Lucene search
K

208 matches found

UbuntuCve
UbuntuCve
added 2025/05/13 12:0 a.m.12 views

CVE-2024-28956

Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

5.7CVSS6.9AI score0.00371EPSS
Exploits0References8
Circl
Circl
added 2025/05/02 4:30 a.m.25 views

CVE-2025-3746

creationtimestamp| type| source ---|---|--- 2025-05-02 04:30:21+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lo5yhuxjc72l 2025-05-02 05:01:09+00:00| seen| Telegram/7QEqju-jYCJkVqvbZMxXpX4ajzaYKxifFuPEzR6oDsSpQMc 2025-05-02 07:34:58+00:00| seen| https://t.me/cvedetector/24329...

9.8CVSS8.7AI score0.00477EPSS
Exploits0References3
Circl
Circl
added 2025/05/01 10:1 p.m.10 views

CVE-2025-46630

creationtimestamp| type| source ---|---|--- 2025-05-01 22:01:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lo5cptx5vg2r 2025-05-01 23:12:43+00:00| seen| https://t.me/cvedetector/24273 2025-05-02 15:16:54+00:00| published-proof-of-concept|...

6.5CVSS4.8AI score0.00348EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/04/02 11:38 p.m.7 views

CVE-2025-30425

This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, tvOS 18.4, watchOS 11.4. A malicious website may be able to track users in Safari private browsing mode...

4.3CVSS5.8AI score0.00748EPSS
Exploits0References1
Circl
Circl
added 2025/03/25 8:24 p.m.14 views

CVE-2025-25373

creationtimestamp| type| source ---|---|--- 2025-03-25 20:24:21+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8756 2025-03-25 23:40:37+00:00| seen| https://t.me/cvedetector/21123 2025-03-26 01:04:14+00:00| seen|...

9.8CVSS4.8AI score0.00483EPSS
Exploits1References4
Circl
Circl
added 2025/03/14 6:23 p.m.2 views

GHSA-P3X9-6H7P-CGFC

creationtimestamp| type| source ---|---|--- 2025-03-14 18:23:02+00:00| seen| https://bsky.app/profile/buherator.bsky.social/post/3lkea5pjd6i23 2025-03-30 06:32:02+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9547...

4.8AI score
Exploits0References2
Circl
Circl
added 2025/01/08 4:15 p.m.7 views

CVE-2025-20123

creationtimestamp| type| source ---|---|--- 2025-01-08 16:15:38+00:00| seen| https://infosec.exchange/users/cve/statuses/113793626131390571 2025-01-08 16:15:48+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113793626771738794 2025-01-08 16:16:13+00:00| seen|...

4.8CVSS4.8AI score0.00256EPSS
Exploits0References5
Circl
Circl
added 2024/11/23 11:27 a.m.6 views

CVE-2024-11034

creationtimestamp| type| source ---|---|--- 2024-11-23 11:27:45+00:00| seen| https://infosec.exchange/users/cve/statuses/113532027828976073 2024-11-24 01:04:33+00:00| seen| https://infosec.exchange/users/vuldb/statuses/113535239658678358...

7.3CVSS6.9AI score0.00727EPSS
Exploits0References2
Circl
Circl
added 2024/11/11 2:2 p.m.6 views

CVE-2024-50263

creationtimestamp| type| source ---|---|--- 2024-11-11 14:02:58+00:00| seen| https://infosec.exchange/users/cve/statuses/113464690446915585 2024-11-11 16:06:12+00:00| seen| https://t.me/cvedetector/10497...

5.5CVSS6.7AI score0.00204EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2024/05/23 12:0 a.m.43 views

xorg-x11-server security update

1.20.4-24 - Fix use after free related to CVE-2024-21886 1.20.11-21 - CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886, CVE-2024-0408 and CVE-2024-0409 Resolves: https://issues.redhat.com/browse/RHEL-21207 Resolves: https://issues.redhat.com/browse/RHEL-20528 Resolves:...

7.8CVSS7AI score0.02106EPSS
Exploits0
NVD
NVD
added 2024/05/21 3:15 p.m.22 views

CVE-2021-47410

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: fix svmmigratefini warning Device manager releases device-specific resources when a driver disconnects from a device, devmmemunmappages and devmreleasememregion calls in svmmigratefini are redundant. It causes below...

5.5CVSS6.5AI score0.00208EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2024/02/01 8:51 p.m.27 views

Vyper's bounds check on built-in `slice()` function can be overflowed

Summary The bounds check for slices does not account for the ability for start + length to overflow when the values aren't literals. If a slice function uses a non-literal argument for the start or length variable, this creates the ability for an attacker to overflow the bounds check. This issue...

9.8CVSS9.7AI score0.00902EPSS
Exploits1References6Affected Software1
UbuntuCve
UbuntuCve
added 2023/06/30 7:15 p.m.27 views

CVE-2023-36807

pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. In version 2.10.5 an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This infinite loop blocks the current process and can utilize a single co...

6.5CVSS6.7AI score0.00573EPSS
Exploits1References4
Atlassian
Atlassian
added 2023/06/28 12:13 p.m.24 views

Transition screen removed when project admin edits a transition

h3. Problem The relevant transition screen gets removed when a project admin without Jira Administrator global permission attempts to edit a transition. h3. Environment Jira h3. Steps to Reproduce Create a new project I used Scrum software development template Modify one of the transitions in the...

6.6AI score
Exploits0Affected Software1
Code423n4
Code423n4
added 2023/05/27 12:0 a.m.9 views

Upgraded Q -> 2 from #19 [1685157301242]

Judge has assessed an item in Issue 19 as 2 risk. The relevant finding follows: 1. The first staker of the wxETH can get all the unlocked rewards immediately in the same block. code lines: For the first staker of the wxETH, the totalSupply of the wxETH is 0. So he can wrap the xETH to wxETH as 1:...

6.9AI score
Exploits0
Code423n4
Code423n4
added 2023/05/10 12:0 a.m.13 views

Upgraded Q -> 2 from #298 [1683710120837]

Judge has assessed an item in Issue 298 as 2 risk. The relevant finding follows: L-03 Redundant and dangerous len parameter in readKeyValue Links Impact If the len is not set to input.length minus the offset, there may be unpredictable results due how the algorithm works. Proof of Concept Let's...

6.8AI score
Exploits0
Github Security Blog
Github Security Blog
added 2022/07/15 6:17 p.m.60 views

OpenZeppelin Contracts for Cairo account cannot process transactions on Goerli

Impact This vulnerability affects all accounts vanilla and ethereum flavors in the v0.2.0 release of OpenZeppelin Contracts for Cairo, which are not whitelisted on StarkNet mainnet, so only goerli deployments of v0.2.0 accounts are affected. This faulty behavior is not observed in StarkNet's...

6.5CVSS6.2AI score0.01115EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2022/07/01 3:4 p.m.29 views

CVE-2022-2244

An improper authorization vulnerability in GitLab EE/CE affecting all versions from 14.8 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1, allows project memebers with reporter role to manage issues in project's error tracking feature...

4.3CVSS5AI score0.00786EPSS
Exploits0References3
Kitploit
Kitploit
added 2022/03/14 11:30 a.m.33 views

CodeAnalysis - Static Code Analysis

Tencent Cloud Code Analysis TCA for short, code-named CodeDog inside the company early is a comprehensive platform for code analysis and issue tracking. TCA consist of three components, server, web and client. It also supports the integration of other code analysis tools. Code analysis is a...

8.1AI score
Exploits0References14
NVD
NVD
added 2022/01/05 7:15 p.m.34 views

CVE-2021-43779

GLPI is an open source IT Asset Management, issue tracking system and service desk system. The GLPI addressing plugin in versions 2.9.1 suffers from authenticated Remote Code Execution vulnerability, allowing access to the server's underlying operating system using command injection abuse of...

9.9CVSS0.09132EPSS
Exploits1References4
Rows per page
Query Builder