13 =1.2.10 - ai.h2o:h2o-orc-parser...

7.5CVSS7.2AI score0.00363EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/08/20 8:52 p.m.6 views

io.airlift:http-server (=324), io.airlift:jmx-http (=324) +5 more potentially affected by CVE-2025-5115 via org.eclipse.jetty.http2:jetty-http2-server (>=12.1.0.alpha0 <=12.1.0.beta2)

org.eclipse.jetty.http2:jetty-http2-server MAVEN version =12.1.0.alpha0, =12.1.0.alpha2, =12.1.0.alpha0, =12.1.0.alpha0, =12.1.0.beta2 Source cves: CVE-2025-5115 Source advisory: SNYK:JAVA-ORGECLIPSEJETTYHTTP2-12047652...

7.7CVSS6.9AI score0.01567EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/08/20 8:52 p.m.4 views

io.airlift:discovery (=324), io.airlift:http-client (=324) +13 more potentially affected by CVE-2025-5115 via org.eclipse.jetty.http2:jetty-http2-common (>=12.1.0.alpha0 <=12.1.0.beta2)

org.eclipse.jetty.http2:jetty-http2-common MAVEN version =12.1.0.alpha0, =12.1.0.alpha2, =12.1.0.alpha0, =12.1.0.alpha0, =12.1.0.alpha0, =12.1.0.alpha0, =12.1.0.alpha0, =12.1.0.beta2 Source cves: CVE-2025-5115 Source advisory: OSV:GHSA-MMXM-8W33-WC4H...

7.7CVSS6.9AI score0.01567EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2025/08/20 8:52 p.m.8 views

io.airlift:discovery (=324), io.airlift:http-client (=324) +13 more potentially affected by CVE-2025-5115 via org.eclipse.jetty.http2:jetty-http2-common (>=12.1.0.alpha0 <=12.1.0.beta2)

org.eclipse.jetty.http2:jetty-http2-common MAVEN version =12.1.0.alpha0, =12.1.0.alpha2, =12.1.0.alpha0, =12.1.0.alpha0, =12.1.0.alpha0, =12.1.0.alpha0, =12.1.0.alpha0, =12.1.0.beta2 Source cves: CVE-2025-5115 Source advisory: SNYK:JAVA-ORGECLIPSEJETTYHTTP2-12047664...

7.7CVSS6.9AI score0.01567EPSS
Exploits0
NCSC
NCSC
added 2024/11/12 6:54 p.m.6 views

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in several Azure components. A malicious person could exploit the vulnerabilities to grant themselves elevated privileges within the vulnerable components. The most serious vulnerability is in CycleCloud and has been assigned attribute CVE-2024-43602. CycleClou...

9.9CVSS9.1AI score0.02203EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/11/12 8:0 a.m.21 views

Airlift.microsoft.com Elevation of Privilege Vulnerability

Authentication bypass by assumed-immutable data on airlift.microsoft.com allows an authorized attacker to elevate privileges over a network...

8.8CVSS7AI score0.01039EPSS
Exploits0
CNNVD
CNNVD
added 2024/11/12 12:0 a.m.5 views

Microsoft airlift.microsoft.com 安全漏洞

Microsoft airlift.microsoft.com is a technical training and product feedback Web site of Microsoft Corporation USA. A security vulnerability exists in Microsoft airlift.microsoft.com. An attacker could exploit the vulnerability to elevate privileges. No information about this vulnerability is...

8.8CVSS6.1AI score0.01039EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/11/12 12:0 a.m.5 views

PT-2024-33326 · Airlift · Airlift

Name of the Vulnerable Software and Affected Versions: Airlift affected versions not specified Description: The issue allows an authorized attacker to elevate privileges over a network by exploiting an authentication bypass vulnerability based on assumed-immutable data. Recommendations: At the...

8.8CVSS6.8AI score0.01039EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/05 5:58 p.m.19 views

Security Bulletin: Vulnerability in Airlift aircompressor affects watsonx.data

Summary Airlift aircompressor could allow a local attacker to obtain sensitive information, caused by an out-of-bounds read/write flaw in the decompressor implementations. This can affect watsonx.data. Vulnerability Details CVEID:CVE-2024-36114 DESCRIPTION: airlift aircompressor could allow a loc...

8.6CVSS8.1AI score0.00504EPSS
Exploits0Affected Software1
Rows per page
Query Builder