Lucene search
K

33 matches found

CNNVD
CNNVD
added 2026/04/22 12:0 a.m.12 views

fprime 输入验证错误漏洞

fprime is an open-source flight software and embedded system framework developed by NASA. Versions of fprime prior to 4.2.0 contained a vulnerability related to input validation errors. This vulnerability stemmed from boundary-checking use of U32 addition, which allowed overflow bypasses, and the...

9.8CVSS6.4AI score0.00428EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-8097

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00726EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-8099

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00266EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-8096

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.01663EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/03/27 12:20 a.m.24 views

CVE-2024-55029

NASA Fprime v3.4.3 was discovered to contain multiple cross-site scripting XSS vulnerabilities...

6.1CVSS6.5AI score0.00266EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/27 12:20 a.m.20 views

CVE-2024-55030

A command injection vulnerability in the Command Dispatcher Service of NASA Fprime v3.4.3 allows attackers to execute arbitrary commands...

9.8CVSS8.4AI score0.01663EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/27 12:19 a.m.17 views

CVE-2024-55028

A template injection vulnerability in the Dashboard of NASA Fprime v3.4.3 allows attackers to execute arbitrary code via uploading a crafted Vue file...

9.8CVSS8.3AI score0.00726EPSS
Exploits1References1
PyPA
PyPA
added 2025/03/25 9:15 p.m.11 views

PYSEC-2025-116

A command injection vulnerability in the Command Dispatcher Service of NASA Fprime v3.4.3 allows attackers to execute arbitrary commands...

9.8CVSS6AI score0.01663EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2025/03/25 9:15 p.m.20 views

CVE-2024-55029

NASA Fprime v3.4.3 was discovered to contain multiple cross-site scripting XSS vulnerabilities...

6.1CVSS0.00266EPSS
Exploits1References1
NVD
NVD
added 2025/03/25 9:15 p.m.25 views

CVE-2024-55030

A command injection vulnerability in the Command Dispatcher Service of NASA Fprime v3.4.3 allows attackers to execute arbitrary commands...

9.8CVSS0.01663EPSS
Exploits1References1
NVD
NVD
added 2025/03/25 9:15 p.m.15 views

CVE-2024-55028

A template injection vulnerability in the Dashboard of NASA Fprime v3.4.3 allows attackers to execute arbitrary code via uploading a crafted Vue file...

9.8CVSS0.00726EPSS
Exploits1References1
OSV
OSV
added 2025/03/25 9:15 p.m.8 views

PYSEC-2025-116

A command injection vulnerability in the Command Dispatcher Service of NASA Fprime v3.4.3 allows attackers to execute arbitrary commands...

9.8CVSS6AI score0.01663EPSS
Exploits1References1
PyPA
PyPA
added 2025/03/25 9:15 p.m.12 views

PYSEC-2025-115

NASA Fprime v3.4.3 was discovered to contain multiple cross-site scripting XSS vulnerabilities...

6.1CVSS5.6AI score0.00266EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2025/03/25 9:15 p.m.6 views

PYSEC-2025-115

NASA Fprime v3.4.3 was discovered to contain multiple cross-site scripting XSS vulnerabilities...

6.1CVSS5.6AI score0.00266EPSS
Exploits1References1
PyPA
PyPA
added 2025/03/25 9:15 p.m.12 views

PYSEC-2025-114

A template injection vulnerability in the Dashboard of NASA Fprime v3.4.3 allows attackers to execute arbitrary code via uploading a crafted Vue file...

9.8CVSS6.2AI score0.00726EPSS
Exploits1References1Affected Software1
vulnersOsv
vulnersOsv
added 2025/03/25 8:42 p.m.5 views

fprime-ci (=0.0.1a1), fprime-fpy (>=0.0.1a1 <=0.3.2) +1 more potentially affected by CVE-2024-55029 via fprime-gds (>=4.2.1 <=4.2.2a1)

fprime-gds PYPI version =4.2.1, =0.0.1a1, =0.1.0, =0.1.3 Source cves: CVE-2024-55029 Source advisory: SNYK:PYTHON-FPRIMEGDS-9749311...

6.1CVSS5.7AI score0.00266EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2025/03/25 8:42 p.m.7 views

fprime-ci (=0.0.1a1), fprime-fpy (>=0.0.1a1 <=0.3.2) +1 more potentially affected by CVE-2024-55030 via fprime-gds (>=4.2.1 <=4.2.2a1)

fprime-gds PYPI version =4.2.1, =0.0.1a1, =0.1.0, =0.1.3 Source cves: CVE-2024-55030 Source advisory: SNYK:PYTHON-FPRIMEGDS-9749309...

9.8CVSS5.7AI score0.01663EPSS
Exploits1
Snyk
Snyk
added 2025/03/25 8:42 p.m.4 views

Insecure Defaults

Overview fprime-gds is a F Prime Flight Software Ground Data System layer Affected versions of this package are vulnerable to Insecure Defaults by repeated invocation of sendcommand, which can overflow the queue and consume excessive memory. Remediation There is no fixed version for fprime-gds...

9.8CVSS7.1AI score0.01663EPSS
Exploits1References2
vulnersOsv
vulnersOsv
added 2025/03/25 8:42 p.m.9 views

fprime-ci (=0.0.1a1), fprime-fpy (>=0.0.1a1 <=0.3.2) +1 more potentially affected by CVE-2024-55028 via fprime-gds (>=4.2.1 <=4.2.2a1)

fprime-gds PYPI version =4.2.1, =0.0.1a1, =0.1.0, =0.1.3 Source cves: CVE-2024-55028 Source advisory: SNYK:PYTHON-FPRIMEGDS-9749306...

9.8CVSS5.7AI score0.00726EPSS
Exploits1
Cvelist
Cvelist
added 2025/03/25 12:0 a.m.18 views

CVE-2024-55030

A command injection vulnerability in the Command Dispatcher Service of NASA Fprime v3.4.3 allows attackers to execute arbitrary commands...

0.01663EPSS
Exploits1References1
Rows per page
Query Builder