Lucene search
K

299 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:9 a.m.7 views

CVE-2024-34732

In RGXMMUCacheInvalidate of rgxmem.c, there is a possible arbitrary code execution due to a race condition. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS7.7AI score0.00073EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:32 a.m.9 views

CVE-2024-40405

Incorrect access control in Cybele Software Thinfinity Workspace before v7.0.3.109 allows attackers to gain access to a secondary broker via a crafted request...

8.1CVSS7.1AI score0.00441EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:13 a.m.10 views

CVE-2023-40292

Harman Infotainment 20190525031613 and later discloses the IP address via CarPlay CTRL packets...

4.3CVSS7AI score0.00449EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 2:22 a.m.4 views

CVE-2023-38441

In vowifiservice, there is a possible missing permission check.This could lead to local information disclosure with no additional execution privileges...

5.5CVSS6.3AI score0.00078EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:48 p.m.13 views

CVE-2022-4239

The Workreap WordPress theme before 2.6.4 does not verify that an addon service belongs to the user issuing the request, or indeed that it is an addon service, when processing the workreapaddonsserviceremove action, allowing any user to delete any post by knowing or guessing the id...

6.5CVSS6.9AI score0.00593EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:12 p.m.6 views

CVE-2022-36514

H3C GR-1200W MiniGRW1A0V100R006 was discovered to contain a stack overflow via the function WanModeSetMultiWan...

9.8CVSS7.9AI score0.01011EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:10 p.m.5 views

CVE-2022-36501

H3C Magic NX18 Plus NX18PV100R003 was discovered to contain a stack overflow via the function UpdateSnat...

7.8CVSS7.9AI score0.00766EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:59 a.m.7 views

CVE-2019-9910

The kingcomposer plugin 2.7.6 for WordPress has wp-admin/admin.php?page=kc-mapper id XSS...

6.1CVSS7.1AI score0.01389EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:16 a.m.14 views

CVE-2025-4949

A flaw was found in Eclipse JGit. This vulnerability can allow information disclosure, denial of service, and other security issues via parsing XML files...

4.8CVSS6.7AI score0.0104EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/21 5:7 a.m.10 views

CVE-2025-37969

No description is available for this CVE...

7CVSS7AI score0.00127EPSS
Exploits0References4
Circl
Circl
added 2025/05/20 3:13 p.m.14 views

CVE-2025-45862

creationtimestamp| type| source ---|---|--- 2025-05-20 15:13:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpmerozy2w2h...

6.5CVSS7AI score0.00285EPSS
Exploits1References1
CVE
CVE
added 2025/05/19 2:44 p.m.24 views

CVE-2025-48237

CVE-2025-48237 is a Stored Cross-Site Scripting (XSS) vulnerability in the Wishlist for WooCommerce plugin for WordPress, affecting versions up to 3.2.2 (and possibly earlier). The issue arises from improper input neutralization during web page generation, enabling stored XSS. CVSS v3.1 base scor...

6.5CVSS5.9AI score0.00215EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/15 8:7 p.m.6 views

CVE-2024-6718 PVN Auth Popup <= 1.0.0 - Contributor+ XSS via Shortcode

The PVN Auth Popup WordPress plugin through 1.0.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

5.5AI score0.00258EPSS
Exploits1References1
CVE
CVE
added 2025/05/13 9:2 p.m.33 views

CVE-2024-28954

CVE-2024-28954 involves Intel graphics installers with incorrect default permissions that may allow an authenticated user to escalate privileges locally. Affected software spans Intel® 7th–10th Gen Windows Graphics drivers, Intel® Arc™ & Iris® Xe Windows drivers, and the Intel® Data Center GPU Fl...

6.7CVSS7.2AI score0.00115EPSS
Exploits0References1
Circl
Circl
added 2025/05/11 8:27 a.m.32 views

CVE-2025-4535

creationtimestamp| type| source ---|---|--- 2025-05-11 08:27:49+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15924 2025-05-11 08:37:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lov2hgcj6g2o 2025-05-11 10:13:33+00:00| seen|...

6.9CVSS5.4AI score0.00532EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2025/05/09 6:43 a.m.7 views

CVE-2025-37864

In the Linux kernel, the following vulnerability has been resolved: net: dsa: clean up FDB, MDB, VLAN entries on unbind As explained in many places such as commit b117e1e8a86d "net: dsa: delete dsalegacyfdbadd and dsalegacyfdbdel", DSA is written given the assumption that higher layers have...

5.5CVSS5.5AI score0.00234EPSS
Exploits0
Circl
Circl
added 2025/05/08 11:24 p.m.17 views

CVE-2025-4441

creationtimestamp| type| source ---|---|--- 2025-05-08 23:24:04+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15640 2025-05-08 23:28:17+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lop2slhdho42 2025-05-09...

9.8CVSS8.1AI score0.02195EPSS
Exploits0References4
Circl
Circl
added 2025/05/07 11:22 a.m.25 views

CVE-2025-33093

creationtimestamp| type| source ---|---|--- 2025-05-07 11:22:08+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15290 2025-05-07 12:21:47+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114466521491649706 2025-05-07 12:26:34+00:00| seen|...

7.5CVSS4.8AI score0.00301EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/05/07 8:24 a.m.15 views

CVE-2025-20954

Use of implicit intent for sensitive communication in EnrichedCall prior to SMR May-2025 Release 1 allows local attackers to access sensitive information. User interaction is required for triggering this vulnerability...

5.5CVSS0.00146EPSS
Exploits0References1
Circl
Circl
added 2025/05/06 6:21 p.m.30 views

CVE-2025-26262

creationtimestamp| type| source ---|---|--- 2025-05-06 18:21:44+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lojis5wt6a2h 2025-05-06 20:20:18+00:00| seen| https://t.me/cvedetector/24626...

6.5CVSS4.8AI score0.00263EPSS
Exploits0References2
Rows per page
Query Builder