Lucene search
K

10 matches found

CNNVD
CNNVD
added 2026/03/11 12:0 a.m.10 views

Parse Server 信息泄露漏洞

Parse Server is an open-source backend developed by the Parse Platform. It can be deployed on any infrastructure that runs Node.js. Versions of Parse Server prior to 9.6.0-alpha.9 and 8.6.35 contained a vulnerability related to information leakage. This vulnerability stemmed from the ability of...

7.5CVSS5.8AI score0.00288EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/19 7:32 a.m.4 views

CVE-2025-64192

Missing Authorization vulnerability in 8theme XStore xstore allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects XStore: from n/a through 9.6...

6.3CVSS7AI score0.00189EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/18 9:30 a.m.5 views

EUVD-2025-204087

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in 8theme XStore xstore allows PHP Local File Inclusion.This issue affects XStore: from n/a through 9.6.1...

7.5CVSS6.6AI score0.00381EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/07/09 12:0 a.m.4 views

PT-2024-5283 · Siemens · Siprotec 5

Name of the Vulnerable Software and Affected Versions: SIPROTEC 5 6MD84 CP300 versions prior to V9.64 SIPROTEC 5 6MD85 CP200 versions prior to V9.64 SIPROTEC 5 6MD85 CP300 versions prior to V9.64 SIPROTEC 5 6MD86 CP200 versions prior to V9.64 SIPROTEC 5 6MD86 CP300 versions prior to V9.64 SIPROTE...

8.2CVSS6.7AI score0.00205EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/03/27 12:0 a.m.3 views

Hitachi Energy Asset Suite 安全漏洞

Hitachi Energy Asset Suite is a powerful suite from Hitachi, Japan. standardizes and streamlines enterprise asset management workflows to maximize employee productivity and improve asset performance. A security vulnerability exists in Hitachi Energy Asset Suite versions prior to 9.6.3.13 and prio...

5.3CVSS6.9AI score0.00371EPSS
Exploits0References2
OSV
OSV
added 2024/01/12 11:6 a.m.3 views

OESA-2024-1065 openssh security update

OpenSSH is the premier connectivity tool for remote login with the SSH protocol. \ It encrypts all traffic to eliminate eavesdropping, connection hijacking, and \ other attacks. In addition, OpenSSH provides a large suite of secure tunneling \ capabilities, several authentication methods, and...

5.9CVSS6.7AI score0.9378EPSS
Exploits4References2
OSV
OSV
added 2023/12/18 4:15 p.m.6 views

AZL-43951 CVE-2023-48795 affecting package podman 4.1.1-26

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted from the extension negotiation message, and a client and server may consequently end up with a connecti...

5.9CVSS6.7AI score0.9378EPSS
Exploits4References1
OSV
OSV
added 2023/12/18 4:15 p.m.11 views

ALPINE-CVE-2023-48795

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted from the extension negotiation message, and a client and server may consequently end up with a connecti...

5.9CVSS7AI score0.9378EPSS
Exploits4References1
Positive Technologies
Positive Technologies
added 2022/12/19 12:0 a.m.4 views

PT-2022-24550

Name of the Vulnerable Software and Affected Versions: Click Studios Passwordstate versions prior to 9.6 build 9653 Click Studios Passwordstate Browser Extension Chrome versions prior to 9.6 build 9653 Description: A critical vulnerability was found in Click Studios Passwordstate and Passwordstat...

7.5CVSS7.5AI score0.00968EPSS
Exploits1References9
OSV
OSV
added 2020/08/03 5:15 p.m.9 views

CVE-2020-8574

Active IQ Unified Manager for Linux versions prior to 9.6 ship with the Java Management Extension Remote Method Invocation JMX RMI service enabled allowing unauthorized code execution to local users...

7.8CVSS7.9AI score0.00447EPSS
Exploits0References1
Rows per page
Query Builder