Lucene search
K

1272 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.3 views

Malicious code in discover-cast-shot (npm)

The package discover-cast-shot was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/09/05 5:10 p.m.1 views

MAL-2025-44026 Malicious code in discover-cast-shot (npm)

The package discover-cast-shot was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/09/05 5:10 p.m.1 views

MAL-2025-43711 Malicious code in cast-younger-screen (npm)

The package cast-younger-screen was found to contain malicious code...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-42066

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix potential integer overflow in page size calculation Explicitly cast...

5.5CVSS5.9AI score0.00197EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:40 p.m.5 views

cpufreq: CPPC: Add u64 casts to avoid overflowing

...

5.5CVSS7AI score0.0015EPSS
Exploits0
NVD
NVD
added 2025/09/02 4:15 p.m.4 views

CVE-2025-57615

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 An integer overflow vulnerability in the Vector::new constructor function allows an attacker to cause a denial of service via a null pointer dereference. The vulnerability stems from an unchecked cast of a usize parameter to cint,...

7.5CVSS0.00337EPSS
Exploits1References1
CVE
CVE
added 2025/09/02 12:0 a.m.16 views

CVE-2025-57615

The CVE-2025-57615 entry concerns rust-ffmpeg 0.3.0 (post-commit 5ac0527). The issue is an integer overflow in Vector::new caused by unchecked casting of a usize to c_int, which can pass a negative value to sws_allocVec(), potentially enabling a denial of service via a null pointer dereference. R...

7.5CVSS6.5AI score0.00337EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/02 12:0 a.m.5 views

PT-2025-35579

Name of the Vulnerable Software and Affected Versions: rust-ffmpeg version 0.3.0 after commit 5ac0527 Description: An integer overflow vulnerability exists in the Vector::new constructor function. This can lead to a denial of service through a null pointer dereference. The issue arises from an...

7.5CVSS6.5AI score0.00337EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-3578

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in mbsync before v1.3.6 and v1.4.2, where an unchecked pointer cast allows a malicious or compromised server to write an arbitrary integer valu...

7.8CVSS7.7AI score0.00998EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2018-19857

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The CAF demuxer in modules/demux/caf.c in VideoLAN VLC media player 3.0.4 may read memory from an uninitialized pointer when processing magic cookies in CAF...

9.1CVSS8AI score0.03916EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-25104

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been found in rtcwcoop 1.0.2 and classified as problematic. Affected by this vulnerability is the function AICastScriptLoad of the file...

7.5CVSS4.8AI score0.01186EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-46965

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mtd: physmap: physmap-bt1-rom: Fix unintentional stack access Cast &data to char in order to...

7.1CVSS4.9AI score0.0023EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-37803

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: udmabuf: fix a buf size overflow issue during udmabuf creation by casting sizelimitmb to u64...

7.8CVSS6.2AI score0.00177EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/23 12:23 a.m.10 views

CVE-2025-27215

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect Display Cast devices to make unsupported changes to the system. Affected Products: UniFi Connect Display Cast Version 1.10.3 and earlier UniFi Connect Display Cast Pro Version 1.0.89 and...

8.1CVSS7.1AI score0.00238EPSS
Exploits0References1
NVD
NVD
added 2025/08/21 1:15 a.m.8 views

CVE-2025-27215

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect Display Cast devices to make unsupported changes to the system. Affected Products: UniFi Connect Display Cast Version 1.10.3 and earlier UniFi Connect Display Cast Pro Version 1.0.89 and...

8.1CVSS0.00238EPSS
Exploits0References1
NVD
NVD
added 2025/08/21 1:15 a.m.10 views

CVE-2025-27213

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect devices to enable Android Debug Bridge ADB and make unsupported changes to the system. Affected Products: UniFi Connect EV Station Pro Version 1.5.18 and earlier UniFi Connect Display Versio...

4.9CVSS0.00229EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/21 12:1 a.m.15 views

CVE-2025-27213

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect devices to enable Android Debug Bridge ADB and make unsupported changes to the system. Affected Products: UniFi Connect EV Station Pro Version 1.5.18 and earlier UniFi Connect Display Versio...

0.00229EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/21 12:1 a.m.2 views

CVE-2025-27215

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect Display Cast devices to make unsupported changes to the system. Affected Products: UniFi Connect Display Cast Version 1.10.3 and earlier UniFi Connect Display Cast Pro Version 1.0.89 and...

7AI score0.00238EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/21 12:1 a.m.14 views

CVE-2025-27215

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect Display Cast devices to make unsupported changes to the system. Affected Products: UniFi Connect Display Cast Version 1.10.3 and earlier UniFi Connect Display Cast Pro Version 1.0.89 and...

0.00238EPSS
Exploits0References1
CVE
CVE
added 2025/08/21 12:1 a.m.23 views

CVE-2025-27215

CVE-2025-27215 describes an improper access control in the API of UniFi Connect Display Cast devices that, when authenticated, allows a malicious actor to make unsupported changes to the system. Affected products and versions are: UniFi Connect Display Cast 1.10.3 and earlier; Cast Pro 1.0.89 and...

8.1CVSS7AI score0.00238EPSS
Exploits0References1
Rows per page
Query Builder