Lucene search
K

139 matches found

RedHat Linux
RedHat Linux
added 2025/12/17 3:4 p.m.5 views

kernel: nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm()

A vulnerability has been identified in the Linux kernel's Network File System NFS daemon that could allow for a Denial of Service and in worst case scenario Arbitrary Code Execution. This Use-After-Free flaw arises from a race condition when the kernel handles the confirmation of an NFS client...

7.8CVSS5.8AI score0.00163EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/17 7:48 a.m.5 views

kernel: nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm()

A vulnerability has been identified in the Linux kernel's Network File System NFS daemon that could allow for a Denial of Service and in worst case scenario Arbitrary Code Execution. This Use-After-Free flaw arises from a race condition when the kernel handles the confirmation of an NFS client...

7.8CVSS5.8AI score0.00163EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/10 1:2 a.m.4 views

kernel: nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm()

A vulnerability has been identified in the Linux kernel's Network File System NFS daemon that could allow for a Denial of Service and in worst case scenario Arbitrary Code Execution. This Use-After-Free flaw arises from a race condition when the kernel handles the confirmation of an NFS client...

7.8CVSS5.8AI score0.00163EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/01 6:11 a.m.4 views

kernel: nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm()

A vulnerability has been identified in the Linux kernel's Network File System NFS daemon that could allow for a Denial of Service and in worst case scenario Arbitrary Code Execution. This Use-After-Free flaw arises from a race condition when the kernel handles the confirmation of an NFS client...

7.8CVSS5.8AI score0.00163EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/12/01 5:31 a.m.4 views

kernel: nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm()

A vulnerability has been identified in the Linux kernel's Network File System NFS daemon that could allow for a Denial of Service and in worst case scenario Arbitrary Code Execution. This Use-After-Free flaw arises from a race condition when the kernel handles the confirmation of an NFS client...

7.8CVSS5.8AI score0.00163EPSS
Exploits0References5
CVE
CVE
added 2025/11/05 6:35 a.m.40 views

CVE-2025-12139

The CVE-2025-12139 vulnerability affects the File Manager for Google Drive – Integrate Google Drive with WordPress plugin for WordPress. The issue, present in all versions up to 1.5.3, stems from improper protection of the get_localize_data function and enables unauthenticated attackers to exfilt...

7.5CVSS5.3AI score0.02362EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2009-1887

Malware in sbrugna...

5CVSS6.3AI score0.08566EPSS
Exploits1References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-3119

Malware in sbrugna...

5CVSS6.1AI score0.03942EPSS
Exploits0References11
Cvelist
Cvelist
added 2025/09/29 8:41 p.m.20 views

CVE-2025-34222 Vasion Print (formerly PrinterLogic) Unauthenticated Admin APIs Used to Modify SSL Certificates

Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 22.0.1049 and Application prior to version 20.0.2786 VA/SaaS deployments expose four admin routes – /admin/hp/certupload, /admin/hp/certdelete, /admin/certs/ca, and /admin/certs/serviceclients/scid – without any...

10CVSS0.00488EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/09/29 12:0 a.m.6 views

PT-2025-39887

Name of the Vulnerable Software and Affected Versions Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 22.0.1049 Vasion Print formerly PrinterLogic Application versions prior to 20.0.2786 Description The Vasion Print Virtual Appliance Host and Application expose...

10CVSS6.8AI score0.00488EPSS
Exploits1References7
NVD
NVD
added 2025/09/19 4:15 p.m.7 views

CVE-2025-39862

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: fix list corruption after hardware restart Since stations are recreated from scratch, all lists that wcids are added to must be cleared before calling ieee80211restarthw. Set wcid-sta = 0 for each wcid entry i...

7.8CVSS0.00133EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/09/06 8:8 a.m.4 views

nfsd: handle get_client_locked() failure in nfsd4_setclientid_confirm()

...

7.8CVSS6.8AI score0.00163EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2021-22236

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to improper handling of OAuth client IDs, new subscriptions generated OAuth tokens on an incorrect OAuth client application. This vulnerability is present i...

8.8CVSS7.8AI score0.00865EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/16 12:0 a.m.5 views

Projectworlds Life Insurance Management System 注入漏洞

Projectworlds Life Insurance Management System is a life insurance management system from Projectworlds India. An injection vulnerability exists in Projectworlds Life Insurance Management System version 1.0, which stems from SQL injection due to incorrect manipulation of the parameters...

9.8CVSS6.9AI score0.00387EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/05/23 9:18 a.m.3 views

CVE-2024-36597

Aegon Life v1.0 was discovered to contain a SQL injection vulnerability via the clientid parameter at clientStatus.php...

8.8CVSS5.6AI score0.02338EPSS
Exploits5References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:10 a.m.6 views

CVE-2024-6040

In parisneo/lollms-webui version v9.8, the lollmsbindinginfos is missing the clientid parameter, which leads to multiple security vulnerabilities. Specifically, the endpoints /reloadbinding, /installbinding, /reinstallbinding, /unInstallbinding, /setactivebindingsettings, and /updatebindingsettin...

8.8CVSS7.1AI score0.00166EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:33 a.m.7 views

CVE-2024-22718

Cross Site Scripting XSS vulnerability in Form Tools 3.1.1 allows attackers to run arbitrary code via the clientid parameter in the application URL...

9.6CVSS6.2AI score0.00657EPSS
Exploits1References1
Circl
Circl
added 2025/05/21 4:41 p.m.7 views

CVE-2025-48011

creationtimestamp| type| source ---|---|--- 2025-05-21 16:41:33+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17140...

4.8CVSS4.8AI score0.00267EPSS
Exploits1References1
Circl
Circl
added 2025/02/26 9:25 p.m.6 views

CVE-2023-21010

creationtimestamp| type| source ---|---|--- 2025-02-26 21:25:48+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5628...

4.4CVSS4.6AI score0.00096EPSS
Exploits0References1
OSV
OSV
added 2025/01/24 4:33 p.m.7 views

CVE-2025-22610 Coolify Vulnerable to OAuth Secrets Leak

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to fetch the global coolify instance OAuth configuration. This exposes the "client id" and "client secret" f...

7.1CVSS6.8AI score0.00376EPSS
Exploits1References3
Rows per page
Query Builder