Lucene search
K

76 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.14 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007248)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007248 advisory. In the Linux kernel, the following vulnerability has been resolved: binder: check offset alignment in bindergetobject Commit 6d98eb95b450 binder: avoid potential dat...

5.5CVSS6.1AI score0.00423EPSS
Exploits0References4
OSV
OSV
added 2026/03/25 10:27 a.m.5 views

CVE-2026-23347 can: usb: f81604: correctly anchor the urb in the read bulk callback

In the Linux kernel, the following vulnerability has been resolved: can: usb: f81604: correctly anchor the urb in the read bulk callback When submitting an urb, that is using the anchor pattern, it needs to be anchored before submitting it otherwise it could be leaked if usbkillanchoredurbs is...

5.5CVSS5.7AI score0.00127EPSS
Exploits0References8
Packet Storm News
Packet Storm News
added 2026/03/23 12:0 a.m.2 views

Towards Secure Retrieval-Augmented Generation: A Comprehensive Review of Threats, Defenses and Benchmarks

Retrieval-Augmented Generation RAG significantly mitigates the hallucinations and domain knowledge deficiency in large language models by incorporating external knowledge bases. However, the multi-module architecture of RAG introduces complex system-level security vulnerabilities. Guided by the R...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/02/22 12:0 a.m.5 views

Detecting Cybersecurity Threats by Integrating Explainable AI with SHAP Interpretability and Strategic Data Sampling

The critical need for transparent and trustworthy machine learning in cybersecurity operations drives the development of this integrated Explainable AI XAI framework. Our methodology addresses three fundamental challenges in deploying AI for threat detection: handling massive datasets through...

6AI score
Exploits0
CNVD
CNVD
added 2025/10/21 12:0 a.m.2 views

Fortinet FortiDLP Path Traversal Vulnerability

Fortinet FortiDLP is a data leakage prevention software from the American company Fita Fortinet. Fortinet FortiDLP suffers from a path traversal vulnerability, which stems from the program failing to properly filter special elements in the path of a resource or file, and can be exploited by an...

7.8CVSS7.1AI score0.00197EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.5 views

Fortinet FortiDLP 路径遍历漏洞

Fortinet FortiDLP is a data leakage prevention software from the American company Fita Fortinet. Fortinet FortiDLP suffers from a path traversal vulnerability, which stems from the program failing to properly filter special elements in the path of a resource or file, and can be exploited by an...

7.8CVSS7AI score0.00197EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.5 views

Fortinet FortiDLP 路径遍历漏洞

Fortinet FortiDLP is a data leakage prevention software from Fortinet, Inc. A path traversal vulnerability exists in Fortinet FortiDLP that stems from an improperly restricted pathname, which could lead to elevation of privilege...

7.8CVSS6.7AI score0.00191EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/07 4:10 a.m.5 views

CVE-2025-11317

A vulnerability was identified in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. This affects the function findRolePage of the file findSingConfigPage.do. The manipulation of the argument sort leads to sql injection. The attack is possible to be carried out remotely. The explo...

7.5CVSS7.1AI score0.00462EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/07 4:10 a.m.4 views

CVE-2025-11318

A security flaw has been discovered in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. This vulnerability affects unknown code of the file uploadWxFile.do. The manipulation of the argument File results in unrestricted upload. The attack may be performed from remote. The exploit...

7.5CVSS6.6AI score0.00514EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/07 2:57 a.m.12 views

CVE-2025-11316

A vulnerability was determined in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. Affected by this issue is the function findCategoryPage of the file findCategoryPage.do. Executing manipulation of the argument tenantId can lead to sql injection. The attack can be executed...

7.5CVSS7.4AI score0.00462EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/07 2:6 a.m.13 views

CVE-2025-11315

A vulnerability was found in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. Affected by this vulnerability is the function findUserPage of the file findUserPage.do. Performing manipulation of the argument sort results in sql injection. Remote exploitation of the attack is...

7.5CVSS7.2AI score0.00462EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/07 1:7 a.m.21 views

CVE-2025-11312

A vulnerability was detected in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. This affects the function findModulePage of the file findModulePage.do. The manipulation of the argument sort results in sql injection. The attack can be launched remotely. The exploit is now public...

7.5CVSS7AI score0.00462EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/07 12:3 a.m.15 views

CVE-2025-11310

A weakness has been identified in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. The affected element is the function findFileServerPage of the file findFileServerPage.do. Executing manipulation of the argument sort can lead to sql injection. It is possible to launch the attac...

7.5CVSS7AI score0.00462EPSS
Exploits1References1
OSV
OSV
added 2025/10/06 4:15 a.m.5 views

CVE-2025-11318

A security flaw has been discovered in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. This vulnerability affects unknown code of the file uploadWxFile.do. The manipulation of the argument File results in unrestricted upload. The attack may be performed from remote. The exploit...

9.8CVSS5.5AI score0.00514EPSS
Exploits1References4
CVE
CVE
added 2025/10/06 3:32 a.m.12 views

CVE-2025-11318

Tipray Data Leakage Prevention System 1.0 contains a vulnerability in the file uploadWxFile.do endpoint where manipulating the File parameter allows unrestricted file uploads. The issue is exploitable remotely and details, including that exploits have been released publicly, are noted across mult...

9.8CVSS7.2AI score0.00514EPSS
Exploits1References4Affected Software1
EUVD
EUVD
added 2025/10/06 3:32 a.m.5 views

EUVD-2025-32487

A security flaw has been discovered in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. This vulnerability affects unknown code of the file uploadWxFile.do. The manipulation of the argument File results in unrestricted upload. The attack may be performed from remote. The exploit...

7.5CVSS6.2AI score0.00514EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/10/06 3:32 a.m.3 views

CVE-2025-11318 Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 uploadWxFile.do unrestricted upload

A security flaw has been discovered in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. This vulnerability affects unknown code of the file uploadWxFile.do. The manipulation of the argument File results in unrestricted upload. The attack may be performed from remote. The exploit...

7.5CVSS7.2AI score0.00514EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/10/06 3:32 a.m.10 views

CVE-2025-11318 Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 uploadWxFile.do unrestricted upload

A security flaw has been discovered in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. This vulnerability affects unknown code of the file uploadWxFile.do. The manipulation of the argument File results in unrestricted upload. The attack may be performed from remote. The exploit...

7.5CVSS0.00514EPSS
Exploits1References4
NVD
NVD
added 2025/10/06 3:15 a.m.6 views

CVE-2025-11316

A vulnerability was determined in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. Affected by this issue is the function findCategoryPage of the file findCategoryPage.do. Executing manipulation of the argument tenantId can lead to sql injection. The attack can be executed...

9.8CVSS0.00462EPSS
Exploits1References4
NVD
NVD
added 2025/10/06 3:15 a.m.4 views

CVE-2025-11317

A vulnerability was identified in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. This affects the function findRolePage of the file findSingConfigPage.do. The manipulation of the argument sort leads to sql injection. The attack is possible to be carried out remotely. The explo...

9.8CVSS0.00462EPSS
Exploits1References4
Rows per page
Query Builder