Lucene search
+L

460 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:53 a.m.10 views

CVE-2020-10194

cs/service/account/AutoCompleteGal.java in Zimbra zm-mailbox before 8.8.15.p8 allows authenticated users to request any GAL account. This differs from the intended behavior in which the domain of the authenticated user must match the domain of the galsync account in the request...

6.5CVSS6.6AI score0.0121EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:31 a.m.10 views

CVE-2023-25080

Protection mechanism failure in some IntelR Distribution of OpenVINO toolkit software before version 2023.0.0 may allow an authenticated user to potentially enable information disclosure via local access...

5.5CVSS6.1AI score0.00185EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:29 a.m.11 views

CVE-2023-50364

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute code via a network. We have already fixed the vulnerability in the following versions: QTS...

8.8CVSS7.3AI score0.00851EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:19 a.m.11 views

CVE-2021-22198

An issue has been discovered in GitLab CE/EE affecting all versions from 13.8 and above allowing an authenticated user to delete incident metric images of public projects...

4.3CVSS6.3AI score0.01077EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:8 a.m.11 views

CVE-2019-20736

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6000 before 1.0.0.72, D6100 before 1.0.0.63, R7800 before 1.0.2.52, R8900 before 1.0.4.2, R9000 before 1.0.4.2, WNDR3700v4 before 1.0.2.102, WNDR4300v1 before 1.0.2.104, WNDR4300v2 before...

6.8CVSS7.2AI score0.00506EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:8 a.m.10 views

CVE-2019-20732

Certain NETGEAR devices are affected by command injection by an authenticated user. This affects D6220 before 1.0.0.40, D7000v2 before 1.0.0.74, D8500 before 1.0.3.39, DGN2200v4 before 1.0.0.102, DGND2200Bv4 before 1.0.0.102, EX3700 before 1.0.0.70, EX3800 before 1.0.0.70, EX6000 before 1.0.0.30,...

6.7CVSS7.2AI score0.00654EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:57 a.m.4 views

CVE-2023-4293

The Premium Packages - Sell Digital Products Securely plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 5.7.4 due to insufficient restriction on the 'wpdmppupdateprofile' function. This makes it possible for authenticated attackers, with minimal...

8.8CVSS6.1AI score0.00794EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:44 a.m.8 views

CVE-2022-23654

Wiki.js is a wiki app built on Node.js. In affected versions an authenticated user with write access on a restricted set of paths can update a page outside the allowed paths by specifying a different target page ID while keeping the path intact. The access control incorrectly check the path acces...

8.1CVSS6.6AI score0.00723EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:9 a.m.3 views

CVE-2024-2448

An OS command injection vulnerability has been identified in LoadMaster. An authenticated UI user with any permission settings may be able to inject commands into a UI component using a shell command resulting in OS command injection...

8.8CVSS7.5AI score0.55422EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/12/15 12:30 p.m.10 views

Apache Airflow exposes secret values to authenticated UI users via rendered templates

A vulnerability in Apache Airflow allowed authenticated UI users to view secret values in rendered templates due to secrets not being properly redacted, potentially exposing secrets to users without the appropriate authorization. Users are recommended to upgrade to version 3.1.4, which fixes this...

6.5CVSS6.6AI score0.00413EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2025/12/15 12:15 p.m.7 views

PYSEC-2025-86

A vulnerability in Apache Airflow allowed authenticated UI users to view secret values in rendered templates due to secrets not being properly redacted, potentially exposing secrets to users without the appropriate authorization. Users are recommended to upgrade to version 3.1.4, which fixes this...

6.5CVSS5.7AI score0.00413EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/11 7:48 p.m.29 views

CVE-2025-13148 IBM Aspera Orchestrator Unverified Password Change

IBM Aspera Orchestrator 4.0.0 through 4.1.0 could allow could an authenticated user to change the password of another user without prior knowledge of that password...

8.1CVSS0.00242EPSS
Exploits0References1
OSV
OSV
added 2025/12/04 7:55 p.m.7 views

CVE-2025-65958 Open WebUI vulnerable to Server-Side Request Forgery (SSRF) via Arbitrary URL Processing in /api/v1/retrieval/process/web

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.37, a Server-Side Request Forgery SSRF vulnerability in Open WebUI allows any authenticated user to force the server to make HTTP requests to arbitrary URLs. This can be exploited to...

8.5CVSS6.8AI score0.04117EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/12/03 12:0 a.m.7 views

RockyLinux 8 : redis:6 (RLSA-2025:19238)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:19238 advisory. redis: Lua library commands may lead to integer overflow and potential RCE CVE-2025-46817 Redis: Redis: Authenticated users can execute LUA scripts as a...

9.9CVSS9.2AI score0.86767EPSS
Exploits15References9
OSV
OSV
added 2025/12/02 9:28 a.m.6 views

CVE-2025-13870 Unauthorized access and subscription vulnerability in Boards

Mattermost versions 10.11.x = 10.11.4, 10.5.x = 10.5.12 fail to validate the user permission when accessing the files and subscribing to the block in Boards, which allows an authenticated user to access other board files and was able to subscribe to the block from other boards that the user does...

3.1CVSS6AI score0.00193EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/11/27 12:0 a.m.11 views

PT-2025-48275

Mattermost versions 11.0.x = 11.0.2, 10.12.x = 10.12.1, 10.11.x = 10.11.4, 10.5.x = 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/channel id/common teams endpoint...

4.3CVSS6.7AI score0.00192EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/25 12:0 a.m.3 views

CVE-2025-64061

Primakon Pi Portal 1.0.18 /api/v2/users endpoint is vulnerable to unauthorized data exposure due to deficient access control mechanisms. Any authenticated user, regardless of their privilege level including standard or low-privileged users, can make a GET request to this endpoint and retrieve a...

6.6AI score0.00195EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/19 5:26 p.m.10 views

EUVD-2025-198232

Rallly is an open-source scheduling and collaboration tool. Prior to version 4.5.4, an authorization flaw in the poll management feature allows any authenticated user to pause or resume any poll, regardless of ownership. The system only uses the public pollId to identify polls, and it does not...

8.1CVSS6.1AI score0.00323EPSS
Exploits1References2
CVE
CVE
added 2025/11/19 5:26 p.m.29 views

CVE-2025-65033

Rallly prior to 4.5.4 contains an authorization flaw in the poll management feature: polls are identified only by pollId, and ownership is not verified. This allows any authenticated user to pause or resume any poll, compromising integrity and availability. The issue has been patched in version 4...

8.1CVSS6.3AI score0.00323EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/19 5:23 p.m.2 views

CVE-2025-65028 Rallly Has an IDOR Vulnerability in Vote Update Endpoint Allows Unauthorized Manipulation of Participant Votes

Rallly is an open-source scheduling and collaboration tool. Prior to version 4.5.4, an insecure direct object reference IDOR vulnerability allows any authenticated user to modify other participants’ votes in polls without authorization. The backend relies solely on the participantId parameter to...

6.5CVSS6.3AI score0.00251EPSS
Exploits1References2
Rows per page
Query Builder