Lucene search
K

3985 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-44929

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.0044EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-4406

Malicious code in bioql PyPI...

4CVSS6.4AI score0.01265EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-56156

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00158EPSS
Exploits0References1
NVD
NVD
added 2025/10/03 7:15 p.m.9 views

CVE-2025-52656

HCL MyXalytics: 6.6. is affected by Mass Assignment vulnerability. Mass Assignment occurs when user input is automatically bound to application objects without proper validation or access controls, potentially allowing unauthorized modification of sensitive fields...

7.6CVSS0.00235EPSS
Exploits0References1
OSV
OSV
added 2025/10/03 7:15 p.m.7 views

CVE-2025-52656

HCL MyXalytics: 6.6. is affected by Mass Assignment vulnerability. Mass Assignment occurs when user input is automatically bound to application objects without proper validation or access controls, potentially allowing unauthorized modification of sensitive fields...

7.6CVSS5.8AI score0.00235EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 6:20 p.m.3 views

EUVD-2025-32359

HCL MyXalytics: 6.6. is affected by Mass Assignment vulnerability. Mass Assignment occurs when user input is automatically bound to application objects without proper validation or access controls, potentially allowing unauthorized modification of sensitive fields...

7.6CVSS6.3AI score0.00235EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/03 6:20 p.m.11 views

CVE-2025-52656 HCL MyXalytics product is affected by Mass Assignment vulnerability

HCL MyXalytics: 6.6. is affected by Mass Assignment vulnerability. Mass Assignment occurs when user input is automatically bound to application objects without proper validation or access controls, potentially allowing unauthorized modification of sensitive fields...

7.6CVSS0.00235EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/03 6:20 p.m.3 views

CVE-2025-52656 HCL MyXalytics product is affected by Mass Assignment vulnerability

HCL MyXalytics: 6.6. is affected by Mass Assignment vulnerability. Mass Assignment occurs when user input is automatically bound to application objects without proper validation or access controls, potentially allowing unauthorized modification of sensitive fields...

7.6CVSS6.4AI score0.00235EPSS
Exploits0References1
CVE
CVE
added 2025/10/03 6:20 p.m.14 views

CVE-2025-52656

CVE-2025-52656 affects HCL MyXalytics version 6.6. The vulnerability is a Mass Assignment flaw where user input may be automatically bound to application objects without proper validation or access controls, potentially allowing unauthorized modification of sensitive fields. Root cause: insuffici...

7.6CVSS6.4AI score0.00235EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/03 12:0 a.m.5 views

PT-2025-40574

Name of the Vulnerable Software and Affected Versions HCL MyXalytics version 6.6 Description The software is susceptible to a Mass Assignment issue. This happens when user-supplied data is automatically mapped to application objects without sufficient validation or access controls, potentially...

7.6CVSS6.3AI score0.00235EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/10/02 11:58 p.m.3 views

SUSE CVE-2023-53464

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: Check that sock is valid before iscsisetparam The validity of sock should be checked before assignment to avoid incorrect values. Commit 57569c37f0ad "scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling...

5.5CVSS6.5AI score0.00151EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/10/01 6:14 p.m.12 views

kernel: vsock: Fix transport_* TOCTOU

In the Linux kernel, the following vulnerability has been resolved: vsock: Fix transport TOCTOU Transport assignment may race with module unload. Protect newtransport from becoming a stale pointer. This also takes care of an insecure call in vsockuselocaltransport; add a lockdep assert. BUG: unab...

4.7CVSS6.8AI score0.00113EPSS
Exploits0References5
NVD
NVD
added 2025/10/01 12:15 p.m.5 views

CVE-2023-53511

In the Linux kernel, the following vulnerability has been resolved: iouring: fix fget leak when fs don't support nowait buffered read Heming reported a BUG when using iouring doing link-cp on ocfs2. 1 Do the following steps can reproduce this BUG: mount -t ocfs2 /dev/vdc /mnt/ocfs2 cp testfile...

5.5CVSS0.00134EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/10/01 12:28 a.m.6 views

kernel: vsock: Fix transport_* TOCTOU

In the Linux kernel, the following vulnerability has been resolved: vsock: Fix transport TOCTOU Transport assignment may race with module unload. Protect newtransport from becoming a stale pointer. This also takes care of an insecure call in vsockuselocaltransport; add a lockdep assert. BUG: unab...

4.7CVSS6.8AI score0.00113EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/10/01 12:0 a.m.3 views

PT-2025-40279

Name of the Vulnerable Software and Affected Versions Deciso OPNsense versions prior to 25.7.4 Description OPNsense versions prior to 25.7.4 are susceptible to a stored cross-site scripting issue. This occurs when creating a "Interfaces: Devices: Point-to-Point" entry, where the ptpid parameter i...

5.1CVSS5.6AI score0.00305EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/09/30 6:41 p.m.8 views

CVE-2025-7104

A mass assignment vulnerability exists in danny-avila/librechat, affecting all versions. This vulnerability allows attackers to manipulate sensitive fields by automatically binding user-provided data to internal object properties or database fields without proper filtering. As a result, any extra...

4.3CVSS6.7AI score0.00277EPSS
Exploits1References1
OSV
OSV
added 2025/09/29 5:15 p.m.4 views

CVE-2025-7104

A mass assignment vulnerability exists in danny-avila/librechat, affecting all versions. This vulnerability allows attackers to manipulate sensitive fields by automatically binding user-provided data to internal object properties or database fields without proper filtering. As a result, any extra...

7.5CVSS6.8AI score
Exploits0References2
NVD
NVD
added 2025/09/29 5:15 p.m.4 views

CVE-2025-7104

A mass assignment vulnerability exists in danny-avila/librechat, affecting all versions. This vulnerability allows attackers to manipulate sensitive fields by automatically binding user-provided data to internal object properties or database fields without proper filtering. As a result, any extra...

7.5CVSS0.00277EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/09/29 5:10 p.m.3 views

CVE-2025-7104 Mass Assignment in danny-avila/librechat

A mass assignment vulnerability exists in danny-avila/librechat, affecting all versions. This vulnerability allows attackers to manipulate sensitive fields by automatically binding user-provided data to internal object properties or database fields without proper filtering. As a result, any extra...

4.3CVSS6.4AI score0.00277EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/09/29 5:10 p.m.10 views

CVE-2025-7104 Mass Assignment in danny-avila/librechat

A mass assignment vulnerability exists in danny-avila/librechat, affecting all versions. This vulnerability allows attackers to manipulate sensitive fields by automatically binding user-provided data to internal object properties or database fields without proper filtering. As a result, any extra...

4.3CVSS0.00277EPSS
Exploits1References2
Rows per page
Query Builder