Lucene search
+L

16 matches found

redhatcve
redhatcve
added 3 days ago7 views

CVE-2026-58250

A flaw was found in NATS Server, a high-performance messaging system. An unauthenticated attacker with network access to a leafnode listener, where compression is enabled, could exploit this vulnerability. By sending repeated leafnode INFO protocol messages during the pre-authentication handshake...

7.5CVSS6AI score0.00732EPSS
Exploits0References8
nvd
nvd
added 2026/06/30 8:17 p.m.7 views

CVE-2026-10109

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to remote code execution due to improper pre-auth DRDA handshake handling...

9.8CVSS0.0086EPSS
Exploits0References1
nessus
nessus
added 2026/06/26 12:0 a.m.17 views

IBM DB2 Multiple Vulnerabilities (7277424, 7277423, 7277417) (Windows)

According to its self-reported version number, IBM Db2 is affected by multiple vulnerabilities: - IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could disclose sensitive information to an authenticated user from the monitoring and event tables. CVE-2025-36372 - IBM Db2 is...

9.8CVSS6.5AI score0.0086EPSS
Exploits0References6
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-30374

Malicious code in bioql PyPI...

9.1CVSS9AI score0.00464EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/06 2:2 a.m.11 views

CVE-2022-25719

Information disclosure in WLAN due to improper length check while processing authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice ...

9.1CVSS7.2AI score0.00464EPSS
Exploits0References1
nvd
nvd
added 2022/10/19 11:15 a.m.32 views

CVE-2022-25718

Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...

9.8CVSS0.00412EPSS
Exploits0References1
prion
prion
added 2022/10/19 11:15 a.m.24 views

Input validation

Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...

7.5CVSS9.4AI score0.00412EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2022/10/19 12:0 a.m.8 views

CVE-2022-25718

Cryptographic issue in WLAN due to improper check on return value while authentication handshake in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice &...

9.1CVSS7.3AI score0.00412EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2022/10/19 12:0 a.m.6 views

PT-2022-17476 · Qualcomm · Qualcomm Snapdragon

Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon affected versions not specified Description: A cryptographic issue exists in the WLAN due to an improper check on the return value during the authentication handshake. This issue affects various Qualcomm Snapdragon product...

9.8CVSS8.2AI score0.00412EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2022/10/19 12:0 a.m.7 views

PT-2022-17477 · Qualcomm · Snapdragon Connectivity +9

Name of the Vulnerable Software and Affected Versions: Snapdragon Auto affected versions not specified Snapdragon Connectivity affected versions not specified Snapdragon Consumer Electronics Connectivity affected versions not specified Snapdragon Consumer IOT affected versions not specified...

9.1CVSS8.8AI score0.00464EPSS
Exploits0References4
cve
cve
added 2022/10/19 12:0 a.m.99 views

CVE-2022-25718

CVE-2022-25718 is a Qualcomm WLAN cryptographic issue described across Snapdragon lineups (Auto, Connectivity, CE/IoT, Industrial IoT, etc.) where an improper check on the return value during the authentication handshake is cited as the root cause. The vulnerability affects Qualcomm closed‑source...

9.8CVSS9.4AI score0.00412EPSS
Exploits0References1Affected Software1
osv
osv
added 2020/09/24 6:15 p.m.7 views

CVE-2020-3429

A vulnerability in the WPA2 and WPA3 security implementation of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause denial of service DoS condition on an affected device. The vulnerability is due to incorrect pack...

6.5CVSS5.8AI score0.00726EPSS
Exploits0References1
cvelist
cvelist
added 2020/09/24 5:53 p.m.32 views

CVE-2020-3429 Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family WPA Denial of Service Vulnerability

A vulnerability in the WPA2 and WPA3 security implementation of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause denial of service DoS condition on an affected device. The vulnerability is due to incorrect pack...

7.4CVSS6.7AI score0.00726EPSS
Exploits0References1
redhat
redhat
added 2018/09/25 7:18 p.m.5 views

flatpak: sandbox escape in D-Bus filtering by a crafted authentication handshake

It was found that flatpak's D-Bus proxy did not properly filter the access to D-Bus during the authentication protocol. A specially crafted flatpak application could use this flaw to bypass all restrictions imposed by flatpak and have full access to the D-BUS interface...

8.8CVSS5.8AI score0.00412EPSS
Exploits0References4
nvd
nvd
added 2016/10/05 10:59 a.m.21 views

CVE-2016-5085

Johnson & Johnson Animas OneTouch Ping devices do not properly generate random numbers, which makes it easier for remote attackers to spoof meters by sniffing the network and then engaging in an authentication handshake...

7.8CVSS8.2AI score0.03864EPSS
Exploits0References5
prion
prion
added 2016/10/05 10:59 a.m.21 views

Authentication flaw

Johnson & Johnson Animas OneTouch Ping devices do not properly generate random numbers, which makes it easier for remote attackers to spoof meters by sniffing the network and then engaging in an authentication handshake...

7.8CVSS7.4AI score0.03864EPSS
Exploits0References5
Rows per page
Query Builder