Lucene search
K

5107 matches found

SUSE Linux
SUSE Linux
added 2025/03/21 12:54 p.m.0 views

Security update for zvbi

This update for zvbi fixes the following issues: CVE-2025-2173: Fixed check on srclength to avoid an unitinialized heap read bsc1239222. CVE-2025-2174: Fixed integer overflow leading to heap overflow in src/conv.c, src/io-sim.c, src/search.c bsc1239299. CVE-2025-2175: Fixed integer overflow in...

7.3CVSS6.5AI score0.00764EPSS
Exploits0References20
ATTACKERKB
ATTACKERKB
added 2025/03/19 9:15 a.m.4 views

CVE-2024-12137

Authentication Bypass by Capture-replay vulnerability in Elfatek Elektronics ANKA JPD-00028 allows Session Hijacking. This issue affects ANKA JPD-00028: before V.01.01...

7.6CVSS5.8AI score0.00239EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/03/19 8:32 a.m.13 views

CVE-2024-12137 Authentication Bypass in Elfatek Elektronics' ANKA JPD-00028

Authentication Bypass by Capture-replay vulnerability in Elfatek Elektronics ANKA JPD-00028 allows Session Hijacking. This issue affects ANKA JPD-00028: before V.01.01...

7.6CVSS5.8AI score0.00239EPSS
Exploits0References2
NVD
NVD
added 2025/03/13 5:15 p.m.12 views

CVE-2025-2080

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool version 3.1.2rc11 contain an exposed web management service that could allow an attacker to bypass authentication measures and gain controls over utilities within the products...

9.3CVSS0.00418EPSS
Exploits0References1
CVE
CVE
added 2025/03/13 4:57 p.m.68 views

CVE-2025-2080

The CVE-2025-2080 entry covers Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool (version 3.1.2rc11). The connected sources document two concrete issues: (1) an exposed web management service that could allow an attacker to bypass authentication and gain control o...

9.3CVSS7AI score0.00418EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/13 4:55 p.m.11 views

CVE-2025-2079

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool version 3.1.2rc11 contain a hard coded secret key. This could allow an attacker to generate valid JWT JSON Web Token sessions...

8.7CVSS6.5AI score0.00362EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/13 4:55 p.m.32 views

CVE-2025-2079

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool version 3.1.2rc11 contain a hard coded secret key. This could allow an attacker to generate valid JWT JSON Web Token sessions...

8.7CVSS0.00362EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/03/13 7:0 a.m.3 views

drm/i915: Fix NULL pointer dereference in capture_engine

...

5.5CVSS7.4AI score0.00213EPSS
Exploits0
CNNVD
CNNVD
added 2025/03/13 12:0 a.m.2 views

Optigo Networks Visual BACnet Capture Tool和Optigo Visual Networks Capture Tool 安全漏洞

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool are both products of Optigo Inc.Optigo Networks Visual BACnet Capture Tool is a Optigo Networks Visual BACnet Capture Tool is a tool for capturing BACnet network traffic and automatically uploading the captured dat...

8.7CVSS6.6AI score0.00362EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/03/13 12:0 a.m.2 views

Optigo Networks Visual BACnet Capture Tool和Optigo Visual Networks Capture Tool 安全漏洞

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool are both products of Optigo Inc.Optigo Networks Visual BACnet Capture Tool is a Optigo Networks Visual BACnet Capture Tool is a tool for capturing BACnet network traffic and automatically uploading the captured dat...

8.7CVSS6.6AI score0.00362EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/03/13 12:0 a.m.5 views

Optigo Networks Visual BACnet Capture Tool和Optigo Visual Networks Capture Tool 安全漏洞

Optigo Networks Visual BACnet Capture Tool and Optigo Visual Networks Capture Tool are both products of Optigo, Inc.Optigo Networks Visual BACnet Capture Tool is a Optigo Networks Visual BACnet Capture Tool is a tool for capturing BACnet network traffic and automatically uploading the captured da...

9.3CVSS6.9AI score0.00418EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/03/12 5:8 a.m.3 views

SUSE CVE-2025-2176

A vulnerability classified as critical has been found in libzvbi up to 0.2.43. This affects the function vbicapturesimloadcaption of the file src/io-sim.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and...

7.3CVSS7.4AI score0.00603EPSS
Exploits0References6
CISA
CISA
added 2025/03/11 12:0 p.m.3 views

CISA Releases Two Industrial Control Systems Advisories

CISA released two Industrial Control Systems ICS advisories on March 11, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-070-01 Schneider Electric Uni-Telway Driver ICSA-25-070-02 Optigo Networks Visual BACnet...

7AI score
Exploits0References2
OSV
OSV
added 2025/03/11 8:15 a.m.0 views

UBUNTU-CVE-2025-2176

A vulnerability classified as critical has been found in libzvbi up to 0.2.43. This affects the function vbicapturesimloadcaption of the file src/io-sim.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and...

7.5CVSS5.4AI score0.00603EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2025/03/11 12:0 a.m.5 views

The vulnerability of the Image Capture application on macOS operating systems allows attackers to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of the Image Capture application in macOS operating systems relates to a flaw in the data protection mechanism. Exploiting this vulnerability can allow attackers to circumvent security restrictions and gain unauthorized access to protected information...

3.3CVSS5.5AI score0.00231EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.1 views

Babel 安全漏洞

Babel is a compiler for JavaScript in the Babel open source. A security vulnerability exists in Babel versions prior to 7.26.10 and prior to 8.0.0-alpha.17, which stems from a .replace method generated when compiling regular expression named capture groups that has a quadratic complexity on certa...

6.2CVSS6AI score0.00478EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-8006

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions tha...

4.4CVSS6.3AI score0.0022EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-5596

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the ASTERIX dissector could go into an infinite loop, triggered by packet injection or a malformed capture file...

7.5CVSS7.5AI score0.029EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-6472

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an RTMPT dissector infinite loop, triggered by packet injection or a malformed capture file. This was...

7.5CVSS7.4AI score0.02616EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2017-7705

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an infinite loop, triggered by packet injection or a malformed captur...

7.8CVSS7.4AI score0.02731EPSS
Exploits0References2
Rows per page
Query Builder