Lucene search
K

7652 matches found

CNVD
CNVD
added 2025/03/13 12:0 a.m.11 views

IBM MQ Code Issues Vulnerabilities

IBM MQ is a messaging middleware product from International Business Machines IBM. The product focuses on providing a reliable and proven messaging backbone for Service Oriented Architecture SOA. A code issue vulnerability exists in IBM MQ that stems from improper exception condition checking and...

5.5CVSS7AI score0.0013EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/13 12:0 a.m.6 views

The vulnerability in the RegExp component of Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, allows a hacker to execute arbitrary code.

The vulnerability of the RegExp component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird, Thunderbird ESR, is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.2AI score0.00413EPSS
Exploits0References21Affected Software9
CNVD
CNVD
added 2025/03/12 12:0 a.m.4 views

Google Android Buffer Overflow Vulnerability

Google Android is a free and open source mobile operating system developed by Google Inc. based on the Linux kernel. Google Android suffers from a buffer overflow vulnerability that originates from incorrect boundary checking in static long devsend of tipcdevql, which can be exploited by an...

5.1CVSS6.4AI score0.00082EPSS
Exploits0References1
CNVD
CNVD
added 2025/03/11 12:0 a.m.10 views

Huawei HarmonyOS media library module privilege checksum vulnerability (CNVD-2025-07255)

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A privilege checking vulnerability exists in the Huawei HarmonyOS media library module, which can be exploited by an attacker to compromise confidentiality...

5.5CVSS6.7AI score0.00097EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/11 12:0 a.m.13 views

RHEL 8 : webkit2gtk3 (RHSA-2024:9646)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:9646 advisory. WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: webkitgtk: Memory corruption issue wh...

9.8CVSS8.7AI score0.0937EPSS
Exploits1References37
Tenable Nessus
Tenable Nessus
added 2025/03/11 12:0 a.m.18 views

RHEL 8 : webkit2gtk3 (RHSA-2024:9636)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:9636 advisory. WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: chromium-browser: Use after free in...

9.8CVSS8.4AI score0.01344EPSS
Exploits1References35
BDU FSTEC
BDU FSTEC
added 2025/03/11 12:0 a.m.9 views

The vulnerability of the DNN CMS system, related to insufficient checking of unusual or exceptional states, allows attackers to circumvent existing security restrictions.

The vulnerability of the DNN CMS system is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability can allow a malicious actor to bypass existing security restrictions remotely...

7.7CVSS5.4AI score0.00294EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2025/03/10 12:40 p.m.3 views

Xorg: xwayland: Buffer overflow in XkbVModMaskText()

A buffer overflow flaw was found in X.Org and Xwayland. The code in XkbVModMaskText allocates a fixed-sized buffer on the stack and copies the names of the virtual modifiers to that buffer. The code fails to check the bounds of the buffer and would copy the data regardless of the size...

7.8CVSS6AI score0.0039EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/03/10 12:0 a.m.4 views

Apple macOS 安全漏洞

Apple macOS is a suite of specialized operating systems from the U.S.-based Apple Inc. developed specifically for Mac computers. A security vulnerability exists in Apple macOS, which stems from a checking improvement that could lead to a malicious application modifying other applications without...

5.5CVSS6.2AI score0.00222EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2025/03/07 4:23 p.m.23 views

Some AES functions may panic when overflow checking is enabled in ring

ring::aead::quic::HeaderProtectionKey::newmask may panic when overflow checking is enabled. In the QUIC protocol, an attacker can induce this panic by sending a specially-crafted packet. Even unintentionally it is likely to occur in 1 out of every 232 packets sent and/or received. On 64-bit targe...

5.3CVSS7.2AI score0.00825EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/03/07 4:23 p.m.8 views

GHSA-4P46-PWFR-66X6 Some AES functions may panic when overflow checking is enabled in ring

ring::aead::quic::HeaderProtectionKey::newmask may panic when overflow checking is enabled. In the QUIC protocol, an attacker can induce this panic by sending a specially-crafted packet. Even unintentionally it is likely to occur in 1 out of every 232 packets sent and/or received. On 64-bit targe...

8.7CVSS7.2AI score0.00825EPSS
Exploits0References8
OSV
OSV
added 2025/03/06 12:0 p.m.17 views

RUSTSEC-2025-0009 Some AES functions may panic when overflow checking is enabled.

ring::aead::quic::HeaderProtectionKey::newmask may panic when overflow checking is enabled. In the QUIC protocol, an attacker can induce this panic by sending a specially-crafted packet. Even unintentionally it is likely to occur in 1 out of every 232 packets sent and/or received. On 64-bit targe...

5.3CVSS7.2AI score0.00825EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-53045

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ASoC: dapm: fix bounds checker error in dapmwidgetlistcreate The widgets array in the...

5.5CVSS6.2AI score0.002EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-53189

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: fix bounds checker error in nl80211parseschedscan The channels array in the...

5.5CVSS5.8AI score0.00222EPSS
Exploits0References3
Fedora
Fedora
added 2025/03/05 1:15 a.m.11 views

[SECURITY] Fedora 41 Update: exim-4.98.1-1.fc41

Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...

9.8CVSS7.2AI score0.75782EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2020-7942

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Previously, Puppet operated on a model that a node with a valid certificate was entitled to all information in the system and that a compromised certificate...

6.5CVSS6.9AI score0.00823EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2024-41097

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: atm: cxacru: fix endpoint checking in cxacrubind Syzbot is still reporting quite an old issue 1 that occurs due to incomplete checking of present usb...

5.5CVSS6.7AI score0.00234EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/03/04 12:0 a.m.3 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A privilege checking vulnerability exists in the Huawei HarmonyOS media library module, which can be exploited by an attacker to compromise confidentiality...

5.5CVSS6.8AI score0.00097EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/03/04 12:0 a.m.4 views

Huawei EMUI和Huawei HarmonyOS 安全漏洞

Huawei EMUI is a mobile operating system developed based on Android.Huawei HarmonyOS is an operating system. Provides a full-scene distributed operating system based on a microkernel. Huawei EMUI and HarmonyOS have a bypass privilege checking vulnerability that can be exploited by an attacker to...

8.4CVSS6.8AI score0.00098EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2018-16509

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Artifex Ghostscript before 9.24. Incorrect restoration of privilege checking during handling of /invalidaccess exceptions could be us...

9.3CVSS7.3AI score0.92499EPSS
Exploits4References2
Rows per page
Query Builder