Lucene search
K

154 matches found

OSV
OSV
added 2025/08/20 10:15 p.m.7 views

AZL-66570 CVE-2025-9288 affecting package reaper 3.1.1-22

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...

9.1CVSS6.6AI score0.00651EPSS
Exploits2References1
OSV
OSV
added 2025/08/20 10:15 p.m.1 views

DEBIAN-CVE-2025-9287

Improper Input Validation vulnerability in cipher-base allows Input Data Manipulation.This issue affects cipher-base: through 1.0.4...

9.1CVSS7.7AI score0.0047EPSS
Exploits1References1
OSV
OSV
added 2025/08/20 10:15 p.m.4 views

UBUNTU-CVE-2025-9288

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...

9.1CVSS6.7AI score0.00651EPSS
Exploits2References6
Debian CVE
Debian CVE
added 2025/08/20 9:59 p.m.6 views

CVE-2025-9288

Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...

9.1CVSS7.7AI score0.00651EPSS
Exploits2
Cvelist
Cvelist
added 2025/08/20 9:43 p.m.13 views

CVE-2025-9287 Missing type checks leading to hash rewind and passing on crafted data

Improper Input Validation vulnerability in cipher-base allows Input Data Manipulation.This issue affects cipher-base: through 1.0.4...

9.1CVSS0.0047EPSS
Exploits1References2
OSV
OSV
added 2025/08/20 9:43 p.m.3 views

CVE-2025-9287 Missing type checks leading to hash rewind and passing on crafted data

Improper Input Validation vulnerability in cipher-base allows Input Data Manipulation.This issue affects cipher-base: through 1.0.4...

9.1CVSS7.1AI score0.0047EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.11 views

PT-2025-34165

Name of the Vulnerable Software and Affected Versions sha.js versions through 2.4.11 Description An improper input validation vulnerability exists in sha.js, allowing for input data manipulation. This flaw can lead to hash collisions and potentially private key extraction, threatening web...

9.1CVSS6.1AI score0.00651EPSS
Exploits2References39
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.4 views

PT-2025-34162

Name of the Vulnerable Software and Affected Versions: cipher-base versions through 1.0.4 Description: An improper input validation issue exists in cipher-base, allowing input data manipulation. This is due to missing input type checks, which can lead to invalid value calculations, hash state...

9.1CVSS6.6AI score0.00651EPSS
Exploits2References34
RedhatCVE
RedhatCVE
added 2025/07/12 8:28 p.m.7 views

CVE-2025-3947

The Honeywell Experion PKS contains an Integer Underflow vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in improper integer data value checking during subtraction leading to a...

8.2CVSS7.1AI score0.00315EPSS
Exploits0References1
CVE
CVE
added 2025/07/10 8:19 p.m.58 views

CVE-2025-3947

The CVE-2025-3947 issue affects Honeywell Experion PKS CDA (Control Data Access) with an integer underflow, enabling input data manipulation that could cause denial of service. Affected products include C300 PCNT02/05, FIM4/8, UOC, CN100, HCA, C300PM, C200E; affected PKS versions are 520.1–520.2 ...

8.2CVSS7AI score0.00315EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/10 8:19 p.m.3 views

CVE-2025-3947 Integer underflow during processing of short network packets in CDA FTEB responder

The Honeywell Experion PKS contains an Integer Underflow vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in improper integer data value checking during subtraction leading to a...

8.2CVSS7AI score0.00315EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/10 8:19 p.m.11 views

CVE-2025-3947 Integer underflow during processing of short network packets in CDA FTEB responder

The Honeywell Experion PKS contains an Integer Underflow vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in improper integer data value checking during subtraction leading to a...

8.2CVSS0.00315EPSS
Exploits0References1
CVE
CVE
added 2025/07/10 8:16 p.m.67 views

CVE-2025-3946

CVE-2025-3946 affects Honeywell Experion PKS and OneWireless WDM. A Deployment of Wrong Handler in the Control Data Access (CDA) can cause Input Data Manipulation and potentially remote code execution. Affected: Experion PKS on 520.1–520.2 TCU9 and 530–530 TCU3; OneWireless WDM on 322.1–322.4 and...

8.2CVSS7.6AI score0.00468EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/10 8:16 p.m.13 views

CVE-2025-3946 Incorrect response generation during FTEB protocol processing

The Honeywell Experion PKS and OneWireless WDM contains a Deployment of Wrong Handler vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in incorrect handling of packets leading t...

8.2CVSS0.00468EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:54 a.m.6 views

CVE-2024-29980

Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore™ for Intel Kaby Lake, Phoenix SecureCore™ for Intel Coffee Lake, Phoenix SecureCore™ for Intel Comet Lake, Phoenix SecureCore™ for Intel Ice Lake allows Input Data Manipulation.This issue affects SecureCore™...

4.6CVSS7AI score0.00142EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:4 a.m.7 views

CVE-2024-29979

Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore™ for Intel Kaby Lake, Phoenix SecureCore™ for Intel Coffee Lake, Phoenix SecureCore™ for Intel Comet Lake, Phoenix SecureCore™ for Intel Ice Lake allows Input Data Manipulation.This issue affects SecureCore™...

4.6CVSS7AI score0.00181EPSS
Exploits0References1
NVD
NVD
added 2025/05/22 1:15 p.m.13 views

CVE-2025-3942

Improper Output Neutralization for Logs vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Input Data Manipulation. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagara...

7.5CVSS0.00239EPSS
Exploits0References2
OSV
OSV
added 2025/05/22 1:15 p.m.5 views

CVE-2025-3941

Improper Handling of Windows ::DATA Alternate Data Stream vulnerability in Tridium Niagara Framework on Windows, Tridium Niagara Enterprise Security on Windows allows Input Data Manipulation. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagara Enterprise...

9.8CVSS5.8AI score0.0047EPSS
Exploits0References2
OSV
OSV
added 2025/05/22 1:15 p.m.5 views

CVE-2025-3940

Improper Use of Validation Framework vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Input Data Manipulation. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagara Enterprise...

9.8CVSS5.8AI score0.003EPSS
Exploits0References2
NVD
NVD
added 2025/05/22 1:15 p.m.16 views

CVE-2025-3940

Improper Use of Validation Framework vulnerability in Tridium Niagara Framework on Windows, Linux, QNX, Tridium Niagara Enterprise Security on Windows, Linux, QNX allows Input Data Manipulation. This issue affects Niagara Framework: before 4.14.2, before 4.15.1, before 4.10.11; Niagara Enterprise...

9.8CVSS0.003EPSS
Exploits0References2
Rows per page
Query Builder