Lucene search
+L

1399 matches found

NVD
NVD
added 2026/04/06 7:16 p.m.13 views

CVE-2025-48651

In importWrappedKey of KMKeymasterApplet.java, there is a possible way access keys that should be restricted due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS0.00096EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/16 6:27 a.m.6 views

CVE-2025-71220

In the Linux kernel, the following vulnerability has been resolved: smb/server: call ksmbdsessionrpcclose on error path in createsmb2pipe When ksmbdiovpinrsp fails, we should call ksmbdsessionrpcclose...

7.8CVSS4.9AI score0.0013EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/02/05 12:30 a.m.6 views

CVE-2026-23080

In the Linux kernel, the following vulnerability has been resolved: can: mcbausb: mcbausbreadbulkcallback: fix URB memory leak Fix similar memory leak as in commit 7352e1d5932a "can: gsusb: gsusbreceivebulkcallback: fix URB memory leak". In mcbausbprobe - mcbausbstart, the URBs for USB-in transfe...

5.5CVSS5.1AI score0.00123EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/14 7:49 p.m.2 views

CVE-2025-71113

A flaw was found in the Linux kernel's crypto AFALG subsystem. Memory allocated via sockkmalloc for crypto user API contexts is not zero-initialized, leaving fields with garbage values. Specifically, the 'inflight' variable can contain random data, causing afalgallocareq to spuriously return -EBU...

3.3CVSS5.3AI score0.00123EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/09/16 3:19 p.m.6 views

CVE-2025-39806

In the Linux kernel, the following vulnerability has been resolved: HID: multitouch: fix slab out-of-bounds access in mtreportfixup A malicious HID device can trigger a slab out-of-bounds during mtreportfixup by passing in report descriptor smaller than 607 bytes. mtreportfixup attempts to patch...

7CVSS5.7AI score0.0015EPSS
Exploits0References4
CNVD
CNVD
added 2025/08/20 12:0 a.m.3 views

Hostel Management System hostel_manage.exe file improper authentication vulnerability

Hostel Management System is a hostel management system. Hostel Management System suffers from an improper authentication vulnerability that originates from a misbehavior of the file hostelmanage.exe that results in improper authentication, no details of the vulnerability are available at this tim...

7.8CVSS7.1AI score0.0026EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/08/12 12:0 a.m.5 views

Intel Converged Security and Management Engine 安全漏洞

The Intel Converged Security and Management Engine is Intel's microcontroller embedded in the chipset to provide system management, security and low-power features. A competitive condition vulnerability exists in Intel Converged Security and Management Engine, and no detailed vulnerability detail...

7.2CVSS6.8AI score0.00096EPSS
Exploits0References3
CNVD
CNVD
added 2025/07/25 12:0 a.m.7 views

WeGIA Cross-Site Scripting Vulnerability (CNVD-2025-17254)

WeGIA is a web manager for welfare organizations. WeGIA suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the precadastroatendido.php endpoint, for which no detailed vulnerability details are currently available...

6.5CVSS6.3AI score0.0024EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/07/17 11:34 a.m.8 views

CVE-2025-50089

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 9.0.0-9.1.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks ...

4.9CVSS5.9AI score0.00592EPSS
Exploits0References4
CNVD
CNVD
added 2025/07/11 12:0 a.m.3 views

Unspecified Vulnerability in Automated Voting System

Automated Voting System is an automated voting system. Automated Voting System suffers from an unspecified vulnerability that stems from susceptibility to direct request attacks. No details of the vulnerability are available at this time...

9.1CVSS6.9AI score0.00573EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/06/16 12:0 a.m.5 views

Tenable Agent 安全漏洞

Tenable Agent is a vulnerability scanning program from Tenable USA. Tenable Agent suffers from a code execution vulnerability that originates from a non-administrative user being able to execute code with SYSTEM privileges. No details of the vulnerability are provided at this time...

7.8CVSS7.7AI score0.0019EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/06 12:0 a.m.4 views

QNAP QHora 授权问题漏洞

The QNAP QHora is a router from the Taiwan, China-based company Qualicom Technology QNAP. QNAP QHora has an authorization issue vulnerability that stems from improper authentication, and no detailed vulnerability details are available at this time...

7.8CVSS6.9AI score0.00229EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/28 11:53 a.m.7 views

CVE-2025-5268

No description is available for this CVE...

6.1CVSS6.8AI score0.00412EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/05/12 12:0 a.m.6 views

Tenda FH451 安全漏洞

The Tenda FH451 is a router from the Chinese company Tenda. The Tenda FH451 suffers from a code execution vulnerability that stems from the formSafeEmailFilter function failing to properly filter special elements of the constructed snippet. No details of the vulnerability are available at this ti...

6.5CVSS7.7AI score0.07104EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/05/06 12:0 a.m.5 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from the Chinese company Huawei. Huawei HarmonyOS suffers from a process-resident vulnerability. No details of the vulnerability are available at this time...

5.5CVSS6.7AI score0.00093EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/04/22 12:0 a.m.7 views

Moodle 安全漏洞

Moodle is a free e-learning software platform, also known as a course management system, learning management system or virtual learning environment. Moodle suffers from a security vulnerability that stems from the need for additional checks to ensure that users only have access to authorized grou...

4.3CVSS6.8AI score0.00284EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/14 12:0 a.m.4 views

WAVLINK AC3000 访问控制错误漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. The WAVLINK AC3000 is vulnerable to an access control error vulnerability that stems from a firmware update. No details of the vulnerability are available at this time...

9CVSS6.8AI score0.01046EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.3 views

PT-2025-43692

Name of the Vulnerable Software and Affected Versions gi-docgen affected versions not specified Description The description does not provide details about the nature of the issue, affected devices, or real-world incidents. Recommendations At the moment, there is no information about a newer versi...

6.1CVSS5.9AI score0.00337EPSS
Exploits0References26
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.5 views

PT-2025-2338 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The issue is related to a rejected CVE record due to non-compliance with CNA rules, as it has not been used. No further details are provided abo...

6.9AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.6 views

PT-2025-2343 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The issue is related to a rejected CVE record due to non-compliance with CNA rules, as it has not been used. No further details are provided abo...

6.9AI score
Exploits0References2
Rows per page
Query Builder