Lucene search
K

120948 matches found

CNNVD
CNNVD
added 2026/02/03 12:0 a.m.10 views

Flexense Disk Sorter Enterprise 代码问题漏洞

Flexense Disk Sorter Enterprise is a file management and disk space analysis software developed by Flexense Corporation. Version 12.4.16 of Flexense Disk Sorter Enterprise contains a code vulnerability. This vulnerability stems from a service path vulnerability in service configurations that lack...

8.5CVSS6.2AI score0.00119EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.8 views

Lexmark多款产品 安全漏洞

The Lexmark CX410, among others, is a product of the American company Lexmark. The Lexmark CX410 is a printer. The Lexmark CX510 is a multifunctional printer. The Lexmark CX82x is also a multifunctional printer. Several Lexmark products have security vulnerabilities; these vulnerabilities stem fr...

6.9CVSS7.6AI score0.00477EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.4 views

PT-2026-6504

Skipper is vulnerable to arbitrary code execution through lua filters in github.com/zalando/skipper...

8.8CVSS6.3AI score0.00473EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.6 views

TP-Link Archer AX53 安全漏洞

The TP-Link Archer AX53 is a dual-core router produced by TP-Link Corporation. The TP-Link Archer AX53 v1.0 1.3.1 Build 20241120 and earlier versions have a security vulnerability. This vulnerability stems from a heap-based buffer overflow in the tdp module, which may lead to segmentation errors ...

8.6CVSS7.8AI score0.00548EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.7 views

TP-Link Archer AX53 安全漏洞

The TP-Link Archer AX53 is a dual-core router produced by TP-Link Corporation. The TP-Link Archer AX53 v1.0 1.3.1 Build 20241120 and earlier versions have a security vulnerability. This vulnerability stems from a heap buffer overflow, which may lead to segmentation errors or the execution of...

8CVSS6.1AI score0.00469EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.8 views

TP-Link Archer AX53 安全漏洞

The TP-Link Archer AX53 is a dual-core router produced by TP-Link Corporation. The TP-Link Archer AX53 v1.0 1.3.1 Build 20241120 and earlier versions have a security vulnerability. This vulnerability stems from a heap buffer overflow, which may lead to segmentation errors or the execution of...

8CVSS6.1AI score0.00469EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.5 views

TP-Link Archer AX53 安全漏洞

The TP-Link Archer AX53 is a dual-core router produced by TP-Link Corporation. The TP-Link Archer AX53 v1.0 1.3.1 Build 20241120 and earlier versions have a security vulnerability. This vulnerability stems from a heap-based buffer overflow in the tmpserver module, which may lead to segmentation...

8CVSS6.2AI score0.00469EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.9 views

TP-Link Archer AX53 安全漏洞

The TP-Link Archer AX53 is a dual-core router produced by TP-Link Corporation. The TP-Link Archer AX53 v1.0 1.3.1 Build 20241120 and earlier versions have a security vulnerability. This vulnerability stems from a heap buffer overflow in the tmpserver module, which may lead to segmentation...

8CVSS6.2AI score0.00405EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.5 views

Notepad++ 安全漏洞

Notepad++ is an open-source plain-text editor developed by Don Ho of Taiwan, China. Versions of Notepad++ prior to 8.8.9 contained security vulnerabilities. These vulnerabilities stemmed from insufficient integrity verification during updates using the WinGUp updater, which could allow arbitrary...

7.7CVSS6.2AI score0.01268EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.5 views

PT-2026-6414

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

8.4CVSS6.5AI score0.00143EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/02/03 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-70559

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pdfminer.six before 20251230 contains an insecure deserialization vulnerability in the CMap loading mechanism. The library uses Python pickle to deserialize CMa...

8.6CVSS8AI score0.00281EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/02/03 12:0 a.m.3 views

CVE-2025-70560

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

6.4AI score0.00143EPSS
Exploits0References3
EUVD
EUVD
added 2026/02/03 12:0 a.m.3 views

EUVD-2025-206725

An arbitrary file upload vulnerability in the AddFont function of FPDF v1.86 and earlier allows attackers to execute arbitrary code via uploading a crafted PHP file...

8.8CVSS6AI score0.00528EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/03 12:0 a.m.4 views

CVE-2025-70560

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

6.4AI score0.00143EPSS
Exploits0References3
CVE
CVE
added 2026/02/03 12:0 a.m.12 views

CVE-2025-70560

Boltz 2.0.0 is affected by an insecure deserialization vulnerability in the molecule loading code path. The software uses Python pickle to deserialize molecule data files without validation, allowing an attacker who can place a crafted pickle in a directory processed by Boltz to achieve arbitrary...

8.4CVSS6.4AI score0.00143EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/02/03 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-69209

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ArduinoCore-avr contains the source code and configuration files of the Arduino AVR Boards platform. A vulnerability in versions prior to 1.8.7 allows an attack...

6.9CVSS6.6AI score0.00149EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.8 views

Kubernetes ingress-nginx 安全漏洞

Kubernetes ingress-nginx is a Kubernetes entry controller open-sourced by the Cloud Native Computing Foundation. It uses NGINX as a reverse proxy and load balancer. There is a security vulnerability in Kubernetes ingress-nginx; this vulnerability stems from the rules.http.paths.path Ingress field...

8.8CVSS7.7AI score0.00501EPSS
Exploits1References1
OSV
OSV
added 2026/02/02 11:40 p.m.6 views

USN-8003-1 openjdk-21-crac vulnerabilities

It was discovered that the RMI component of CRaC JDK 21 would establish RMI TCP endpoint connections to a remote host without setting an endpoint identification algorithm. An unauthenticated remote attacker could possibly use this issue to steal sensitive information. CVE-2026-21925 Mingijung...

7.5CVSS6.6AI score0.00864EPSS
Exploits1References5
Snyk
Snyk
added 2026/02/02 11:33 p.m.1 views

Insertion of Sensitive Information Into Sent Data

Overview sagemaker is an Open source library for training and deploying models on Amazon SageMaker. Affected versions of this package are vulnerable to Insertion of Sensitive Information Into Sent Data via the storage of HMAC keys and disclosure through the DescribeTrainingJob API. An attacker ca...

9.1CVSS6.1AI score0.00455EPSS
Exploits0References3
OSV
OSV
added 2026/02/02 11:16 p.m.5 views

AZL-76443 CVE-2026-24051 affecting package azl-otel-collector 0.127.0-1

OpenTelemetry-Go is the Go implementation of OpenTelemetry. The OpenTelemetry Go SDK in version v1.20.0-1.39.0 is vulnerable to Path Hijacking Untrusted Search Paths on macOS/Darwin systems. The resource detection code in sdk/resource/hostid.go executes the ioreg system command using a search pat...

7CVSS7.3AI score0.00157EPSS
Exploits0References1
Rows per page
Query Builder