Lucene search
K

6 matches found

EUVD
EUVD
added 4 days ago8 views

EUVD-2026-39983

A flaw has been found in arc53 DocsGPT up to 0.18.0. The affected element is the function encryptcredentials of the file application/security/encryption.py of the component Credential Storage. This manipulation causes insufficient verification of data authenticity. It is possible to initiate the...

3.1CVSS4.9AI score0.00095EPSS
Exploits0References7
Snyk
Snyk
added 2026/03/05 9:13 p.m.4 views

Insufficient Verification of Data Authenticity

Overview Affected versions of this package are vulnerable to Insufficient Verification of Data Authenticity in the handling of LFS object uploads. An attacker can overwrite existing LFS objects across different repositories by uploading objects with the same identifier, potentially leading to...

9.3CVSS5.8AI score0.00327EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2025/01/02 12:0 a.m.5 views

The vulnerability of the radosgw daemon in the Ceph storage system allows a hacker to bypass the authentication process.

The vulnerability of the radosgw daemon in the Ceph storage system is related to insufficient verification of data authenticity when processing JWT tokens. Exploiting this vulnerability allows a malicious actor to bypass authentication procedures...

8.5CVSS7.2AI score0.00192EPSS
Exploits0References11Affected Software4
BDU FSTEC
BDU FSTEC
added 2023/09/19 12:0 a.m.5 views

The vulnerability of the iPXE network loading standard implementation for the Cisco IOS XR operating system allows a hacker to load arbitrary files.

The vulnerability of the iPXE network loading standard implementation for the Cisco IOS XR operating system is related to insufficient verification of data authenticity during file loading. Exploiting this vulnerability could allow attackers to load arbitrary files...

6.8CVSS7.3AI score0.00095EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/27 12:0 a.m.7 views

The vulnerability of microprogrammed software in programmable logic controllers SYSMAC NJ/NX, related to insufficient data authenticity checking, allows a intruder to execute arbitrary code.

The vulnerability of the microprogrammed software in SYSMAC NJ/NX programmable logic controllers is related to insufficient verification of data authenticity. Exploiting this vulnerability could allow an attacker operating remotely to execute arbitrary code...

10CVSS5.8AI score0.00858EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/11/10 12:0 a.m.4 views

FFmpeg 数据伪造问题漏洞

FFmpeg is a complete solution for recording, converting, and streaming audio and video from the FFmpeg Ffmpeg team. FFmpeg N-98388-g76a3ee996b contains a security vulnerability that could be exploited by an attacker to cause a denial of service DoS via a crafted audio file due to insufficient...

5.5CVSS7.7AI score0.00355EPSS
Exploits1References2
Rows per page
Query Builder