Lucene search
K

9106 matches found

Vulnrichment
Vulnrichment
added 2025/04/09 10:23 a.m.7 views

CVE-2025-2441

CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could lead to loss of confidentiality when a malicious user, having physical access, sets the radio in factory default mode where the product does not correctly initialize all data...

4.6CVSS6.5AI score0.00201EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/09 10:23 a.m.29 views

CVE-2025-2441

CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could lead to loss of confidentiality when a malicious user, having physical access, sets the radio in factory default mode where the product does not correctly initialize all data...

4.6CVSS0.00201EPSS
Exploits0References1
CVE
CVE
added 2025/04/09 10:23 a.m.66 views

CVE-2025-2441

CVE-2025-2441 affects Schneider Electric Trio Q Licensed Data Radio. Root cause: insecure initialization of resources when set to factory default, potentially exposing confidential data. Impact: confidentiality loss with physical access; CVSS v3.1/4.0 base scores MEDIUM. Exploitation status not d...

4.6CVSS6.6AI score0.00201EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/04/09 7:0 a.m.3 views

vxlan: check vxlan_vnigroup_init() return value

...

5.5CVSS7.4AI score0.00205EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/04/09 7:0 a.m.3 views

drop_monitor: fix incorrect initialization order

...

5.5CVSS6.9AI score0.00209EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/04/09 7:0 a.m.2 views

KEX init error results with excessive memory usage

...

7.5CVSS7.2AI score0.00436EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/04/09 1:33 a.m.2 views

SUSE CVE-2025-22014

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pdr: Fix the potential deadlock When some client process A call pdraddlookup to add the look up for the service and does schedule locator work, later a process B got a new server packet indicating locator is up and cal...

5.5CVSS7.6AI score0.00141EPSS
Exploits0References15
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.4 views

The vulnerability of the bfd_mach_o_get_synthetic_symtab() function in the bfd/mach-o.c component of the GNU Binutils development environment allows a attacker to cause a service failure.

The vulnerability of the bfdmachogetsyntheticsymtab function in the bfd/mach-o.c component of the GNU Binutils development environment is related to errors during variable initialization. Exploiting this vulnerability could allow an attacker to cause a service failure...

4.7CVSS5.7AI score0.00384EPSS
Exploits1References10Affected Software3
CNNVD
CNNVD
added 2025/04/09 12:0 a.m.2 views

Schneider Electric Trio Q Licensed Data Radio 安全漏洞

Schneider Electric Trio Q Licensed Data Radio is a radio from Schneider Electric France. A security vulnerability exists in Schneider Electric Trio Q Licensed Data Radio versions prior to v2.7.2, which stems from an insecure resource initialization that could lead to unauthorized access...

6.8CVSS6.4AI score0.00222EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/09 12:0 a.m.1 views

Schneider Electric Trio Q Licensed Data Radio 安全漏洞

The Schneider Electric Trio Q Licensed Data Radio is a radio from Schneider Electric France. The Schneider Electric Trio Q Licensed Data Radio suffers from an information disclosure vulnerability that stems from an insecure initialization of resources, which can be exploited by an attacker to...

4.6CVSS5.8AI score0.00201EPSS
Exploits0References1
OSV
OSV
added 2025/04/08 5:15 p.m.2 views

CVE-2025-27443

Insecure default variable initialization in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a loss of integrity via local access...

5.5CVSS5.8AI score0.00143EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/08 4:16 p.m.6 views

CVE-2025-27443 Zoom Workplace Apps for Windows - Insecure Default Variable Initialization

Insecure default variable initialization in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a loss of integrity via local access...

2.8CVSS6.8AI score0.00143EPSS
Exploits0References1
CVE
CVE
added 2025/04/08 4:16 p.m.60 views

CVE-2025-27443

CVE-2025-27443 concerns Zoom Workplace Apps for Windows, caused by insecure default variable initialization in the affected software. The vulnerability could allow an authenticated user to cause a loss of integrity via local access. Multiple connected sources consistently describe the issue in Zo...

5.5CVSS6.8AI score0.00143EPSS
Exploits0References1Affected Software4
Cvelist
Cvelist
added 2025/04/08 4:16 p.m.28 views

CVE-2025-27443 Zoom Workplace Apps for Windows - Insecure Default Variable Initialization

Insecure default variable initialization in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a loss of integrity via local access...

2.8CVSS0.00143EPSS
Exploits0References1
OSV
OSV
added 2025/04/08 1:48 p.m.3 views

USN-7425-1 erlang vulnerability

It was discovered that Erlang OTP's SSH module did not limit the size of certain data in initialization messages. An attacker could possibly use this issue to consume large amount of memory leading to a denial of service...

7.5CVSS5.8AI score0.00436EPSS
Exploits0References2
OSV
OSV
added 2025/04/08 11:15 a.m.5 views

CVE-2025-29985

Dell Common Event Enabler, versions CEE 9.0.0.0, contains an Initialization of a Resource with an Insecure Default vulnerability in the Common Anti-Virus Agent CAVA. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Unauthorized access...

6.5CVSS5.8AI score0.00244EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.4 views

PT-2025-15688 · Schneider Electric · Trio Q Data Radio +1

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A vulnerability exists due to the initialization of a resource with an insecure default, potentially leading to unauthorized access. This could result in the loss of confidentiality,...

7.2CVSS5.8AI score0.00222EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.6 views

PT-2025-15464 · Zoom · Zoom Workplace Apps

Name of the Vulnerable Software and Affected Versions: Zoom Workplace Apps for Windows affected versions not specified Description: The issue is related to insecure default variable initialization, which may allow an authenticated user to conduct a loss of integrity via local access...

5.5CVSS6.6AI score0.00143EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2025/04/08 12:0 a.m.6 views

The vulnerability in the net/8021q/vlan.c module of Linux kernel allows a hacker to cause a service failure.

The vulnerability in the net/8021q/vlan.c module of Linux operating systems is related to reading beyond the buffer boundaries in memory due to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS7.2AI score0.00188EPSS
Exploits0References16Affected Software6
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.4 views

Zoom Workplace 安全漏洞

Zoom Workplace Apps for Windows is an official suite of collaboration tools from Zoom that includes core features such as team chat, whiteboards, notes, and more, and is required to be used through a Zoom Meetings account. A security vulnerability exists in Zoom Workplace Apps for Windows, which...

5.5CVSS6.7AI score0.00143EPSS
Exploits0References2
Rows per page
Query Builder