Lucene search
K

45 matches found

RedHat Linux
RedHat Linux
added 4 days ago6 views

firefox: thunderbird: Mitigation bypass in the DOM: Security component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Mitigation bypass in the DOM: Security component...

6.5CVSS5.7AI score0.00248EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/05/12 6:17 p.m.10 views

CVE-2026-44167

phpseclib is a PHP secure communications library. Prior to 1.0.29, 2.0.54, and 3.0.52, anyone loading untrusted ASN1 files eg. X509 certificates, RSA PKCS8 private or public keys, etc. This is a bypass of CVE-2024-27355. This vulnerability is fixed in 1.0.29, 2.0.54, and 3.0.52...

7.5CVSS5.8AI score0.00201EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/11/10 4:21 a.m.3 views

microcode_ctl: From CVEorg collector

New Spectre-v2 attack classes have been discovered within CPU architectures that enable self-training exploitation of speculative execution within the same privilege domain. These novel techniques bypass existing hardware and software mitigations, including IBPB, eIBRS, and BHINO, by leveraging...

5.7CVSS6AI score0.00371EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-48679

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00337EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-32717

Malicious code in bioql PyPI...

5.5CVSS6.4AI score0.02463EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-32852

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00294EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-32713

Malicious code in bioql PyPI...

5.5CVSS6.4AI score0.02463EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/08/18 3:1 p.m.5 views

microcode_ctl: From CVEorg collector

New Spectre-v2 attack classes have been discovered within CPU architectures that enable self-training exploitation of speculative execution within the same privilege domain. These novel techniques bypass existing hardware and software mitigations, including IBPB, eIBRS, and BHINO, by leveraging...

5.7CVSS6.9AI score0.00371EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/01 7:48 p.m.8 views

microcode_ctl: From CVEorg collector

New Spectre-v2 attack classes have been discovered within CPU architectures that enable self-training exploitation of speculative execution within the same privilege domain. These novel techniques bypass existing hardware and software mitigations, including IBPB, eIBRS, and BHINO, by leveraging...

5.7CVSS6.9AI score0.00371EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/01 4:55 p.m.6 views

microcode_ctl: From CVEorg collector

New Spectre-v2 attack classes have been discovered within CPU architectures that enable self-training exploitation of speculative execution within the same privilege domain. These novel techniques bypass existing hardware and software mitigations, including IBPB, eIBRS, and BHINO, by leveraging...

5.7CVSS6.9AI score0.00371EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/01 3:24 p.m.4 views

microcode_ctl: From CVEorg collector

New Spectre-v2 attack classes have been discovered within CPU architectures that enable self-training exploitation of speculative execution within the same privilege domain. These novel techniques bypass existing hardware and software mitigations, including IBPB, eIBRS, and BHINO, by leveraging...

5.7CVSS6.9AI score0.00371EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/23 3:19 a.m.3 views

CVE-2023-23849

Versions of Coverity Connect prior to 2022.12.0 are vulnerable to an unauthenticated Cross-Site Scripting vulnerability. Any web service hosted on the same sub domain can set a cookie for the whole subdomain which can be used to bypass other mitigations in place for malicious purposes...

8.1CVSS6.4AI score0.01298EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/18 12:0 a.m.6 views

Google Pixel Local Elevation of Privilege Vulnerability

Google Pixel is a smartphone from the American company Google Google. Google Pixel suffers from a local elevation of privilege vulnerability, which stems from a logic error in the s2mpu.c file, which can be used to bypass mitigations and can be exploited by an attacker to perform a local elevatio...

7.8CVSS6.7AI score0.00105EPSS
Exploits0References1
OSV
OSV
added 2024/12/10 9:15 p.m.4 views

CVE-2024-49547

InDesign Desktop versions ID19.5, ID18.5.4 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

5.5CVSS5.6AI score0.00316EPSS
Exploits0References1
OSV
OSV
added 2024/09/13 7:15 a.m.3 views

CVE-2024-41871

Media Encoder versions 24.5, 23.6.8 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

5.5CVSS5.6AI score0.00268EPSS
Exploits0References1
OSV
OSV
added 2024/09/05 9:15 a.m.1 views

CVE-2024-45107

Acrobat Reader versions 20.005.30636, 24.002.20964, 24.001.30123, 24.002.20991 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue...

5.5CVSS5.8AI score0.003EPSS
Exploits0References1
NVD
NVD
added 2024/08/14 3:15 p.m.20 views

CVE-2024-34126

Dimension versions 3.4.11 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must...

5.5CVSS0.00317EPSS
Exploits0References1
OSV
OSV
added 2024/08/02 7:16 a.m.5 views

CVE-2024-39396

InDesign Desktop versions ID18.5.2, ID19.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

5.5CVSS5.6AI score0.00233EPSS
Exploits0References1
OSV
OSV
added 2024/06/13 9:15 a.m.3 views

CVE-2024-30276

Audition versions 24.2, 23.6.4 and earlier Answer: are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that ...

5.5CVSS5.8AI score0.00486EPSS
Exploits0References1
NVD
NVD
added 2024/05/16 9:15 a.m.18 views

CVE-2024-30308

Substance3D - Painter versions 9.1.2 and earlier Answer: are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...

5.5CVSS5.4AI score0.00244EPSS
Exploits0References1
Rows per page
Query Builder