Lucene search
K

198 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-4292

Malware in sbrugna...

7.2CVSS6.4AI score0.00489EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-2893

Malware in sbrugna...

7.5CVSS7.5AI score0.01053EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.11 views

EUVD-2024-40264

Malicious code in bioql PyPI...

8.1CVSS6.6AI score0.00519EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-40265

Malicious code in bioql PyPI...

8.1CVSS6.6AI score0.00519EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/09/19 8:37 p.m.12 views

CVE-2025-37122

A vulnerability in the web-based management interface of network access control services could allow an unauthenticated remote attacker to conduct a Reflected Cross-Site Scripting XSS attack. Successful exploitation could allow an attacker to execute arbitrary JavaScript code in a victim's browse...

6.1CVSS6.4AI score0.00235EPSS
Exploits0References1
nvd
nvd
added 2025/09/17 8:15 p.m.6 views

CVE-2025-37122

A vulnerability in the web-based management interface of network access control services could allow an unauthenticated remote attacker to conduct a Reflected Cross-Site Scripting XSS attack. Successful exploitation could allow an attacker to execute arbitrary JavaScript code in a victim's browse...

6.1CVSS0.00235EPSS
Exploits0References1
cve
cve
added 2025/09/17 7:31 p.m.20 views

CVE-2025-37122

CVE-2025-37122 is an unauthenticated reflected XSS vulnerability in the web-based management interface of network access control services (e.g., HPE Aruba ClearPass). The flaw allows an attacker to craft a link that, when visited by a victim, executes arbitrary JavaScript in the context of the af...

6.1CVSS6.1AI score0.00235EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/09/17 7:31 p.m.3 views

CVE-2025-37122 Unauthenticated Reflected Cross-Site Scripting

A vulnerability in the web-based management interface of network access control services could allow an unauthenticated remote attacker to conduct a Reflected Cross-Site Scripting XSS attack. Successful exploitation could allow an attacker to execute arbitrary JavaScript code in a victim's browse...

6.1CVSS6.1AI score0.00235EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/08/06 12:0 a.m.4 views

Cisco ISE 安全漏洞

Cisco ISE is a NAC solution from Cisco, Inc. It is used to manage access to network resources by endpoints, users, and devices in a zero-trust architecture. A security vulnerability exists in Cisco ISE that stems from unverified administrator privileges on the server side, which could lead to...

4.3CVSS6.5AI score0.00396EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2025/05/12 12:0 a.m.8 views

The vulnerability of Ivanti Connect Secure and Ivanti Policy Secure, which control network access, stems from the use of a strictly encrypted cryptographic key. This allows attackers to gain unauthorized access to protected information.

The vulnerability of the Ivanti Connect Secure and Ivanti Policy Secure network access control tools lies in the use of a strictly encrypted cryptographic key. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

6CVSS7.7AI score0.00311EPSS
Exploits0References3Affected Software2
bdu_fstec
bdu_fstec
added 2025/05/06 12:0 a.m.7 views

The vulnerability of Ivanti Connect Secure and Ivanti Policy Secure, which are network access control tools, stems from buffer overflow in the stack. This allows a malicious user to trigger a service failure.

The vulnerability of Ivanti Connect Secure and Ivanti Policy Secure network access control tools is related to buffer overflow in the stack. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

6.8CVSS7.8AI score0.01051EPSS
Exploits0References2Affected Software2
amazon
amazon
added 2025/04/29 12:0 a.m.6 views

Important: valkey

Issue Overview: Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is killed. By default, the Redis configuration does not...

7.5CVSS8AI score0.00824EPSS
Exploits0
osv
osv
added 2025/04/25 7:27 a.m.14 views

BIT-VALKEY-2025-21605 Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client

Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is killed. By default, the Redis configuration does not limit the outpu...

7.5CVSS7.9AI score0.00824EPSS
Exploits0References7
osv
osv
added 2025/04/25 7:14 a.m.11 views

BIT-KEYDB-2025-21605 Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client

Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is killed. By default, the Redis configuration does not limit the outpu...

7.5CVSS7.9AI score0.00824EPSS
Exploits0References7
cvelist
cvelist
added 2025/04/23 3:38 p.m.19 views

CVE-2025-21605 Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client

Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is killed. By default, the Redis configuration does not limit the outpu...

7.5CVSS0.00824EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/04/23 3:38 p.m.16 views

CVE-2025-21605 Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client

Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is killed. By default, the Redis configuration does not limit the outpu...

7.5CVSS7.8AI score0.00824EPSS
Exploits0References2
cve
cve
added 2025/04/23 3:38 p.m.238 views

CVE-2025-21605

CVE-2025-21605 affects Redis where, in versions starting at 2.6 and before 7.4.3, an unauthenticated client can cause unlimited growth of the output buffer, exhausting memory and potentially crashing the server. The issue occurs because Redis’ default client-output-buffer-limit does not cap norma...

7.5CVSS7.9AI score0.00824EPSS
Exploits0References6Affected Software1
alpinelinux
alpinelinux
added 2025/04/23 3:38 p.m.3 views

CVE-2025-21605

Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is killed. By default, the Redis configuration does not limit the outpu...

7.5CVSS7.6AI score0.00824EPSS
Exploits0
cnvd
cnvd
added 2025/03/27 12:0 a.m.3 views

Fortinet FortiNAC-F Trust Management Issues Vulnerability

Fortinet FortiNAC-F is a set of network access control solutions from the American Fiat Fortinet. The product is mainly used for network access control and IoT security. Fortinet FortiNAC-F suffers from a trust management issue vulnerability that stems from improper certificate validation, which...

4.8CVSS6.4AI score0.00159EPSS
Exploits0References1
thn
thn
added 2025/03/14 11:0 a.m.17 views

Why Most Microsegmentation Projects Fail—And How Andelyn Biosciences Got It Right

Most microsegmentation projects fail before they even get off the ground—too complex, too slow, too disruptive. But Andelyn Biosciences proved it doesn't have to be that way. Microsegmentation: The Missing Piece in Zero Trust Security Security teams today are under constant pressure to defend...

7AI score
Exploits0
Rows per page
Query Builder