Lucene search
K

47 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Thunderbird

If a Thunderbird user has previously imported Alice’s OpenPGP key, and Alice has extended the validity period of her key, but Alice’s updated key has not yet been imported, an attacker may send an email containing a crafted version of Alice’s key with an invalid subkey. In this case, Thunderbird...

6.8CVSS6.6AI score0.01035EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.20 views

PT-2026-49264

LibreOffice can import EMF+ graphics, which may be embedded in documents. A heap buffer overflow existed when importing an EMF+ gradient brush. The number of gradient blend points was read from the file and used to compute an allocation size, but that multiplication could overflow, so a small...

6.9CVSS5.6AI score0.0012EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:10 p.m.6 views

CVE-2026-1663

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.4 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user with group import permissions to create labels in private projects due to improper authorization validation in th...

4.3CVSS5.8AI score0.0019EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/18 12:0 a.m.5 views

CVE-2025-65519

mayswind ezbookkeeping versions 1.2.0 and earlier contain a critical vulnerability in JSON and XML file import processing. The application fails to validate nesting depth during parsing operations, allowing authenticated attackers to trigger denial of service conditions by uploading deeply nested...

5.6AI score0.00288EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-0633

Malware in sbrugna...

6.1CVSS6.2AI score0.02965EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2000-0408

Malware in sbrugna...

3.7CVSS6.4AI score0.00308EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-6328

Malware in sbrugna...

6.1CVSS6.3AI score0.00913EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2001-0072

Malware in sbrugna...

5CVSS6.4AI score0.01969EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-13303

Malware in sbrugna...

7.8CVSS8.1AI score0.01411EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-4709

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.02122EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-15338

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00949EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-54837

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.00288EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-15364

Malicious code in bioql PyPI...

8CVSS7.8AI score0.00478EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-10805

Malicious code in bioql PyPI...

5.4CVSS6.3AI score0.002EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-9002

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00718EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-24537

Malicious code in bioql PyPI...

5.4CVSS7.3AI score0.00373EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/01 12:6 a.m.6 views

CVE-2024-45515

An issue was discovered in Zimbra Collaboration ZCS through 10.1. A Cross-Site Scripting XSS vulnerability exists in Zimbra webmail due to insufficient validation of the content type metadata when importing files into the briefcase. Attackers can exploit this issue by crafting a file with...

6.1CVSS6.2AI score0.00288EPSS
Exploits0References1
NVD
NVD
added 2025/07/30 3:15 p.m.13 views

CVE-2024-45515

An issue was discovered in Zimbra Collaboration ZCS through 10.1. A Cross-Site Scripting XSS vulnerability exists in Zimbra webmail due to insufficient validation of the content type metadata when importing files into the briefcase. Attackers can exploit this issue by crafting a file with...

6.1CVSS0.00288EPSS
Exploits0References4
OSV
OSV
added 2025/07/30 3:15 p.m.4 views

CVE-2024-45515

An issue was discovered in Zimbra Collaboration ZCS through 10.1. A Cross-Site Scripting XSS vulnerability exists in Zimbra webmail due to insufficient validation of the content type metadata when importing files into the briefcase. Attackers can exploit this issue by crafting a file with...

6.1CVSS5.5AI score
Exploits0References4
Cvelist
Cvelist
added 2025/06/27 6:31 p.m.16 views

CVE-2025-6772 eosphoros-ai db-gpt import import_flow path traversal

A vulnerability was found in eosphoros-ai db-gpt up to 0.7.2. It has been classified as critical. Affected is the function importflow of the file /api/v2/serve/awel/flow/import. The manipulation of the argument File leads to path traversal. It is possible to launch the attack remotely. The exploi...

7.5CVSS0.00523EPSS
Exploits1References4
Rows per page
Query Builder