Lucene search
+L

995 matches found

Positive Technologies
Positive Technologies
added 2025/11/05 12:0 a.m.5 views

PT-2025-45125

Name of the Vulnerable Software and Affected Versions Cisco ISE and Cisco ISE-PIC affected versions not specified Description The web-based management interface of Cisco ISE and Cisco ISE-PIC contains weaknesses that could allow an authenticated, remote attacker to perform a reflected Cross-Site...

5.4CVSS6.3AI score0.03521EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/11/03 12:20 p.m.7 views

libssh: out-of-bounds read in sftp_handle()

A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftphandle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and to return an invalid pointer, which is used in...

8.1CVSS6.7AI score0.02449EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/11/03 12:0 a.m.5 views

Digiwin EasyFlow .NET和Digiwin EasyFlow AiNet SQL注入漏洞

Digiwin EasyFlow .NET and Digiwin EasyFlow AiNet are both products of China's Digiwin Corporation, Digiwin EasyFlow . AiNet is a business process automation platform. NET and Digiwin EasyFlow AiNet have a SQL injection vulnerability that originates from a vulnerability that could allow an...

7.1CVSS7.9AI score0.00317EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/30 6:5 p.m.6 views

Security Bulletin: IBM Financial Transaction Manager is impacted by an out-of-bounds read vulnerability in RedHat Proxy for Kubernetes RBAC authorization

Summary IBM Financial Transaction Manager for RedHat OpenShift has addressed the following vulnerability. Vulnerability Details CVEID:CVE-2025-5318 DESCRIPTION: A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftphandle function d...

8.1CVSS6.4AI score0.02449EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.6 views

Cisco IOS XE Software Simple Network Management Protocol DoS (cisco-sa-snmpwred-x3MJyf5M)

According to its self-reported version, Cisco IOS-XE Software is affected by a vulnerability. - A vulnerability in the Simple Network Management Protocol SNMP subsystem of Cisco IOS XE Software could allow an authenticated, remote attacker to cause a denial of service DoS condition on an affected...

7.7CVSS5.6AI score0.00354EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/24 12:0 a.m.6 views

EulerOS 2.0 SP13 : libssh (EulerOS-SA-2025-2267)

According to the versions of the libssh package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in libssh, where an uninitialized variable exists under certain conditions in the privatekeyfromfile function. This flaw...

8.1CVSS6.3AI score0.02449EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/10/15 4:43 p.m.4 views

CVE-2025-37146

A vulnerability in the web-based management interface of network access point configuration services could allow an authenticated remote attacker to perform remote command execution. Successful exploitation could allow an attacker to execute arbitrary commands on the underlying operating system...

7.2CVSS7.8AI score0.0083EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/14 9:50 p.m.7 views

CVE-2025-62383

SQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the database...

6.5CVSS6AI score0.00774EPSS
Exploits0References1
NVD
NVD
added 2025/10/14 5:15 p.m.5 views

CVE-2025-37136

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS0.00341EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 5:15 p.m.7 views

CVE-2025-37137

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS5.9AI score0.00341EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 5:15 p.m.4 views

CVE-2025-37135

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS5.9AI score0.00341EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/14 4:56 p.m.4 views

EUVD-2025-34439

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS6.6AI score0.00341EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/14 4:56 p.m.5 views

EUVD-2025-34440

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS6.6AI score0.00341EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/14 12:0 a.m.5 views

HPE AOS 安全漏洞

HPE AOS is an operating system from HPE Corporation in the United States. A security vulnerability exists in HPE ArubaOS that originates from a remote attacker after authentication that can execute remote commands, which could lead to the execution of arbitrary commands on the underlying operatin...

7.2CVSS7.5AI score0.0083EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/14 12:0 a.m.5 views

HPE AOS 安全漏洞

HPE AOS is an operating system from HPE Corporation in the United States. A security vulnerability exists in HPE AOS that stems from an arbitrary file deletion vulnerability in the command line interface, which could lead to the deletion of arbitrary files by an authenticated remote malicious act...

6.5CVSS6.9AI score0.00341EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/14 12:0 a.m.3 views

PT-2025-41979

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS7.1AI score0.00341EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/14 12:0 a.m.7 views

PT-2025-41981

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS7.1AI score0.00341EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2019-6914

Malware in sbrugna...

5.5CVSS5.3AI score0.00622EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-15808

Malware in sbrugna...

6.5CVSS6.6AI score0.01296EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-13002

Malware in sbrugna...

6.5CVSS6.5AI score0.01547EPSS
Exploits0References3
Rows per page
Query Builder