Lucene search
K

8849 matches found

NVD
NVD
added 2025/09/16 11:15 p.m.6 views

CVE-2025-37123

A vulnerability in the command-line interface of HPE Aruba Networking EdgeConnect SD-WAN Gateways could allow an authenticated remote attacker to escalate privileges. Successful exploitation of this vulnerability may enable the attacker to execute arbitrary system commands with root privileges on...

8.8CVSS0.00426EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/16 10:32 p.m.12 views

CVE-2025-37125 Broken access control vulnerability in Firewall Configuration Leads to Unauthorized Access to Internal Network Resources

A broken access control vulnerability exists in HPE Aruba Networking EdgeConnect OS ECOS. Successful exploitation could allow an attacker to bypass firewall protections, potentially leading to unauthorized traffic being handled improperly...

7.5CVSS0.00333EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/16 10:29 p.m.8 views

CVE-2025-37124 Unauthenticated Access Vulnerability allows Transit Traffic Misrouting in SD-WAN Edge Interface

A vulnerability in the HPE Aruba Networking SD-WAN Gateways could allow an unauthenticated remote attacker to bypass firewall protections. Successful exploitation could allow an attacker to route potentially harmful traffic through the internal network, leading to unauthorized access or disruptio...

8.6CVSS0.00371EPSS
Exploits0References1
OSV
OSV
added 2025/09/16 1:15 p.m.2 views

UBUNTU-CVE-2025-10536

Information disclosure in the Networking: Cache component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

6.2CVSS6.4AI score0.00154EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2025/09/16 12:26 p.m.3 views

CVE-2025-10536

Information disclosure in the Networking: Cache component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

6.2CVSS6.5AI score0.00154EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/09/16 9:11 a.m.5 views

Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: Update to Java 8.0 Service Refresh 8 Fix Pack 50. Security issues fixed: Oracle July 15 2025 CPU bsc1247754. CVE-2025-30749: heap corruption allows unauthenticated attacker with network access to compromise and takeover Java applications th...

8.6CVSS7.3AI score0.01058EPSS
Exploits1References22
CNNVD
CNNVD
added 2025/09/16 12:0 a.m.4 views

HPE Aruba Networking SD-WAN Gateways 安全漏洞

HPE Aruba Networking SD-WAN Gateways is an edge gateway device from HPE America. A security vulnerability exists in HPE Aruba Networking SD-WAN Gateways that originates from an unauthenticated, remote attacker who can bypass firewall protection and potentially cause unauthorized access or service...

8.6CVSS6.8AI score0.00371EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/09/16 12:0 a.m.7 views

HPE Aruba Networking EdgeConnect SD-WAN Gateways 安全漏洞

HPE Aruba Networking EdgeConnect SD-WAN Gateways is an edge gateway appliance from HPE America. A security vulnerability exists in HPE Aruba Networking EdgeConnect SD-WAN Gateways, which stems from a flaw in the web API, which could allow an authenticated, remote attacker to terminate an arbitrar...

6.8CVSS6.8AI score0.00294EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/16 12:0 a.m.5 views

PT-2025-38094

Name of the Vulnerable Software and Affected Versions: HPE Aruba Networking SD-WAN Gateways affected versions not specified Description: A vulnerability in the HPE Aruba Networking SD-WAN Gateways could allow an unauthenticated remote attacker to bypass firewall protections. Successful exploitati...

8.6CVSS6.4AI score0.00371EPSS
Exploits0References6
FreeBSD
FreeBSD
added 2025/09/16 12:0 a.m.7 views

Firefox -- Information disclosure in the Networking: Cache component

https://bugzilla.mozilla.org/showbug.cgi?id=1981502 reports: Information disclosure in the Networking: Cache component...

6.2CVSS6.8AI score0.00154EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/16 12:0 a.m.3 views

Mozilla Firefox和Mozilla Thunderbird 安全漏洞

Mozilla Firefox is an open source web browser.Mozilla Thunderbird is a set of e-mail client software separate from the Mozilla Application Suite. The software supports IMAP, POP mail protocols and HTML mail format. An information disclosure vulnerability exists in several Mozilla products and is...

6.2CVSS5.8AI score0.00154EPSS
Exploits0References5
OSV
OSV
added 2025/09/15 6:54 p.m.7 views

CLSA-2025-1757962453 kernel: Fix of 32 CVEs

inet: fully convert sk-skrxdst to RCU rules CVE-2021-47103 - ALSA: usb-audio: Fix out of bounds reads when finding clock sources CVE-2024-53150 - posix-cpu-timers: fix race between handleposixcputimers and posixcputimerdel CVE-2025-38352 - can: peakusb: fix use after free bugs CVE-2021-47670 -...

7.8CVSS7.2AI score0.01345EPSS
Exploits9References1
CVE
CVE
added 2025/09/15 2:45 p.m.19 views

CVE-2022-50297

CVE-2022-50297 concerns the Linux kernel driver for ath9k USB wireless devices. The issue arises when a USB device claims to be ATH9K but does not expose the endpoints the driver expects; specifically, an interrupt endpoint is presented where a bulk endpoint is anticipated. This mismatch can caus...

5.5CVSS5.9AI score0.00149EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2025/09/15 11:36 a.m.4 views

SUSE-SU-2025:03223-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002317 fixes several issues. The following security issues were fixed: - CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. - CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. - CVE-2025-38001: netsched: hfsc: Address...

7.8CVSS6.6AI score0.00369EPSS
Exploits3References24
Packet Storm News
Packet Storm News
added 2025/09/15 12:0 a.m.5 views

Collaborative P4-SDN DDoS Detection and Mitigation with Early-Exit Neural Networks

Distributed Denial of Service DDoS attacks pose a persistent threat to network security, requiring timely and scalable mitigation strategies. In this paper, we propose a novel collaborative architecture that integrates a P4-programmable data plane with an SDN control plane to enable real-time DDo...

6.9AI score
Exploits0
Snyk
Snyk
added 2025/09/15 12:0 a.m.3 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the gtlsbionewfromiostream and gtlsbionewfromdatagrambased functions. An attacker can cause a denial of service by triggering an out-of-memory condition that leads to writing to an invalid memory location...

6.3CVSS6.7AI score0.00331EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/09/13 12:10 p.m.5 views

Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002347 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2025-38001: netsched: hfsc: Address...

8.5CVSS7.1AI score0.00369EPSS
Exploits3References26
SUSE Linux
SUSE Linux
added 2025/09/13 11:9 a.m.4 views

Security update for the Linux Kernel (Live Patch 8 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002338 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2025-38001: netsched: hfsc: Address...

8.5CVSS7.1AI score0.00369EPSS
Exploits3References34
OSV
OSV
added 2025/09/12 5:29 p.m.5 views

CLSA-2025-1757698145 kernel: Fix of 42 CVEs

x86/kvm: Disable kvmclock on all CPUs on shutdown CVE-2021-47110 - posix-cpu-timers: fix race between handleposixcputimers and posixcputimerdel CVE-2025-38352 - cifs: fix double free race when mount fails in cifsgetroot CVE-2022-48919 - aio: mark AIO pseudo-fs noexec CVE-2016-10044 - cifs:...

7.8CVSS7AI score0.01345EPSS
Exploits8References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/09/12 7:33 a.m.3 views

Security Bulletin: Multiple vulnerabilities disclosed in IBM Semeru Runtime affect IBM SPSS Collaboration and Deployment Services

Summary Multiple vulnerabilities disclosed in IBM Semeru Runtime affect IBM SPSS Collaboration and Deployment Services CVE-2025-50059, CVE-2025-50106, CVE-2025-30749, CVE-2025-30761, CVE-2025-30754. This has been addressed in the remediation section. Vulnerability Details CVEID:CVE-2025-50059...

8.6CVSS6.6AI score0.01058EPSS
Exploits1Affected Software1
Rows per page
Query Builder