Lucene search
K

1832 matches found

Cvelist
Cvelist
added 2026/05/15 1:41 a.m.57 views

CVE-2026-0438

A System Management Mode SMM handler could perform a callout to code located in non-SMM/untrusted memory. A highly privileged attacker could, with active user interaction and under high complexity and present preconditions, trigger execution of attacker-controlled code in SMM, potentially...

5.4CVSS0.00139EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/15 12:0 a.m.8 views

AMD Ryzen和AMD Athlon 安全漏洞

AMD Ryzen and AMD Athlon are both products of American semiconductor company AMD. AMD Ryzen is a type of Central Processing Unit CPU. AMD Athlon is a series of microprocessors. Both AMD Ryzen and AMD Athlon have security vulnerabilities. These vulnerabilities stem from improper protection of...

7.1CVSS5.9AI score0.00095EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/15 12:0 a.m.19 views

PT-2026-41244

An unchecked return value within the AMD Platform Management Framework PMF could allow an attacker to read or modify an arbitrary address potentially resulting in loss of confidentiality, integrity, or availability...

8.3CVSS5.9AI score0.00104EPSS
Exploits0References2
NVD
NVD
added 2026/05/12 3:16 a.m.33 views

CVE-2026-0502

Due to insufficient CSRF protection in SAP BusinessObjects Business Intelligence Platform ,an authenticated user could be tricked by an attacker to send unintended requests to the web server. This has low impact on integrity and availability of the application. There is no impact on confidentiali...

5.4CVSS0.00121EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/11 2:39 p.m.12 views

SUSE CVE-2025-3770

EDK2 contains a vulnerability in BIOS where an attacker may cause “Protection Mechanism Failure” by local access. Successful exploitation of this vulnerability will lead to arbitrary code execution and impact Confidentiality, Integrity, and Availability...

7CVSS7.4AI score0.0014EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.21 views

PT-2026-39922

Name of the Vulnerable Software and Affected Versions SAP Commerce cloud affected versions not specified Description Improper Spring Security configuration allows an unauthenticated user to perform malicious configuration upload and code injection. This can result in arbitrary server-side code...

10CVSS6AI score0.0061EPSS
Exploits0References22
RedhatCVE
RedhatCVE
added 2026/05/05 11:17 a.m.12 views

CVE-2026-6994

A flaw was found in Envoy. A remote attacker could exploit a weakness in the Query Parameter Handler component, specifically within the params.add function. This vulnerability allows for injection, which may lead to limited impacts on the confidentiality, integrity, and availability of the affect...

6.5CVSS5.8AI score0.00228EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.16 views

PT-2026-34329

Name of the Vulnerable Software and Affected Versions camel-infinispan affected versions not specified Description Unsafe deserialization exists in the ProtoStream remote aggregation repository. A remote attacker with low privileges can send specially crafted data to achieve arbitrary code...

7.5CVSS6.1AI score0.00667EPSS
Exploits1References9
EUVD
EUVD
added 2026/04/16 6:31 a.m.9 views

EUVD-2023-44280

In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, integrity and availability...

8.8CVSS5.8AI score0.00504EPSS
Exploits0References3
NVD
NVD
added 2026/04/16 5:16 a.m.10 views

CVE-2023-3634

In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, integrity and availability...

8.8CVSS0.00504EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/16 4:40 a.m.8 views

CVE-2023-3634 Festo: MSE6-C2M/D2M/E2M Incomplete User Documentation of Remote Accessible Functions

In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, integrity and availability...

8.8CVSS5.8AI score0.00504EPSS
Exploits0References2
Redos
Redos
added 2026/04/14 12:0 a.m.7 views

ROS-20260414-73-0058

A vulnerability in the ieee80211rxhaction function in the net/mac80211/rx.c module of the mac80211 stack implementation of the Linux operating system kernel is related to memory reads outside of the allocated buffer. Exploitation of the vulnerability may allow an intruder to affect confidentialit...

7.8CVSS7.2AI score0.00144EPSS
Exploits0
Redos
Redos
added 2026/04/14 12:0 a.m.7 views

ROS-20260414-73-0033

A vulnerability in the loadbalance function in the kernel/sched/fair.c module of the Linux kernel resource accounting system is associated with state management errors. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected...

7.8CVSS5.8AI score0.00155EPSS
Exploits0
Redos
Redos
added 2026/04/03 12:0 a.m.8 views

ROS-20260403-73-0026

A vulnerability in the fbdev component of the Linux operating system kernel is related to writing outside of buffer boundaries. Exploitation of the vulnerability allows an attacker to affect confidentiality, integrity and availability of protected information...

7.8CVSS6.7AI score0.00162EPSS
Exploits0
Redos
Redos
added 2026/04/03 12:0 a.m.7 views

ROS-20260403-73-0010

A vulnerability in the proc component of the Linux operating system kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability allows an intruder to affect confidentiality, integrity and availability of protected information...

7.8CVSS6.9AI score0.00153EPSS
Exploits0
Redos
Redos
added 2026/04/03 12:0 a.m.7 views

ROS-20260403-73-0037

A vulnerability in the doregisterframebuffer function of the fbdev/core/fbmem.c component of the Linux kernel is related to writing outside the buffer boundaries. Exploitation of the vulnerability allows an attacker to violate the integrity and availability of protected information...

7.8CVSS6.7AI score0.00174EPSS
Exploits0
Redos
Redos
added 2026/04/03 12:0 a.m.5 views

ROS-20260403-73-0033

A vulnerability in the jfs/file.c component of the Linux operating system kernel is related to insufficient input data validation. Exploitation of the vulnerability allows an intruder to affect confidentiality, integrity and availability of protected information...

5.5CVSS6.1AI score0.00159EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/26 2:59 p.m.5 views

CVE-2026-2273

CWE-94: Improper Control of Generation of Code 'Code Injection' vulnerability exist that could cause execution of untrusted commands on the engineering workstation which could result in a limited compromise of the workstation and a potential loss of Confidentiality, Integrity and Availability of...

7.2CVSS6AI score0.00227EPSS
Exploits0References1
Redos
Redos
added 2026/03/24 12:0 a.m.12 views

ROS-20260324-73-0010

A vulnerability in the f2fs component of the Linux operating system kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability allows an attacker to affect confidentiality, integrity and availability of protected information...

5.5CVSS6AI score0.00155EPSS
Exploits0
Redos
Redos
added 2026/03/24 12:0 a.m.10 views

ROS-20260324-73-0015

A vulnerability in the ipv6 component of the Linux operating system kernel is associated with the execution of a loop with an inaccessible exit condition. Exploitation of the vulnerability allows an attacker to affect confidentiality, integrity and availability of protected information...

5.5CVSS6.2AI score0.00147EPSS
Exploits0
Rows per page
Query Builder