Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 5:1 p.m.4 views

CVE-2026-24989

Deserialization of Untrusted Data vulnerability in FantasticPlugins SUMO Affiliates Pro affs allows Object Injection.This issue affects SUMO Affiliates Pro: from n/a through 11.4.0...

9.8CVSS5.8AI score0.00375EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 4:14 p.m.6 views

CVE-2026-24989

CVE-2026-24989 describes a deserialization of untrusted data in the SUMO Affiliates Pro plugin for WordPress (affs), enabling PHP object injection. Affected: SUMO Affiliates Pro versions below 11.4.0. Root cause: deserialization of untrusted input leading to object injection. Impact: according to...

9.8CVSS5.8AI score0.00375EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/31 12:0 a.m.5 views

PT-2025-54468

Name of the Vulnerable Software and Affected Versions Esri ArcGIS Server versions prior to 11.4 Description A stored cross site scripting issue exists in Esri ArcGIS Server. In certain setups, a remote, unauthenticated attacker can store files containing malicious code that could execute within a...

6.1CVSS6.3AI score0.00197EPSS
Exploits0References5
OSV
OSV
added 2023/08/08 10:15 a.m.4 views

CVE-2023-30796

A vulnerability has been identified in JT Open All versions V11.4, JT Utilities All versions V13.4. The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted JT files. This could allow an attacker to execute code in the context ...

7.8CVSS5.9AI score0.00202EPSS
Exploits0References1
OSV
OSV
added 2021/04/29 7:15 p.m.2 views

CVE-2021-1084

NVIDIA vGPU driver contains a vulnerability in the guest kernel mode driver and Virtual GPU Manager vGPU plugin, in which an input length is not validated, which may lead to information disclosure, tampering of data or denial of service. This affects vGPU version 12.x prior to 12.2 and version 11...

7.8CVSS7.1AI score0.0025EPSS
Exploits0References1
CNVD
CNVD
added 2020/07/30 12:0 a.m.4 views

Cisco Data Center Network Manager Command Injection Vulnerability

Cisco Data Center Network Manager DCNM is a data center management system from Cisco. The system works with Cisco Nexus and MDS series switches and provides storage visualization, configuration and troubleshooting. A security vulnerability exists in the REST API endpoint in Cisco DCNM versions...

8.2CVSS7.1AI score0.0079EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/07 12:0 a.m.3 views

Dolibarr ERP/CRM Access Restriction Bypass Vulnerability

Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. A security vulnerability exists in the core/getmenudiv.php fil...

8.8CVSS6.8AI score0.01955EPSS
Exploits0References1
OSV
OSV
added 2019/04/03 6:29 p.m.5 views

CVE-2018-4275

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1...

8.6CVSS5.8AI score0.00669EPSS
Exploits0References1
OSV
OSV
added 2019/04/03 6:29 p.m.1 views

CVE-2018-4274

A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, Safari 11.1.2...

7.5CVSS5.8AI score0.00827EPSS
Exploits0References2
OSV
OSV
added 2019/01/11 6:29 p.m.2 views

CVE-2018-4404

In iOS before 11.4 and macOS High Sierra before 10.13.5, a memory corruption issue exists and was addressed with improved memory handling...

7.8CVSS5.8AI score0.13919EPSS
Exploits4References3
CNVD
CNVD
added 2018/11/14 12:0 a.m.1 views

Apple iOS libxpc Elevation of Privilege Vulnerability

Apple iOS is an operating system developed by Apple for mobile devices. libxpc is an open source implementation of one of Apple's XPC libraries. A security vulnerability exists in the libxpc component in Apple iOS versions prior to 11.4. An attacker can exploit this vulnerability to execute...

9.3CVSS8.4AI score0.13919EPSS
Exploits4References1
CNVD
CNVD
added 2018/08/08 12:0 a.m.4 views

Intel Saffron MemoryBase elevation of privilege vulnerability (CNVD-2018-15600)

Intel Saffron MemoryBase is a memory base kit for Saffron from Intel Corporation USA. A security vulnerability exists in Intel Saffron MemoryBase versions prior to 11.4. An attacker can exploit the vulnerability to elevate privileges and execute arbitrary code as root...

8CVSS8.2AI score0.0065EPSS
Exploits0References1
OSV
OSV
added 2018/08/06 12:0 a.m.2 views

UBUNTU-CVE-2018-4265

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6...

8.8CVSS7.1AI score0.01985EPSS
Exploits0References5
OSV
OSV
added 2018/08/06 12:0 a.m.5 views

UBUNTU-CVE-2018-4261

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6...

8.8CVSS7.1AI score0.01985EPSS
Exploits0References5
OSV
OSV
added 2018/08/01 3:29 p.m.5 views

CVE-2018-3671

Escalation of privilege in Intel Saffron admin application before 11.4 allows an authenticated user to access unauthorized information...

5.7CVSS5.8AI score0.00404EPSS
Exploits0References1
OSV
OSV
added 2018/06/21 7:29 p.m.5 views

CVE-2018-7683

Micro Focus Solutions Business Manager versions prior to 11.4 might reveal certain sensitive information in server log files...

7.5CVSS5.8AI score0.01111EPSS
Exploits0References1
OSV
OSV
added 2018/06/08 6:29 p.m.4 views

CVE-2018-4215

An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Bluetooth" component. It allows attackers to gain privileges or cause a denial of service buffer overflow via a crafted app...

7.8CVSS5.8AI score0.00922EPSS
Exploits0References2
CNVD
CNVD
added 2018/06/04 12:0 a.m.3 views

Apple iOS Siri Permissions Vulnerability (CNVD-2018-12171)

Apple iOS is an operating system developed by Apple Inc. for mobile devices.Siri is an intelligent voice control component.Siri Contacts is the component of Siri that is used to access private contact information.Siri Contacts is the component of Siri that is used to access private contact...

4.6CVSS5.5AI score0.00342EPSS
Exploits0References1
CNVD
CNVD
added 2018/06/04 12:0 a.m.4 views

Apple iOS and macOS High Sierra Mail Information Disclosure Vulnerability

Apple iOS and macOS High Sierra are products of Apple Inc. Apple iOS is an operating system for mobile devices; macOS High Sierra is a specialized operating system for Mac computers. mail is one of the email components. A security vulnerability exists in the Mail component of Apple iOS before 11....

7.5CVSS7.6AI score0.01893EPSS
Exploits1References1
Rows per page
Query Builder