Lucene search
K

143 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-18953

Malicious code in bioql PyPI...

10CVSS8.2AI score0.14059EPSS
Exploits1References5
OSV
OSV
added 2025/09/17 3:15 p.m.9 views

DEBIAN-CVE-2023-53343

In the Linux kernel, the following vulnerability has been resolved: icmp6: Fix null-ptr-deref of ip6nullentry-rt6iidev in icmp6dev. With some IPv6 Ext Hdr RPL, SRv6, etc., we can send a packet that has the link-local address as src and dst IP and will be forwarded to an external IP in the IPv6 Ex...

5.5CVSS5.5AI score0.00192EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/27 12:0 a.m.5 views

PT-2025-34860

Name of the Vulnerable Software and Affected Versions: Linksys E1700 version 1.0.0.4.003 Description: A stack-based buffer overflow exists in the setWan function of the /goform/setWan file. Manipulation of the DeviceName/lanIp argument causes the overflow, allowing for potential remote code...

9CVSS9.3AI score0.01277EPSS
Exploits1References14
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-10026

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A weak hashing algorithm and small sizes of seeds/secrets in Google's gVisor allowed for a remote attacker to calculate a local IP address and a per-boot...

6.3CVSS5.9AI score0.00218EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2025-21938

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mptcp: fix 'scheduling while atomic' in mptcppmnlappendnewlocaladdr If multiple connection...

4.7CVSS6.1AI score0.00135EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/02 8:23 p.m.14 views

CVE-2025-43018

Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book...

6.9CVSS5.7AI score0.00274EPSS
Exploits0References1
OSV
OSV
added 2025/07/30 3:15 p.m.5 views

CVE-2025-43018

Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book...

5.3CVSS5.7AI score0.00274EPSS
Exploits0References1
NVD
NVD
added 2025/07/30 3:15 p.m.48 views

CVE-2025-43018

Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book...

6.9CVSS0.00274EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/30 2:31 p.m.28 views

CVE-2025-43018 Certain HP LaserJet Pro Printers – Potential Information Disclosure

Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book...

6.9CVSS0.00274EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/30 2:31 p.m.4 views

CVE-2025-43018 Certain HP LaserJet Pro Printers – Potential Information Disclosure

Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book...

6.9CVSS6.5AI score0.00274EPSS
Exploits0References1
CVE
CVE
added 2025/07/30 2:31 p.m.27 views

CVE-2025-43018

CVE-2025-43018 affects HP LaserJet Pro printers and related HI-HP devices exposing information via the device’s local address book when queried by a non-authenticated user. The vulnerability is categorized as information disclosure with a CVSSv4 base score of 6.9 (NETWORK, LOW attack complexity, ...

6.9CVSS6AI score0.00274EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/07/30 12:0 a.m.39 views

HP LaserJet Pro 安全漏洞

HP LaserJet Pro is a line of laser printers and MFPs from Hewlett-Packard HP in the United States. A security vulnerability exists in the HP LaserJet Pro that stems from an information disclosure issue that could cause a non-authenticated user to query the device's local address book...

6.9CVSS5.7AI score0.00274EPSS
Exploits0References2
Hewlett-Packard
Hewlett-Packard
added 2025/07/30 12:0 a.m.14 views

Certain HP LaserJet Pro Printers – Potential Information Disclosure

Certain HP LaserJet Pro printers may be vulnerable to information disclosure when a non-authenticated user queries a device’s local address book. Update your printer firmware...

6.9CVSS5.7AI score0.00274EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/07/16 3:37 p.m.8 views

cloud-init: Cloud init permissions flaw

An access permissions flaw was found in cloud-init. When a non-x86 platform is detected, cloud-init grants root access to a hardcoded URL with a local IP address, which creates a security exposure...

8.8CVSS5.7AI score0.00205EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/16 2:11 p.m.8 views

cloud-init: Cloud init permissions flaw

An access permissions flaw was found in cloud-init. When a non-x86 platform is detected, cloud-init grants root access to a hardcoded URL with a local IP address, which creates a security exposure...

8.8CVSS5.7AI score0.00205EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/14 11:20 a.m.5 views

cloud-init: Cloud init permissions flaw

An access permissions flaw was found in cloud-init. When a non-x86 platform is detected, cloud-init grants root access to a hardcoded URL with a local IP address, which creates a security exposure...

8.8CVSS5.7AI score0.00205EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/14 11:16 a.m.6 views

cloud-init: Cloud init permissions flaw

An access permissions flaw was found in cloud-init. When a non-x86 platform is detected, cloud-init grants root access to a hardcoded URL with a local IP address, which creates a security exposure...

8.8CVSS5.7AI score0.00205EPSS
Exploits0References6
Microsoft CVE
Microsoft CVE
added 2025/07/11 7:0 a.m.5 views

When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address. To prevent this, cloud-init default configurations disable platform enumeration.

...

8.8CVSS7AI score0.00205EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/06/27 12:5 a.m.5 views

SUSE CVE-2024-6174

When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address. To prevent this, cloud-init default configurations disable platform enumeration...

8.8CVSS6.4AI score0.00205EPSS
Exploits0References10
OSV
OSV
added 2025/06/26 10:15 a.m.3 views

DEBIAN-CVE-2024-6174

When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address. To prevent this, cloud-init default configurations disable platform enumeration...

8.8CVSS5.2AI score0.00205EPSS
Exploits0References1
Rows per page
Query Builder