Lucene search
K

47 matches found

RedHat Linux
RedHat Linux
added 2026/06/23 6:38 a.m.4 views

samba: Samba: Remote Code Execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9.8CVSS6.5AI score0.12797EPSS
Exploits7References5
RedHat Linux
RedHat Linux
added 2026/06/23 1:27 a.m.5 views

samba: Samba: Remote Code Execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9.8CVSS6.5AI score0.12797EPSS
Exploits7References5
RedHat Linux
RedHat Linux
added 2026/06/23 1:24 a.m.4 views

samba: Samba: Remote Code Execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9.8CVSS6.5AI score0.12797EPSS
Exploits7References5
RedHat Linux
RedHat Linux
added 2026/06/23 1:7 a.m.3 views

samba: Samba: Remote Code Execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9.8CVSS6.5AI score0.12797EPSS
Exploits7References5
RedHat Linux
RedHat Linux
added 2026/06/23 1:1 a.m.10 views

samba: Samba: Remote Code Execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9.8CVSS6.5AI score0.12797EPSS
Exploits7References5
RedHat Linux
RedHat Linux
added 2026/06/23 12:46 a.m.8 views

samba: Samba: Remote Code Execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9.8CVSS6.5AI score0.12797EPSS
Exploits7References5
Tenable Nessus
Tenable Nessus
added 2026/06/23 12:0 a.m.7 views

RHEL 8 : samba (RHSA-2026:28058)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:28058 advisory. Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol,...

9.8CVSS6.1AI score0.12797EPSS
Exploits7References6
RedHat Linux
RedHat Linux
added 2026/06/15 2:59 p.m.7 views

samba: Samba: Remote Code Execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9.8CVSS6.3AI score0.12797EPSS
Exploits7References5
OSV
OSV
added 2026/06/09 6:0 a.m.14 views

RLSA-2026:22644 Important: samba security update

Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol, which allow PC-compatible machines to share files, printers, and various information. Security Fixes: samba: group policy certificate enrollment uses http://...

9CVSS5.7AI score0.12797EPSS
Exploits7References4
RedHat Linux
RedHat Linux
added 2026/06/03 9:52 p.m.27 views

samba: Samba: Remote Code Execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9.8CVSS6.4AI score0.12797EPSS
Exploits7References5
Cvelist
Cvelist
added 2026/05/26 1:56 p.m.53 views

CVE-2026-4480 Samba: samba: remote code execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9CVSS0.12797EPSS
Exploits7References14
Vulnrichment
Vulnrichment
added 2026/05/26 1:56 p.m.10 views

CVE-2026-4480 Samba: samba: remote code execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9CVSS6.4AI score0.12797EPSS
Exploits7References14
CVE
CVE
added 2026/05/26 1:56 p.m.213 views

CVE-2026-4480

CVE-2026-4480 : A flaw in the Samba printing subsystem causes the client-controlled job description string passed to the print command via %J to be executed without escaping shell meta characters, enabling remote code execution. Root cause: unescaped shell metacharacters in print job descriptions...

9.8CVSS6.4AI score0.12797EPSS
Exploits7References15Affected Software3
EUVD
EUVD
added 2026/05/26 1:56 p.m.11 views

EUVD-2026-31828

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

8.5CVSS6.4AI score0.12797EPSS
Exploits7References3
AlpineLinux
AlpineLinux
added 2026/05/26 1:56 p.m.19 views

CVE-2026-4480

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9.8CVSS6.4AI score0.12797EPSS
Exploits7
UbuntuCve
UbuntuCve
added 2026/05/26 12:0 a.m.8 views

CVE-2026-4480

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9.8CVSS6.4AI score0.12797EPSS
Exploits7References2
RedhatCVE
RedhatCVE
added 2026/01/25 9:17 a.m.13 views

CVE-2025-12836

The VK Google Job Posting Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Job Description field in versions up to, and including, 1.2.23 due to insufficient input sanitization and output escaping on user-supplied attributes. This makes it possible for authenticat...

6.4CVSS6.1AI score0.00248EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/24 7:26 a.m.5 views

CVE-2025-12836 VK Google Job Posting Manager <= 1.2.23 - Authenticated (Author+) Stored Cross-Site Scripting via Job Description Field

The VK Google Job Posting Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Job Description field in versions up to, and including, 1.2.23 due to insufficient input sanitization and output escaping on user-supplied attributes. This makes it possible for authenticat...

6.4CVSS6AI score0.00248EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/01/24 7:26 a.m.33 views

CVE-2025-12836 VK Google Job Posting Manager <= 1.2.23 - Authenticated (Author+) Stored Cross-Site Scripting via Job Description Field

The VK Google Job Posting Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Job Description field in versions up to, and including, 1.2.23 due to insufficient input sanitization and output escaping on user-supplied attributes. This makes it possible for authenticat...

6.4CVSS0.00248EPSS
Exploits0References4
CVE
CVE
added 2026/01/24 7:26 a.m.28 views

CVE-2025-12836

CVE-2025-12836 — VK Google Job Posting Manager (WordPress) is a stored cross-site scripting vulnerability in the VK Google Job Posting Manager plugin for WordPress. The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the Job Description field, ...

6.4CVSS6.1AI score0.00248EPSS
Exploits0References4
Rows per page
Query Builder