Lucene search
K

16 matches found

CVE
CVE
added 2026/06/20 3:21 p.m.19 views

CVE-2026-56325

Capgo CVE-2026-56325 affects Capgo versions prior to 12.128.2. The preview subdomain resolver uses ILIKE (case-insensitive) matching for app_id lookups instead of exact matching, allowing underscore characters to act as wildcards. This can cause unintended pattern matches, potentially breaking pr...

3.1CVSS5.9AI score0.00215EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/19 1:25 p.m.9 views

crun: crun: Privilege escalation due to incorrect parsing of the `--user` option

A flaw was found in crun, an open-source OCI Container Runtime. A local user can exploit this vulnerability due to incorrect parsing of the --user option when using crun exec. The value 1 is misinterpreted as root privileges User ID 0 and Group ID 0 instead of the intended User ID 1 and Group ID ...

7.8CVSS5.7AI score0.00159EPSS
Exploits1References7
OPENSUSE Linux
OPENSUSE Linux
added 2025/10/19 12:0 a.m.11 views

Security update for coredns (moderate)

openSUSE Security Update: Security update for coredns Announcement ID: openSUSE-SU-2025:0401-1 Rating: moderate References: 1249389 Cross-References: CVE-2025-58063 CVSS scores: CVE-2025-58063 SUSE: 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L Affected Products: openSUSE Backports SLE-15-SP7 ...

5.4CVSS7.2AI score0.00407EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2025/10/19 12:0 a.m.11 views

Security update for coredns (moderate)

openSUSE Security Update: Security update for coredns Announcement ID: openSUSE-SU-2025:0400-1 Rating: moderate References: 1249389 Cross-References: CVE-2025-58063 CVSS scores: CVE-2025-58063 SUSE: 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L Affected Products: openSUSE Backports SLE-15-SP6 ...

5.4CVSS7.2AI score0.00407EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-28614

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00504EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 3:22 a.m.6 views

CVE-2023-24599

OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."...

4.3CVSS6.8AI score0.00504EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/05/29 3:15 a.m.1 views

CVE-2023-24599

OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."...

4.3CVSS6AI score0.00504EPSS
Exploits0References3
OSV
OSV
added 2023/05/29 3:15 a.m.16 views

CVE-2023-24599

OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."...

4.3CVSS7AI score
Exploits0References2
Prion
Prion
added 2023/05/29 3:15 a.m.20 views

Type confusion

OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."...

4CVSS4.7AI score0.00504EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/05/29 12:0 a.m.19 views

CVE-2023-24599

OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."...

4.9AI score0.00504EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/05/29 12:0 a.m.5 views

PT-2023-19701 · Open Xchange · Ox App Suite

Name of the Vulnerable Software and Affected Versions: OX App Suite versions prior to 7.10.6-rev37 Description: The issue allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, also referred to as "ID confusion." Recommendations: For versions prior to...

4.3CVSS7.1AI score0.00504EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2023/05/29 12:0 a.m.9 views

CVE-2023-24599

OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."...

6.8AI score0.00504EPSS
Exploits0References2
CVE
CVE
added 2023/05/29 12:0 a.m.57 views

CVE-2023-24599

CVE-2023-24599 affects Open-Xchange OX App Suite prior to backend 7.10.6-rev37, where an authenticated user can change the appointments of arbitrary users due to conflicting ID numbers (ID confusion). The issue is tied to the appointment modification flow and allows privilege abuse within the pro...

4.3CVSS4.6AI score0.00504EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2019/11/13 12:0 a.m.4 views

PT-2019-16427 · Rust +1 · Failure +1

Name of the Vulnerable Software and Affected Versions: failure crate versions through 0.1.5 failure crate versions through 2019-11-13 Description: The issue is related to type confusion that can occur when private get type id is overridden, leading to undefined behavior when downcasting. This can...

9.8CVSS7AI score0.02874EPSS
Exploits1References29
Debian
Debian
added 2005/09/05 9:58 a.m.19 views

[SECURITY] [DSA 801-1] New ntp packages fix group id confusion

-------------------------------------------------------------------------- Debian Security Advisory DSA 801-1 [email protected] http://www.debian.org/security/ Martin Schulze September 5th, 2005 http://www.debian.org/security/faq -...

4.6CVSS0.2AI score0.00445EPSS
Exploits0
Debian
Debian
added 2005/09/05 9:58 a.m.20 views

[SECURITY] [DSA 801-1] New ntp packages fix group id confusion

-------------------------------------------------------------------------- Debian Security Advisory DSA 801-1 [email protected] http://www.debian.org/security/ Martin Schulze September 5th, 2005 http://www.debian.org/security/faq -...

4.6CVSS6AI score0.00445EPSS
Exploits0
Rows per page
Query Builder