Lucene search
K

182 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-55288

Malicious code in bioql PyPI...

7.1AI score0.00208EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-31880

Malicious code in bioql PyPI...

6.4AI score0.00136EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-31025

Malicious code in bioql PyPI...

6CVSS6.4AI score0.0015EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-9312

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00387EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2022-55368

Malicious code in bioql PyPI...

7.1AI score0.0016EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2025/10/01 11:29 p.m.5 views

SUSE CVE-2023-53513

In the Linux kernel, the following vulnerability has been resolved: nbd: fix incomplete validation of ioctl arg We tested and found an alarm caused by nbdioctl arg without verification. The UBSAN warning calltrace like below: UBSAN: Undefined behaviour in fs/buffer.c:1709:35 signed integer...

5.2CVSS6.5AI score0.00136EPSS
Exploits0References6
CVE
CVE
added 2025/10/01 11:46 a.m.35 views

CVE-2023-53513

The CVE-2023-53513 issue is a Linux kernel vulnerability where incomplete validation of the nbd ioctl arg can trigger an i_size overflow when the arg is coerced to int (arg cast in nbd_ioctl /nbd_add_socket). The root cause is insufficient validation of large ioctl arguments, allowing an overflow...

5.5CVSS6.1AI score0.00136EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/09/25 8:47 a.m.2 views

BIT-MONGODB-2025-3084 MongoDB Server may crash due to improper validation of explain command

When run on commands with certain arguments set, explain may fail to validate these arguments before using them. This can lead to crashes in router servers. This affects MongoDB Server v5.0 prior to 5.0.31, MongoDB Server v6.0 prior to 6.0.20, MongoDB Server v7.0 prior to 7.0.16 and MongoDB Serve...

6.5CVSS7.1AI score0.00387EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/24 5:14 p.m.2 views

CVE-2025-20338

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with administrative privileges to execute arbitrary commands as root on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of user arguments th...

6CVSS6.8AI score0.0015EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/24 5:14 p.m.20 views

CVE-2025-20338

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with administrative privileges to execute arbitrary commands as root on the underlying operating system of an affected device. This vulnerability is due to insufficient validation of user arguments th...

6CVSS0.0015EPSS
Exploits0References1
CVE
CVE
added 2025/09/24 5:14 p.m.49 views

CVE-2025-20338

CVE-2025-20338 affects Cisco IOS XE Software CLI. The root cause is insufficient validation of user-supplied arguments passed to specific CLI commands, allowing an authenticated administrator (level 15) to craft CLI input that can execute arbitrary commands as root on the device. According to Cis...

6.7CVSS6.8AI score0.0015EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/09/05 6:15 p.m.23 views

CVE-2025-39708

In the Linux kernel, the following vulnerability has been resolved: media: iris: Fix NULL pointer dereference A warning reported by smatch indicated a possible null pointer dereference where one of the arguments to API "irishfigen2handlesystemerror" could sometimes be null. To fix this, add a che...

5.5CVSS0.00119EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2025/06/04 5:15 p.m.2 views

CVE-2025-20278

A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device as the root user. This vulnerability is due to improper validation of user-supplied...

6.7CVSS6.1AI score0.00156EPSS
Exploits0References2Affected Software8
OSV
OSV
added 2025/06/04 5:15 p.m.5 views

CVE-2025-20278

A vulnerability in the CLI of multiple Cisco Unified Communications products could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system of an affected device as the root user. This vulnerability is due to improper validation of user-supplied...

6.7CVSS6AI score0.00156EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:15 a.m.14 views

CVE-2022-29201

TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of tf.rawops.QuantizedConv2D does not fully validate the input arguments. In this case, references get bound to nullptr for each argument that is empty. Versions 2.9.0,...

5.5CVSS6.6AI score0.00332EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/03 11:40 a.m.13 views

CVE-2025-3084

When run on commands with certain arguments set, explain may fail to validate these arguments before using them. This can lead to crashes in router servers. This affects MongoDB Server v5.0 prior to 5.0.31, MongoDB Server v6.0 prior to 6.0.20, MongoDB Server v7.0 prior to 7.0.16 and MongoDB Serve...

6.5CVSS7.3AI score0.00387EPSS
Exploits0References3
NVD
NVD
added 2025/04/01 12:15 p.m.14 views

CVE-2025-3084

When run on commands with certain arguments set, explain may fail to validate these arguments before using them. This can lead to crashes in router servers. This affects MongoDB Server v5.0 prior to 5.0.31, MongoDB Server v6.0 prior to 6.0.20, MongoDB Server v7.0 prior to 7.0.16 and MongoDB Serve...

6.5CVSS0.00387EPSS
Exploits0References1
OSV
OSV
added 2025/04/01 11:14 a.m.3 views

CVE-2025-3084 MongoDB Server may crash due to improper validation of explain command

When run on commands with certain arguments set, explain may fail to validate these arguments before using them. This can lead to crashes in router servers. This affects MongoDB Server v5.0 prior to 5.0.31, MongoDB Server v6.0 prior to 6.0.20, MongoDB Server v7.0 prior to 7.0.16 and MongoDB Serve...

6.5CVSS6.6AI score0.00387EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/02/26 12:0 a.m.6 views

The vulnerability of the command-line interface of Cisco IOS XR allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the command-line interface of Cisco IOS XR systems is related to improper validation of arguments passed to a specific CLI command. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

5.5CVSS5.5AI score0.00139EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/06 12:40 a.m.9 views

CVE-2022-30284

In the python-libnmap package through 0.7.2 for Python, remote command execution can occur if used in a client application that does not validate arguments. NOTE: the vendor believes it would be unrealistic for an application to call NmapProcess with arguments taken from input data that arrived...

9.8CVSS7AI score0.04936EPSS
Exploits1References1
Rows per page
Query Builder