Lucene search
K

175 matches found

CNNVD
CNNVD
added 2025/11/20 12:0 a.m.7 views

IBM Concert 安全漏洞

IBM Concert is a generative artificial intelligence-driven automated application management and monitoring tool based on the watsonx platform released in May 2024 by IBM. IBM Concert suffers from an improper output neutralization vulnerability that can be exploited by an attacker to cause a forge...

6.2CVSS6.6AI score0.00101EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

Siemens SIMATIC S7-1500 Improper Neutralization of Special Elements in Output Used by a Downstream Component (CVE-2020-8177)

curl 7.20.0 through 7.70.0 is vulnerable to improper restriction of names for files and other resources that can lead too overwriting a local file when the -J flag is used. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

7.8CVSS6.7AI score0.01236EPSS
Exploits1References6
EUVD
EUVD
added 2025/11/05 7:21 p.m.6 views

EUVD-2025-37927

A reflected cross-site scripting XSS vulnerability exists in the management console of multiple WSO2 products due to improper output encoding. By tampering with specific parameters, a malicious actor can inject arbitrary JavaScript into the response, leading to reflected XSS. Successful...

5.2CVSS5.3AI score0.00177EPSS
Exploits0References3
CVE
CVE
added 2025/11/05 7:21 p.m.16 views

CVE-2025-10853

Summary: CVE-2025-10853 is a reflected XSS vulnerability in the management console of multiple WSO2 products caused by improper output encoding. The issue allows a malicious actor to tamper with specific parameters to inject arbitrary JavaScript into responses, potentially leading to UI manipulat...

6.1CVSS5.4AI score0.00177EPSS
Exploits0References1Affected Software9
RedhatCVE
RedhatCVE
added 2025/10/21 7:44 p.m.6 views

CVE-2025-62697

Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in The Wikimedia Foundation Mediawiki - LanguageSelector Extension allows Code Injection.This issue affects Mediawiki - LanguageSelector Extension: from master before 1.39...

8.8CVSS7AI score0.00317EPSS
Exploits0References1
OSV
OSV
added 2025/10/20 8:15 p.m.2 views

UBUNTU-CVE-2025-62697

Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in The Wikimedia Foundation Mediawiki - LanguageSelector Extension allows Code Injection.This issue affects Mediawiki - LanguageSelector Extension: from master before 1.39...

8.8CVSS5.8AI score0.00317EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-3218

Malware in sbrugna...

6.1CVSS6.1AI score0.01139EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-1029

Malware in sbrugna...

9.8CVSS5.3AI score0.0086EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-51392

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00967EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-5861

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00949EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-25621

Malicious code in bioql PyPI...

5.4CVSS6.3AI score0.01084EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-16764

Malicious code in bioql PyPI...

9.8CVSS7AI score0.00873EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-3289

Malicious code in bioql PyPI...

4.8CVSS5AI score0.00406EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-49592

Malicious code in bioql PyPI...

5.4CVSS6.3AI score0.00323EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-49101

Malicious code in bioql PyPI...

8.1CVSS4.9AI score0.00478EPSS
Exploits0References6
OSV
OSV
added 2025/10/03 7:56 p.m.5 views

RLSA-2025:14592 Important: aide security update

Advanced Intrusion Detection Environment AIDE is a utility that creates a database of files on the system, and then uses that database to ensure file integrity and detect system intrusions. Security Fixes: aide: improper output neutralization enables bypassing CVE-2025-54389 For more details abou...

7.1CVSS6.9AI score0.0021EPSS
Exploits1References2
OSV
OSV
added 2025/09/22 11:55 a.m.4 views

SUSE-SU-2025:20754-1 Security update for aide

This update for aide fixes the following issues: - CVE-2025-54389: Fixed improper output neutralization bsc1247884 - CVE-2025-54409: Fixed null pointer dereference after reading incorrectly encoded xattr attributes from database bsc1247885...

6.2CVSS6.2AI score0.00216EPSS
Exploits2References5
SUSE Linux
SUSE Linux
added 2025/09/22 11:54 a.m.3 views

Security update for aide

This update for aide fixes the following issues: CVE-2025-54389: Fixed improper output neutralization bsc1247884 CVE-2025-54409: Fixed null pointer dereference after reading incorrectly encoded xattr attributes from database bsc1247885 Patch Instructions: To install this SUSE update use the SUSE...

6.9CVSS7AI score0.00216EPSS
Exploits2References8
RedHat Linux
RedHat Linux
added 2025/09/15 1:29 a.m.7 views

Important: Red Hat Security Advisory: aide security update

An update for aide is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

6.2CVSS6.8AI score0.0021EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/09/15 12:0 a.m.7 views

RHEL 7 : aide (RHSA-2025:15728)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:15728 advisory. Advanced Intrusion Detection Environment AIDE is a utility that creates a database of files on the system, and then uses that database to ensure fil...

6.2CVSS7.5AI score0.0021EPSS
Exploits1References4
Rows per page
Query Builder