Lucene search
K

769 matches found

NVD
NVD
added 2025/09/16 1:16 p.m.5 views

CVE-2025-55117

A stack-based buffer overflow can be remotely triggered when formatting an error message in the Control-M/Agent when SSL/TLS communication is configured. The issue occurs in the following cases: Control-M/Agent 9.0.20: SSL/TLS configuration is set to the non-default setting "useopenssl=n";...

6.3CVSS0.00308EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/09/16 12:22 p.m.3 views

CVE-2025-55117 BMC Control-M/Agent buffer overflow in SSL/TLS communication

A stack-based buffer overflow can be remotely triggered when formatting an error message in the Control-M/Agent when SSL/TLS communication is configured. The issue occurs in the following cases: Control-M/Agent 9.0.20: SSL/TLS configuration is set to the non-default setting "useopenssl=n";...

6.3CVSS7AI score0.00308EPSS
Exploits0References2
NVD
NVD
added 2025/09/15 3:15 p.m.2 views

CVE-2022-50299

In the Linux kernel, the following vulnerability has been resolved: md: Replace snprintf with scnprintf Current code produces a warning as shown below when total characters in the constituent block device names plus the slashes exceeds 200. snprintf returns the number of characters generated from...

5.5CVSS0.00147EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that using snprintf may result in a buffer overflow, and that scnprintf should be used instead...

5.5CVSS6.1AI score0.00147EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/09/11 4:52 p.m.6 views

CVE-2025-39751

...

Exploits0
RedHat Linux
RedHat Linux
added 2025/09/10 5:18 p.m.3 views

kernel: scsi: lpfc: Use memcpy() for BIOS version

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Use memcpy for BIOS version The strlcat with FORTIFY support is triggering a panic because it thinks the target buffer will overflow although the correct target buffer size is passed in. Anyway, instead of memset with...

5.5CVSS7AI score0.00167EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-11929

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient boundary checks when formatting numbers in numberformat allows read/write access to out-of- bounds memory, potentially leading to remote code...

9.8CVSS8.7AI score0.04028EPSS
Exploits0References2
Gitee
Gitee
added 2025/09/06 12:9 p.m.109 views

Exploit for Deserialization of Untrusted Data in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

🤝 Show your support - give a ⭐️ if you liked the content | SHARE on Twitter | Follow me on --- 🐱‍💻 ✂️ 🤬 LOG4J Java exploit - WAF and patches bypass tricks 📝 Description CVE-2021-44228 works on: log4j: 2.0 Upper Lookup The UpperLookup converts the passed in argument to upper case. Presumably the...

10CVSS9AI score0.99999EPSS
Exploits352
Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2016-10515

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Redmine before 3.2.3, there are stored XSS vulnerabilities affecting Textile and Markdown text formatting, and project homepages. CVE-2016-10515 Note that...

6.1CVSS6.1AI score0.00678EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/22 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-47807

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GStreamer through 1.26.1, the subparse plugin's subripunescapeformatting function may dereference a NULL pointer while parsing a subtitle file, leading to a...

5.5CVSS7.7AI score0.00185EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2019-25026

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Redmine before 3.4.13 and 4.x before 4.0.6 mishandles markup data during Textile formatting. CVE-2019-25026 Note that Nessus relies on the presence of the packa...

5.3CVSS5.6AI score0.00809EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/15 9:29 p.m.9 views

CVE-2012-10058

RabidHamster R4 v1.25 contains a stack-based buffer overflow vulnerability due to unsafe use of sprintf when logging malformed HTTP requests. A remote attacker can exploit this flaw by sending a specially crafted URI, resulting in arbitrary code execution under the context of the web server proce...

10CVSS8.4AI score0.01317EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/08/14 11:22 p.m.3 views

SUSE CVE-2025-55198

Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, when parsing Chart.yaml and index.yaml files, an improper validation of type error can lead to a panic. This issue has been resolved in Helm 3.18.5. A workaround involves ensuring YAML files are formatted as Helm expect...

6.5CVSS6.8AI score0.00311EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2025/08/14 12:15 a.m.3 views

CVE-2025-55198

Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, when parsing Chart.yaml and index.yaml files, an improper validation of type error can lead to a panic. This issue has been resolved in Helm 3.18.5. A workaround involves ensuring YAML files are formatted as Helm expect...

6.5CVSS7.2AI score0.00311EPSS
Exploits0References2
NVD
NVD
added 2025/08/14 12:15 a.m.7 views

CVE-2025-55198

Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, when parsing Chart.yaml and index.yaml files, an improper validation of type error can lead to a panic. This issue has been resolved in Helm 3.18.5. A workaround involves ensuring YAML files are formatted as Helm expect...

6.5CVSS0.00311EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/08/14 12:5 a.m.15 views

Helm May Panic Due To Incorrect YAML Content

A Helm contributor discovered an improper validation of type error when parsing Chart.yaml and index.yaml files that can lead to a panic. Impact There are two areas of YAML validation that were impacted. First, when a Chart.yaml file had a null maintainer or the child or parent of a dependencies...

6.5CVSS7.1AI score0.00311EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/13 11:23 p.m.1 views

CVE-2025-55198 Helm May Panic Due To Incorrect YAML Content

Helm is a package manager for Charts for Kubernetes. Prior to version 3.18.5, when parsing Chart.yaml and index.yaml files, an improper validation of type error can lead to a panic. This issue has been resolved in Helm 3.18.5. A workaround involves ensuring YAML files are formatted as Helm expect...

6.5CVSS7AI score0.00311EPSS
Exploits0References2
NVD
NVD
added 2025/08/13 9:15 p.m.4 views

CVE-2012-10058

RabidHamster R4 v1.25 contains a stack-based buffer overflow vulnerability due to unsafe use of sprintf when logging malformed HTTP requests. A remote attacker can exploit this flaw by sending a specially crafted URI, resulting in arbitrary code execution under the context of the web server proce...

10CVSS0.01317EPSS
Exploits0References6
FreeBSD
FreeBSD
added 2025/08/11 12:0 a.m.6 views

PostgreSQL -- vulnerabilities

PostgreSQL project reports: Tighten security checks in planner estimation functions. Prevent pgdump scripts from being used to attack the user running the restore. Convert newlines to spaces in names included in comments in pgdump output...

8.8CVSS7.2AI score0.00709EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2025-38033

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - x86/Kconfig: make CFIAUTODEFAULT depend on !RUST or Rust = 1.88 Calling core::fmt::write from rust code while FineIBT is enabled results in a kernel panic:...

5.5CVSS6.7AI score0.00154EPSS
Exploits0References2
Rows per page
Query Builder