Lucene search
K

1832 matches found

Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.7 views

PT-2026-7286

Name of the Vulnerable Software and Affected Versions IntelR OptaneTM PMem management software versions CR MGMT 01.00.00.3584, CR MGMT 02.00.00.4052, CR MGMT 03.00.00.0538 Description The software has default permissions that may allow a privilege escalation. An unprivileged software adversary wi...

6.7CVSS5.2AI score0.00114EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2026/02/10 12:0 a.m.4 views

Robust Vision Systems for Connected and Autonomous Vehicles: Security Challenges and Attack Vectors

This article investigates the robustness of vision systems in Connected and Autonomous Vehicles CAVs, which is critical for developing Level-5 autonomous driving capabilities. Safe and reliable CAV navigation undeniably depends on robust vision systems that enable accurate detection of objects,...

5.6AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/01/29 5:31 p.m.6 views

CVE-2025-15545

The backup restore function does not properly validate unexpected or unrecognized tags within the backup file. When such a crafted file is restored, the injected tag is interpreted by a shell, allowing execution of arbitrary commands with root privileges. Successful exploitation allows the attack...

7.3CVSS6.1AI score0.00453EPSS
Exploits2References4
Cvelist
Cvelist
added 2026/01/27 8:8 p.m.15 views

CVE-2025-14988 Incorrect Permission Assignment for Critical Resource vulnerability in iba Systems ibaPDA

A security issue has been identified in ibaPDA that could allow unauthorized actions on the file system under certain conditions. This may impact the confidentiality, integrity, or availability of the system...

10CVSS0.00409EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/27 8:8 p.m.6 views

CVE-2025-14988 Incorrect Permission Assignment for Critical Resource vulnerability in iba Systems ibaPDA

A security issue has been identified in ibaPDA that could allow unauthorized actions on the file system under certain conditions. This may impact the confidentiality, integrity, or availability of the system...

10CVSS5.8AI score0.00409EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/21 10:24 p.m.4 views

CVE-2026-21955

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

8.2CVSS5.4AI score0.00264EPSS
Exploits0References1
Redos
Redos
added 2026/01/21 12:0 a.m.7 views

ROS-20260121-73-0042

A vulnerability in the nfttunnel component of the Linux operating system kernel is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...

7.8CVSS7.9AI score0.00239EPSS
Exploits0
NVD
NVD
added 2026/01/20 10:15 p.m.7 views

CVE-2026-21955

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

8.2CVSS0.00264EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/20 9:56 p.m.2 views

CVE-2026-21957

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...

7.5CVSS7.2AI score0.00212EPSS
Exploits1References2Affected Software1
Redos
Redos
added 2026/01/19 12:0 a.m.6 views

ROS-20260119-7304

A vulnerability in the ppsgpioprobe function of the drivers/pps/clients/pps-gpio.c module of the Linux kernel PPS client support driver is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability...

7.8CVSS5.5AI score0.00237EPSS
Exploits0
Redos
Redos
added 2026/01/19 12:0 a.m.6 views

ROS-20260119-7366

A vulnerability in the l3mdevl3out function of the include/net/l3mdev.h module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...

7.8CVSS7.8AI score0.00239EPSS
Exploits0
Redos
Redos
added 2026/01/19 12:0 a.m.6 views

ROS-20260119-7328

A vulnerability in the nbddisconnectandput function of the drivers/block/nbd.c module of the Linux kernel block device support driver is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability o...

7.8CVSS7.8AI score0.00204EPSS
Exploits0
Redos
Redos
added 2026/01/19 12:0 a.m.9 views

ROS-20260119-7356

A vulnerability in the arpxmitfinish function of the net/ipv4/arp.c module of the Linux kernel IPv4 protocol implementation is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protecte...

7.8CVSS7.8AI score0.00232EPSS
Exploits0
Redos
Redos
added 2026/01/19 12:0 a.m.6 views

ROS-20260119-7357

A vulnerability in the neighnotify function of the net/core/neighbour.c module of the Linux kernel's network functions support is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of...

7.8CVSS7.8AI score0.00232EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004311)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004311 advisory. A flaw was found in the Linux kernels futex implementation. This flaw allows a local attacker to corrupt system memory or escalate their privileges when creating a...

7.8CVSS6.4AI score0.0083EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/01/14 1:22 a.m.9 views

CVE-2026-0492

SAP HANA database is vulnerable to privilege escalation allowing an attacker with valid credentials of any user to switch to another user potentially gaining administrative access. This exploit could result in a total compromise of the system�s confidentiality, integrity, and availability...

8.8CVSS6.9AI score0.00286EPSS
Exploits0References1
NVD
NVD
added 2026/01/13 2:15 a.m.6 views

CVE-2026-0492

SAP HANA database is vulnerable to privilege escalation allowing an attacker with valid credentials of any user to switch to another user potentially gaining administrative access. This exploit could result in a total compromise of the system�s confidentiality, integrity, and availability...

8.8CVSS0.00286EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/01/13 1:14 a.m.3 views

CVE-2026-0501 SQL Injection Vulnerability in SAP S/4HANA Private Cloud and On-Premise (Financials � General Ledger)

Due to insufficient input validation in SAP S/4HANA Private Cloud and On-Premise Financials General Ledger, an authenticated user could execute crafted SQL queries to read, modify, and delete backend database data. This leads to a high impact on the confidentiality, integrity, and availability of...

9.9CVSS6.8AI score0.00414EPSS
Exploits0References2
Redos
Redos
added 2026/01/13 12:0 a.m.5 views

ROS-20260113-7357

A vulnerability in the prepareuprobebuffer function of the kernel/trace/traceuprobe.c module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected informati...

7.8CVSS6.4AI score0.00233EPSS
Exploits0
Redos
Redos
added 2026/01/13 12:0 a.m.8 views

ROS-20260113-7316

Vulnerability of astudcgetstatus function in drivers/usb/gadget/udc/aspeedudc.c module of usb gadget driver of Linux kernel is related to incorrect index calculation. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected...

7.8CVSS6.5AI score0.00245EPSS
Exploits0
Rows per page
Query Builder