Lucene search
K

230 matches found

OSV
OSV
added 2025/09/12 11:46 a.m.4 views

BIT-NIFI-2020-13940

In Apache NiFi 1.0.0 to 1.11.4, the notification service manager and various policy authorizer and user group provider objects allowed trusted administrators to inadvertently configure a potentially malicious XML file. The XML file has the ability to make external calls to services via XXE...

5.5CVSS6.9AI score0.01911EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2025/09/05 7:54 a.m.326 views

NestJs-Microservices-POC

NestJS Microservices Proof of Concept A comprehensive demonst...

7.3AI score
Exploits0
CNVD
CNVD
added 2025/08/18 12:0 a.m.5 views

Huawei HarmonyOS distributed notification service memory misreference vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A memory misreference vulnerability exists in the Huawei HarmonyOS distributed notification service, which can be exploited by an attacker to cause an...

7.5CVSS6.8AI score0.00136EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/08/07 12:0 a.m.5 views

The vulnerability of the Advanced Notification Service (ANS) management service in the HarmonyOS operating system allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Advanced Notification Service ANS management service in the HarmonyOS operating system is related to the use of memory after deallocation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protecte...

5.9CVSS5.5AI score0.00136EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2025/08/06 3:15 a.m.7 views

CVE-2025-54635

Vulnerability of returning released pointers in the distributed notification service. Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS0.00136EPSS
Exploits0References1
OSV
OSV
added 2025/08/06 3:15 a.m.4 views

CVE-2025-54635

Vulnerability of returning released pointers in the distributed notification service. Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS5.8AI score0.00136EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/06 2:30 a.m.5 views

CVE-2025-54635

Vulnerability of returning released pointers in the distributed notification service. Impact: Successful exploitation of this vulnerability may affect availability...

5.9CVSS6.5AI score0.00136EPSS
Exploits0References1
CVE
CVE
added 2025/08/06 2:30 a.m.29 views

CVE-2025-54635

CVE-2025-54635 affects Huawei HarmonyOS, specifically a memory misreference in the HarmonyOS distributed notification service. The cited impact is availability disruption if exploited. Public documents provide high-level descriptions and do not reveal concrete exploit details, affected versions, ...

7.5CVSS6.5AI score0.00136EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/08/06 12:0 a.m.4 views

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A memory misreference vulnerability exists in the Huawei HarmonyOS distributed notification service, which can be exploited by an attacker to cause an...

7.5CVSS6.7AI score0.00136EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/07/23 12:0 a.m.21 views

The vulnerability of the Alerts & IRM platform’s notification service for monitoring and surveillance allows a perpetrator to disclose protected information.

The vulnerability of the Alerts & IRM platform’s notification service for monitoring and surveillance in Grafana relates to insufficient protection of operational data when connected to the DingDing contact point. Exploiting this vulnerability can allow a malicious actor to disclose protected...

4.3CVSS6.9AI score0.0089EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/16 12:0 a.m.6 views

The vulnerability of the Windows Notification Service (WNS), a notification service for Windows operating systems, allows a perpetrator to escalate their privileges.

The vulnerability of the Windows Notification Service WNS on Windows operating systems relates to the possibility of memory exploitation after deallocation. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.8CVSS5.5AI score0.00273EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/07/14 12:0 a.m.7 views

The vulnerability of the Windows Notification Service (WNS) on Windows operating systems allows a perpetrator to escalate their privileges.

The vulnerability of the Windows Notification Service WNS on Windows operating systems relates to the possibility of exploiting memory after it is freed. Exploiting this vulnerability could allow an attacker to increase their privileges...

7.8CVSS5.5AI score0.00328EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:28 a.m.8 views

CVE-2024-20806

Improper access control in Notification service prior to SMR Jan-2024 Release 1 allows local attacker to access notification data...

6.2CVSS6.6AI score0.00147EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:21 p.m.7 views

CVE-2021-41280

Sharetribe Go is a source available marketplace software. In affected versions operating system command injection is possible on installations of Sharetribe Go, that do not have a secret AWS Simple Notification Service SNS notification token configured via the snsnotificationtoken configuration...

9.8CVSS7.3AI score0.034EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 7:1 p.m.7 views

CVE-2021-1020

In snoozeNotification of NotificationListenerService.java, there is a possible way to disable notification for an arbitrary user due to improper input validation. This could lead to local escalation of privilege with User execution privileges needed. User interaction is needed for...

7.3CVSS7.2AI score0.00121EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:41 p.m.6 views

CVE-2020-1387

An elevation of privilege vulnerability exists in the way the Windows Push Notification Service handles objects in memory, aka 'Windows Push Notification Service Elevation of Privilege Vulnerability'...

7.8CVSS7AI score0.00762EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 5:39 p.m.9 views

CVE-2020-1137

An elevation of privilege vulnerability exists in the way the Windows Push Notification Service handles objects in memory, aka 'Windows Push Notification Service Elevation of Privilege Vulnerability'...

7.8CVSS7AI score0.00821EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:4 p.m.6 views

CVE-2020-1017

An elevation of privilege vulnerability exists in the way the Windows Push Notification Service handles objects in memory, aka 'Windows Push Notification Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0940, CVE-2020-1001, CVE-2020-1006...

7.8CVSS6.6AI score0.00856EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:4 p.m.5 views

CVE-2020-1016

An information disclosure vulnerability exists when the Windows Push Notification Service improperly handles objects in memory, aka 'Windows Push Notification Service Information Disclosure Vulnerability'...

5.5CVSS6.2AI score0.01277EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:3 p.m.8 views

CVE-2020-1001

An elevation of privilege vulnerability exists in the way the Windows Push Notification Service handles objects in memory, aka 'Windows Push Notification Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0940, CVE-2020-1006, CVE-2020-1017...

7.8CVSS6.6AI score0.00856EPSS
Exploits0References1
Rows per page
Query Builder