Lucene search
K

711 matches found

CNVD
CNVD
added 2026/03/12 12:0 a.m.3 views

Huawei HarmonyOS Certificate Management Module Data Handling Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A data handling vulnerability exists in the Huawei HarmonyOS certificate management module, which can be exploited by an attacker to compromise confidentiali...

6.2CVSS5.9AI score0.00058EPSS
Exploits0References1
CVE
CVE
added 2026/03/11 4:6 p.m.10 views

CVE-2025-12576

GitLab CE/EE is affected in versions prior to 18.7.6, 18.8.6 (for 18.8 line), and 18.9.2 (for 18.9 line) where an authenticated user could cause a denial of service due to improper handling of webhook response data. Affected components are the webhook handling flow; the root cause is improper pro...

6.5CVSS5.8AI score0.00385EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/11 4:6 p.m.7 views

CVE-2025-12576 Allocation of Resources Without Limits or Throttling in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.3 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that under certain conditions could have allowed an authenticated user to cause a denial of service due to improper handling of webhook response data...

6.5CVSS5.9AI score0.00385EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.12 views

PT-2026-24705

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.3 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that under certain conditions could have allowed an authenticated user to cause a denial of service due to improper handling of webhook response data...

6.5CVSS5.8AI score0.00385EPSS
Exploits0References6
CVE
CVE
added 2026/03/10 10:49 p.m.16 views

CVE-2025-20005

CVE-2025-20005 : Improper buffer restrictions in some Intel reference-platform UEFI firmware may allow a local-privilege-escalation by a privileged system software adversary. The described attack requires a high-complexity, local attacker with no user interaction and does not rely on remote acces...

5.6CVSS5.9AI score0.00095EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.3 views

MiracleLinux 8 : fence-agents-4.2.1-129.el8_10.24 (AXBA:2026-269:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXBA:2026-269:05 advisory. - urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression...

8.9CVSS6.1AI score0.02667EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.8 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A data handling vulnerability exists in the Huawei HarmonyOS certificate management module, which can be exploited by an attacker to compromise confidentiali...

6.2CVSS5.8AI score0.00058EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.5 views

TencentOS Server 4: edk2 (TSSA-2026:0116)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0116 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

7.5CVSS6.3AI score0.00844EPSS
Exploits1References8
EUVD
EUVD
added 2026/02/27 12:31 a.m.6 views

EUVD-2026-8929

WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthorized station impersonation and manipulate data sent to the backend. An unauthenticated attacker can connect to the OCPP WebSocket endpoint using a known or discovered charging station identifier, then...

9.4CVSS5.6AI score0.00518EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.9 views

OpenEMR 安全漏洞

OpenEMR is a set of open-source medical management systems developed by the OpenEMR community. This system can be used for medical practice management, electronic medical records, prescription writing, and medical billing applications. Versions 5.0.0.5 to 7.0.3.4 of OpenEMR contain security...

8.5CVSS5.7AI score0.00246EPSS
Exploits1References3
GithubExploit
GithubExploit
added 2026/02/20 8:14 a.m.168 views

Exploit for Deserialization of Untrusted Data in Microsoft

WSUS Security Research Toolkit - Installation Guide System...

9.8CVSS6.2AI score0.99962EPSS
Exploits24
RedHat Linux
RedHat Linux
added 2026/02/16 11:40 a.m.12 views

Important: Red Hat Security Advisory: python-urllib3 security update

An update for python-urllib3 is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...

8.9CVSS6.6AI score0.02667EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/16 12:0 a.m.5 views

RHEL 8 : python-urllib3 (RHSA-2026:2717)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:2717 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

8.9CVSS5.7AI score0.02667EPSS
Exploits0References8
Talos Blog
Talos Blog
added 2026/02/12 7:0 p.m.10 views

Hand over the keys for Shannon’s shenanigans

Welcome to this week's edition of the Threat Source newsletter. Last week, yet another security AI tool made the rounds on social media: Shannon, a fully autonomous AI penetration testing tool created by Keygraph. It "autonomously hunts for attack vectors in your code, then uses its built-in...

6AI score
Exploits0
Rockylinux
Rockylinux
added 2026/02/11 9:12 a.m.7 views

python3.12-urllib3 security update

An update is available for python3.12-urllib3. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Python is an interpreted, interactive, object-oriented programming...

8.9CVSS5.7AI score0.02667EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/11 12:0 a.m.12 views

RHEL 9 : python3.12-urllib3 (RHSA-2026:1957)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:1957 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level...

8.9CVSS5.8AI score0.02667EPSS
Exploits0References8
CVE
CVE
added 2026/02/10 7:15 p.m.12 views

CVE-2025-29946

Technical details about CVE-2025-29946 (affected product/component/versions/root cause/patch) are not publicly provided in the supplied documents. Monitor for updates from vendors (AMD, OSV, Red Hat, Ubuntu, etc.) before assessing risk or remediation.

4.5CVSS5.5AI score0.0014EPSS
Exploits0References1
NCSC
NCSC
added 2026/02/10 12:28 p.m.12 views

Vulnerabilities fixed in SAP products

SAP has fixed vulnerabilities in several products, including SAP CRM, SAP S/4HANA, SAP NetWeaver Application Server ABAP, SAP Supply Chain Management, SAP BusinessObjects BI Platform, SAP Document Management System, SAP Commerce Cloud, and SAP Business Workflow. The vulnerabilities include code...

9.9CVSS7.6AI score0.0049EPSS
Exploits2References1
Redos
Redos
added 2026/02/09 12:0 a.m.7 views

ROS-20260209-73-0025

Vulnerability in python-urllib3 related to incorrect handling of highly compressed input data. Exploitation of the vulnerability may allow a remote attacker to cause a denial of service...

8.9CVSS5.7AI score0.02667EPSS
Exploits0
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.5 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a buffer overflow vulnerability that stems from the HDC module failing to properly validate the length and size of input data,...

6.9CVSS6.1AI score0.00085EPSS
Exploits0References3
Rows per page
Query Builder