Lucene search
K

36114 matches found

CNNVD
CNNVD
added 2024/05/03 12:0 a.m.3 views

Inductive Automation Ignition 安全漏洞

Inductive Automation Ignition is an integrated software platform for SCADA systems from Inductive Automation, USA. The platform supports SCADA Data Acquisition and Monitoring Systems, HMI Human Machine Interface and more. A security vulnerability exists in Inductive Automation Ignition due to a...

8.8CVSS9AI score0.01145EPSS
Exploits0References3
NVD
NVD
added 2024/05/02 2:15 p.m.17 views

CVE-2024-34061

changedetection.io is a free open source web page change detection, website watcher, restock monitor and notification service. In affected versions Input in parameter notificationurls is not processed resulting in javascript execution in the application. A reflected XSS vulnerability happens when...

4.3CVSS4.5AI score0.01281EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/05/02 8:52 a.m.3 views

Malicious code in epc-notification-setting-web (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 7e2f6eb6b2d571a457c452301694f5e1f6da8ff1254c78f6837eaef6af78134e The OpenSSF Package Analysis project identified 'epc-notification-setting-web' @ 66.6.9 npm as malicious. It is considered malicious because: -...

7.1AI score
Exploits0
OSV
OSV
added 2024/05/02 5:56 a.m.8 views

BELL-CVE-2024-27030

Bulletin has no description...

6.3CVSS7.2AI score0.00203EPSS
Exploits0References1
OSV
OSV
added 2024/05/02 5:56 a.m.2 views

BELL-CVE-2024-26957

Bulletin has no description...

7.8CVSS7.1AI score0.00239EPSS
Exploits0References1
OSV
OSV
added 2024/05/02 5:56 a.m.1 views

BELL-CVE-2024-26966

Bulletin has no description...

5.5CVSS7.1AI score0.00251EPSS
Exploits0References1
OSV
OSV
added 2024/05/02 5:56 a.m.2 views

BELL-CVE-2023-52653

Bulletin has no description...

5.5CVSS7.2AI score0.00275EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2024/05/02 2:39 a.m.9 views

yousee.studio Cross Site Scripting vulnerability OBB-3925420

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/05/02 1:49 a.m.15 views

wglaw.com Cross Site Scripting vulnerability OBB-3925370

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.19 views

Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC Buffer Access with Incorrect Length Value (CVE-2023-5396)

Server receiving a malformed message creates connection for a hostname that may cause a stack overflow resulting in possible remote code execution. See Honeywell Security Notification for recommendations on upgrading and versioning. This plugin only works with Tenable.ot. Please visit...

8.4AI score0.00711EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.19 views

Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC Improper Handling of Length Parameter Inconsistency (CVE-2023-5393)

Server receiving a malformed message that causes a disconnect to a hostname may causing a stack overflow resulting in possible remote code execution. Honeywell recommends updating to the most recent version of the product. See Honeywell Security Notification for recommendations on upgrading and...

8.3AI score0.00711EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.24 views

Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC Stack-based Buffer Overflow (CVE-2023-5395)

Server receiving a malformed message that uses the hostname in an internal table may cause a stack overflow resulting in possible remote code execution. See Honeywell Security Notification for recommendations on upgrading and versioning. This plugin only works with Tenable.ot. Please visit...

8.4AI score0.00746EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/05/02 12:0 a.m.36 views

Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC Stack-based Buffer Overflow (CVE-2023-5401)

Server receiving a malformed message based on a using the specified key values can cause a stack overflow vulnerability which could lead to an attacker performing remote code execution or causing a failure. See Honeywell Security Notification for recommendations on upgrading and versioning. This...

8.3AI score0.00746EPSS
Exploits0References3
OSV
OSV
added 2024/05/01 1:15 p.m.3 views

UBUNTU-CVE-2024-27041

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix NULL checks for adev-dm.dc in amdgpudmfini Since 'adev-dm.dc' in amdgpudmfini might turn out to be NULL before the call to dcenabledmubnotifications, check beforehand to ensure there will not be a possible...

5.5CVSS5.8AI score0.00272EPSS
Exploits0References12
Openbugbounty
Openbugbounty
added 2024/05/01 11:22 a.m.12 views

extern05.pa.op.dlr.de Cross Site Scripting vulnerability OBB-3925328

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/05/01 11:14 a.m.7 views

experience.visitakron-summit.org Cross Site Scripting vulnerability OBB-3925319

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/05/01 6:35 a.m.10 views

tuttonapoli.net Cross Site Scripting vulnerability OBB-3925241

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/05/01 6:33 a.m.12 views

tyreplex.com Cross Site Scripting vulnerability OBB-3925239

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
NVD
NVD
added 2024/05/01 6:15 a.m.19 views

CVE-2024-26974

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - resolve race condition during AER recovery During the PCI AER system's error recovery process, the kernel driver may encounter a race condition with freeing the resetdata structure's memory. If the device restart wi...

7CVSS7.5AI score0.00192EPSS
Exploits0References12
CVE
CVE
added 2024/05/01 5:20 a.m.3982 views

CVE-2024-26974

CVE-2024-26974 affects the Linux kernel crypto/qat driver. A race during PCI AER error recovery could cause a use-after-free of the reset_data container used for completion notification after a device restart, triggering a KFENCE use-after-free notice. The fix alters memory lifetime: the containe...

7CVSS6.3AI score0.00192EPSS
Exploits0References12Affected Software1
Rows per page
Query Builder