Lucene search
K

580 matches found

CNNVD
CNNVD
added 2026/01/23 12:0 a.m.8 views

Ollama MCP Server: Operating System Command Injection Vulnerability

Ollama MCP Server is an open-source server component based on the Large Model Context Protocol developed by Ollama. The Ollama MCP Server has a vulnerability related to operating system command injection. This vulnerability stems from the execAsync method not properly verifying the string provide...

9.8CVSS7.6AI score0.02111EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.5 views

PT-2026-4278

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. affected versions not specified Description The web application does not adequately validate inputs that should be constant but are subject to external control. A user with limited privileges can alter...

8.7CVSS5.3AI score0.00315EPSS
Exploits0References3
NVD
NVD
added 2026/01/21 8:16 p.m.5 views

CVE-2025-12781

When passing data to the b64decode, standardb64decode, and urlsafeb64decode functions in the "base64" module the characters "+/" will always be accepted, regardless of the value of "altchars" parameter, typically used to establish an "alternative base64 alphabet" such as the URL safe alphabet. Th...

6.3CVSS0.00513EPSS
Exploits1References8
OSV
OSV
added 2026/01/21 8:16 p.m.5 views

UBUNTU-CVE-2025-12781

When passing data to the b64decode, standardb64decode, and urlsafeb64decode functions in the "base64" module the characters "+/" will always be accepted, regardless of the value of "altchars" parameter, typically used to establish an "alternative base64 alphabet" such as the URL safe alphabet. Th...

6.3CVSS5.8AI score0.00513EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/01/21 7:34 p.m.9 views

CVE-2025-12781

When passing data to the b64decode, standardb64decode, and urlsafeb64decode functions in the "base64" module the characters "+/" will always be accepted, regardless of the value of "altchars" parameter, typically used to establish an "alternative base64 alphabet" such as the URL safe alphabet. Th...

6.3CVSS5.4AI score0.00513EPSS
Exploits1References9Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/21 7:34 p.m.4 views

CVE-2025-12781 base64.b64decode() always accepts "+/" characters, despite setting altchars

When passing data to the b64decode, standardb64decode, and urlsafeb64decode functions in the "base64" module the characters "+/" will always be accepted, regardless of the value of "altchars" parameter, typically used to establish an "alternative base64 alphabet" such as the URL safe alphabet. Th...

6.3CVSS5.4AI score0.00513EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2026/01/09 12:42 p.m.8 views

CVE-2005-1040

Multiple unknown vulnerabilities in netapplet in Novell Linux Desktop 9 allow local users to gain root privileges, related to "User input being passed to network scripts without verification."...

7.2CVSS7.2AI score0.0043EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:21 a.m.5 views

CVE-2021-22444

There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause code injection...

9.8CVSS7AI score0.00765EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:21 a.m.13 views

CVE-2021-22381

There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause an infinite loop in DoS...

7.5CVSS6.9AI score0.00677EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:21 a.m.10 views

CVE-2021-22345

There is an Input Verification Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause out-of-bounds memory write...

9.8CVSS6.9AI score0.00765EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:21 a.m.6 views

CVE-2021-22349

There is an Input Verification Vulnerability in Huawei Smartphone. Successful exploitation of insufficient input verification may cause the system to restart...

7.8CVSS6.8AI score0.00689EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:20 a.m.5 views

CVE-2021-22410

There is a XSS injection vulnerability in iMaster NCE-Fabric V100R019C10. A module of the client does not verify the input sufficiently. Attackers can exploit this vulnerability by modifying input after logging onto the client. This may compromise the normal service of the client...

5.4CVSS6.7AI score0.00315EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:20 a.m.8 views

CVE-2021-22445

There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset...

7.8CVSS6.8AI score0.00689EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:18 a.m.5 views

CVE-2021-22443

There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause random address access...

7.5CVSS6.7AI score0.00714EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:49 a.m.5 views

CVE-2022-37395

A Huawei device has an input verification vulnerability. Successful exploitation of this vulnerability may lead to DoS attacks.Affected product versions include:CV81-WDM FW versions 01.70.49.29.46...

7.5CVSS6.8AI score0.00479EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:40 a.m.7 views

CVE-2022-35503

Improper verification of a user input in Open Source MANO v7-v12 allows an authenticated attacker to execute arbitrary code within the LCM module container via a Virtual Network Function VNF descriptor. An attacker may be able execute code to change the normal execution of the OSM components,...

7.5CVSS7.8AI score0.00536EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:55 a.m.6 views

CVE-2020-12832

WordPress Plugin Simple File List before 4.2.8 is prone to a vulnerability that lets attackers delete arbitrary files because the application fails to properly verify user-supplied input...

9.8CVSS6.9AI score0.07131EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/09 8:27 a.m.4 views

CVE-2025-66324

Input verification vulnerability in the compression and decompression module. Impact: Successful exploitation of this vulnerability may affect app data integrity...

8.4CVSS6.8AI score0.00077EPSS
Exploits0References1
NVD
NVD
added 2025/12/08 8:15 a.m.6 views

CVE-2025-66324

Input verification vulnerability in the compression and decompression module. Impact: Successful exploitation of this vulnerability may affect app data integrity...

8.4CVSS0.00077EPSS
Exploits0References1
OSV
OSV
added 2025/12/08 8:15 a.m.3 views

CVE-2025-66324

Input verification vulnerability in the compression and decompression module. Impact: Successful exploitation of this vulnerability may affect app data integrity...

5.5CVSS5.8AI score0.00077EPSS
Exploits0References1
Rows per page
Query Builder