Lucene search
+L

2190 matches found

OSV
OSV
added 2026/05/06 2:44 p.m.5 views

BIT-JAVA-MIN-2024-21210

Vulnerability in Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4 and 23. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java...

3.7CVSS6.8AI score0.00827EPSS
Exploits0References5
OSV
OSV
added 2026/05/06 2:44 p.m.14 views

BIT-JAVA-2024-21210

Vulnerability in Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4 and 23. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java...

3.7CVSS6.8AI score0.00827EPSS
Exploits0References5
OSV
OSV
added 2026/05/06 2:41 p.m.6 views

BIT-JAVA-MIN-2020-14573

Vulnerability in the Java SE product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 11.0.7 and 14.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks o...

4.3CVSS6.7AI score0.03377EPSS
Exploits0References12
OSV
OSV
added 2026/05/06 2:41 p.m.6 views

BIT-JAVA-2020-14573

Vulnerability in the Java SE product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 11.0.7 and 14.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks o...

4.3CVSS6.7AI score0.03377EPSS
Exploits0References12
OSV
OSV
added 2026/05/06 6:52 a.m.13 views

CLSA-2026-1777645704 java-17-openjdk: Fix of 2 CVEs

Update to jdk-17.0.19+10 RHSA-2026:9686 - Set fipsver to 62c0f885e30 - CVE-2026-22016: fix JAXP component vulnerability allowing unauthenticated remote attackers to gain unauthorized access to sensitive data in Java SE - CVE-2026-34282: fix Hotspot component vulnerability allowing unauthorized...

7.5CVSS7.3AI score0.00702EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.15 views

PT-2026-37873

Vulnerability in the Java SE product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 11.0.7 and 14.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks o...

4.3CVSS6.7AI score0.03377EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.12 views

PT-2026-37666

Vulnerability in the Java SE product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 11.0.7 and 14.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks o...

4.3CVSS6.7AI score0.03377EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.14 views

PT-2026-37805

Vulnerability in Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4 and 23. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java...

3.7CVSS6.8AI score0.00827EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.10 views

PT-2026-38012

Vulnerability in Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u421, 8u421-perf, 11.0.24, 17.0.12, 21.0.4 and 23. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java...

3.7CVSS6.8AI score0.00827EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.12 views

Oracle Java SE和Oracle GraalVM Enterprise Edition 安全漏洞

Oracle Java SE and Oracle GraalVM Enterprise Edition are both products of Oracle Corporation. Oracle Java SE is used for developing and deploying Java applications for desktops, servers, embedded devices, and real-time environments. Oracle GraalVM Enterprise Edition is an enterprise-level...

6CVSS7.2AI score0.00101EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/04 3:30 p.m.6 views

EUVD-2016-10869

Hotspot Shield 6.0.3 contains an unquoted service path vulnerability in the hshld service binary that allows local attackers to escalate privileges by injecting malicious executables. Attackers can place executable files in the service path and upon service restart or system reboot, the malicious...

8.5CVSS6AI score0.00151EPSS
Exploits0References5
NVD
NVD
added 2026/04/04 2:16 p.m.8 views

CVE-2016-20060

Hotspot Shield 6.0.3 contains an unquoted service path vulnerability in the hshld service binary that allows local attackers to escalate privileges by injecting malicious executables. Attackers can place executable files in the service path and upon service restart or system reboot, the malicious...

8.5CVSS0.00151EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/04 1:51 p.m.22 views

CVE-2016-20060 Hotspot Shield 6.0.3 Unquoted Service Path Privilege Escalation

Hotspot Shield 6.0.3 contains an unquoted service path vulnerability in the hshld service binary that allows local attackers to escalate privileges by injecting malicious executables. Attackers can place executable files in the service path and upon service restart or system reboot, the malicious...

8.5CVSS0.00151EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/04 1:51 p.m.5 views

CVE-2016-20060 Hotspot Shield 6.0.3 Unquoted Service Path Privilege Escalation

Hotspot Shield 6.0.3 contains an unquoted service path vulnerability in the hshld service binary that allows local attackers to escalate privileges by injecting malicious executables. Attackers can place executable files in the service path and upon service restart or system reboot, the malicious...

8.5CVSS6AI score0.00151EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/04 1:51 p.m.2 views

CVE-2016-20060

Hotspot Shield 6.0.3 contains an unquoted service path vulnerability in the hshld service binary that allows local attackers to escalate privileges by injecting malicious executables. Attackers can place executable files in the service path and upon service restart or system reboot, the malicious...

8.5CVSS6AI score0.00151EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/04/04 1:51 p.m.11 views

CVE-2016-20060

Affected software: Hotspot Shield 6.0.3. Vulnerability: unquoted service path in the hshld service binary enables local privilege escalation by placing malicious executables in the service path; on service restart or system reboot, code executes with LocalSystem privileges. Root cause: unquoted s...

8.5CVSS6AI score0.00151EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/04 12:0 a.m.8 views

Pango Hotspot Shield 代码问题漏洞

Pango Hotspot Shield is a VPN Virtual Private Network proxy software developed by the American company Pango. Version 6.0.3 of Pango Hotspot Shield has a code vulnerability. This vulnerability stems from an issue with the hshld service binary, where a service path without quotes exists. This coul...

8.5CVSS7.4AI score0.00151EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/15 12:0 a.m.7 views

PT-2026-25551

arduino-TuyaOpen before version 1.2.1 contains a single-byte buffer overflow vulnerability in the WiFiMulti component. When the victim's smart hardware connects to an attacker-controlled AP hotspot, the attacker can exploit the overflow to execute arbitrary code on the affected embedded device...

8.6CVSS6.4AI score0.00193EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.5 views

Amazon Linux 2023 : cuda-toolkit-13 (ALAS2023NVIDIA-2026-276)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2026-276 advisory. NVIDIA Nsight Systems contains a vulnerability in the gfxhotspot recipe, where an attacker could cause an OS command injection by supplying a malicious string to the processnsysrepcli.py script if...

7.3CVSS5.9AI score0.01185EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.7 views

Amazon Linux 2023 : cuda (ALAS2023NVIDIA-2026-277)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2026-277 advisory. NVIDIA Nsight Systems contains a vulnerability in the gfxhotspot recipe, where an attacker could cause an OS command injection by supplying a malicious string to the processnsysrepcli.py script if...

7.3CVSS5.9AI score0.01185EPSS
Exploits0References4
Rows per page
Query Builder