Lucene search
K

17 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/07/17 4:10 p.m.9 views

Security Bulletin: AIX/VIOS is vulnerable to arbitrary code execution (CVE-2025-3277, CVE-2025-29087) and denial of service (CVE-2025-29088) due to RPM

Summary Vulnerabilities in RPM could allow an attacker to execute arbitrary code CVE-2025-3277, CVE-2025-29087 or cause a denial of service CVE-2025-29088. RPM is used by AIX for package management. Vulnerability Details CVEID:CVE-2025-3277 DESCRIPTION: An integer overflow can be triggered in...

9.8CVSS6.7AI score0.00609EPSS
Exploits0Affected Software2
IBM AIX
IBM AIX
added 2025/07/17 9:32 a.m.12 views

AIX is vulnerable to arbitrary code execution (CVE-2025-3277 CVE-2025-29087) and denial of service (CVE-2025-29088) due to RPM

IBM SECURITY ADVISORY First Issued: Thu Jul 17 09:32:10 CDT 2025 The most recent version of this document is available here: https://aix.software.ibm.com/aix/efixes/security/rpmadvisory3.asc Security Bulletin: AIX is vulnerable to arbitrary code execution CVE-2025-3277, CVE-2025-29087 and denial ...

9.8CVSS8AI score0.00609EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/06/30 12:0 a.m.3 views

SUSE: Security Advisory (SUSE-SU-2025:01456-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.00609EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2025/06/30 12:0 a.m.5 views

SUSE: Security Advisory (SUSE-SU-2025:01455-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.00609EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.7 views

SUSE: Security Advisory (SUSE-SU-2025:1456-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.00609EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2025/05/23 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-7528-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.9AI score0.00609EPSS
Exploits0References2
OSV
OSV
added 2025/05/22 6:23 p.m.7 views

USN-7528-1 sqlite3 vulnerabilities

It was discovered that SQLite incorrectly handled the concatws function. An attacker could use this issue to cause SQLite to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 24.04 LTS, and Ubuntu 24.10. CVE-2025-29087, CVE-2025-3277 It w...

9.8CVSS7AI score0.00609EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/05/12 12:0 a.m.12 views

openSUSE Security Advisory (SUSE-SU-2025:1456-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.00609EPSS
Exploits0References6
OPENSUSE Linux
OPENSUSE Linux
added 2025/04/15 12:0 a.m.9 views

libsqlite3-0-3.49.1-3.1 on GA media (moderate)

libsqlite3-0-3.49.1-3.1 on GA media Announcement ID: openSUSE-SU-2025:14991-1 Rating: moderate Cross-References: CVE-2025-29087 CVE-2025-29088 CVSS scores: CVE-2025-29087 SUSE : 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L CVE-2025-29087 SUSE : 5.9...

6.8CVSS9.8AI score0.00453EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/04/15 12:0 a.m.279 views

SQLite 3.44.0 - 3.49.0 Multiple Vulnerabilities

SQLite is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:sqlite:sqlite"; ifdescription...

9.8CVSS6.8AI score0.00609EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/04/11 9:21 a.m.5 views

SUSE CVE-2025-29087

In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concatws SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string e.g., 2MB or more, an integer overflow occurs in calculating the size of the...

6.4CVSS7.8AI score0.00453EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/04/11 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2025-29087

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concatws SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the...

7.5CVSS6.8AI score0.00453EPSS
Exploits0References2
OSV
OSV
added 2025/04/07 8:15 p.m.3 views

DEBIAN-CVE-2025-29087

In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concatws SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string e.g., 2MB or more, an integer overflow occurs in calculating the size of the...

7.5CVSS5.9AI score0.00453EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/04/07 8:15 p.m.93 views

CVE-2025-29087

In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concatws SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string e.g., 2MB or more, an integer overflow occurs in calculating the size of the...

7.5CVSS6.8AI score0.00453EPSS
Exploits0References3
OSV
OSV
added 2025/04/07 8:15 p.m.6 views

UBUNTU-CVE-2025-29087

In SQLite 3.44.0 through 3.49.0 before 3.49.1, the concatws SQL function can cause memory to be written beyond the end of a malloc-allocated buffer. If the separator argument is attacker-controlled and has a large string e.g., 2MB or more, an integer overflow occurs in calculating the size of the...

7.5CVSS6.1AI score0.00453EPSS
Exploits0References4
Circl
Circl
added 2025/04/07 7:45 p.m.6 views

CVE-2025-29087

creationtimestamp| type| source ---|---|--- 2025-04-07 19:45:26+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10762 2025-04-07 22:55:44+00:00| seen| https://t.me/cvedetector/22344 2025-04-08 15:48:09+00:00| seen|...

7.5CVSS6.7AI score0.00453EPSS
Exploits0References11
SQLite
SQLite
added 2025/01/01 12:0 a.m.21 views

SQLite report about CVE-2025-29087

Duplicate of CVE-2025-3277...

7.5CVSS6.4AI score0.00453EPSS
Exploits0Affected Software1
Rows per page
Query Builder