Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2026/02/12 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-2007

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overflow in PostgreSQL pgtrgm allows a database user to achieve unknown impacts via a crafted input string. The attacker has limited control over th...

8.2CVSS6AI score0.00481EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 8:38 a.m.7 views

CVE-2024-32873

Evmos is the Ethereum Virtual Machine EVM Hub on the Cosmos Network. The spendable balance is not updated properly when delegating vested tokens. The issue allows a clawback vesting account to anticipate the release of unvested tokens. This vulnerability is fixed in 18.0.0...

4.3CVSS6.6AI score0.00384EPSS
Exploits0References1
OSV
OSV
added 2025/04/03 2:6 p.m.9 views

BIT-DOLIBARR-2024-23817 Dolibarr Application Home Page HTML injection vulnerability

Dolibarr is an enterprise resource planning ERP and customer relationship management CRM software package. Version 18.0.4 has a HTML Injection vulnerability in the Home page of the Dolibarr Application. This vulnerability allows an attacker to inject arbitrary HTML tags and manipulate the rendere...

7.1CVSS6.2AI score0.00557EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/02/05 10:50 p.m.8 views

CVE-2022-1711

Server-Side Request Forgery SSRF in GitHub repository jgraph/drawio prior to 18.0.5...

7.5CVSS6.8AI score0.05372EPSS
Exploits1References1
OSV
OSV
added 2023/11/01 8:15 a.m.5 views

UBUNTU-CVE-2023-4197

Improper input validation in Dolibarr ERP CRM = v18.0.1 fails to strip certain PHP code from user-supplied input when creating a Website, allowing an attacker to inject and evaluate arbitrary PHP code...

8.8CVSS7.4AI score0.32845EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/01/10 12:0 a.m.2 views

PT-2023-1111 · Adobe · Indesign

Name of the Vulnerable Software and Affected Versions: Adobe InDesign versions 18.0 and earlier Adobe InDesign versions 17.4 and earlier Description: The issue is related to insufficient input validation in Adobe InDesign, which could allow an attacker to execute arbitrary code. Exploitation of...

7.8CVSS7.6AI score0.00326EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/11/23 12:0 a.m.5 views

Parallels Remote Application Server 安全漏洞

Parallels Remote Application Server RAS is an application delivery and VDI Virtual Desktop Infrastructure solution from Parallels, Inc. in the United States. A security vulnerability exists in Parallels Remote Application Server version v18.0 that stems from the vulnerability of the web client to...

8.1CVSS8.2AI score0.01048EPSS
Exploits1References3
OSV
OSV
added 2020/10/21 3:15 p.m.5 views

CVE-2020-14731

Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation product of Oracle Retail Applications component: Segment. Supported versions that are affected are 18.0 and 19.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to...

3.1CVSS6.5AI score
Exploits0References1
OSV
OSV
added 2020/07/15 6:15 p.m.2 views

CVE-2020-14709

Vulnerability in the Customer Management and Segmentation Foundation product of Oracle Retail Applications component: Card. Supported versions that are affected are 16.0, 17.0 and 18.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...

7.1CVSS5.8AI score0.01032EPSS
Exploits0References1
OSV
OSV
added 2020/01/15 9:32 a.m.5 views

SUSE-SU-2020:0104-1 Security update for nodejs10

This update for nodejs10 to version 10.18.0 fixes the following issues: Security issues fixed: - CVE-2019-16777, CVE-2019-16776, CVE-2019-16775: Updated npm to 6.13.4, fixing an arbitrary path overwrite and access via 'bin' field bsc1159352. - Added support for chacha20-poly1305 for Authenticated...

8.1CVSS7.8AI score0.03342EPSS
Exploits0References7
OSV
OSV
added 2019/05/23 7:29 p.m.2 views

CVE-2019-10854

Computrols CBAS 18.0.0 allows Authenticated Command Injection...

8.8CVSS7.3AI score0.02991EPSS
Exploits4References2
OSV
OSV
added 2019/05/23 7:29 p.m.4 views

CVE-2019-10853

Computrols CBAS 18.0.0 allows Authentication Bypass...

8.1CVSS7.3AI score0.0166EPSS
Exploits4References2
OSV
OSV
added 2018/10/10 1:29 p.m.3 views

CVE-2018-8532

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio SSMS when parsing a malicious XMLA file containing a reference to an external entity, aka "SQL Server Management Studio Information Disclosure Vulnerability." This affects SQL Server Management Studio 17.9, S...

5.5CVSS5.8AI score0.23373EPSS
Exploits5References4
CNVD
CNVD
added 2018/10/10 12:0 a.m.2 views

Microsoft SQL Server Management Studio Information Disclosure Vulnerability

Microsoft SQL Server Management Studio is an integrated environment for managing multiple SQL infrastructures from Microsoft. The product is mainly used for setting up, monitoring and managing SQL programs. An information disclosure vulnerability exists in Microsoft SQL Server Management Studio...

5.5CVSS5.5AI score0.23373EPSS
Exploits5References1
Rows per page
Query Builder