Lucene search
K

23343 matches found

Tenable Product Security Advisories
Tenable Product Security Advisories
added 2025/04/30 4:26 a.m.14 views

[R1] Tenable Identity Exposure Version 3.77.11 Fixes Multiple Vulnerabilities

R1 Tenable Identity Exposure Version 3.77.11 Fixes Multiple Vulnerabilities Arnie Cabral Wed, 04/30/2025 - 00:26 Tenable Identity Exposure leverages third-party software to help provide underlying functionality. Several of the third-party components Erlang OTP, OpenSSL were found to contain...

7.6AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/29 1:37 p.m.15 views

Security Bulletin: DataStage on Cloud Pak for Data is vulnerable to denial of service due to OpenSSL (CVE-2022-0778)

Summary OpenSSL is used by DataStage on Cloud Pak for Data as part of secure network communication. Vulnerability Details CVEID:CVE-2022-0778 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a flaw in the BNmodsqrt function when parsing certificates. By using a specially-craft...

7.5CVSS9.4AI score0.70561EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/29 2:18 a.m.46 views

Security Bulletin: Multiple vulnerabilities in multiple dependencies affect IBM MessageGateway/ MessageSight

Summary There are multiple vulnerabilities in Liberty, IBM Runtime Environment Java Version 8.0, Dojo and OpenSSL used by IBM MessageGateway/ MessageSight Vulnerability Details CVEID:CVE-2022-21365 DESCRIPTION: An unspecified vulnerability in Java SE related to the ImageIO component could allow a...

6.5CVSS9.6AI score0.08346EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/28 10:33 a.m.24 views

Security Bulletin: Security vulnerabilities affect multiple packages shipped with IBM CICS TX Advanced.

Summary IBM CICS TX Advanced is impacted by security vulnerabilities found in packages GLib2.0, libxml2, glibc , krb5 Kerberos, libtasn1-6, Expat, OpenSSL, GnuTLS and curl. These are shipped as part of the product. Vulnerability Details CVEID:CVE-2024-12133 DESCRIPTION: A flaw in libtasn1 causes...

9.8CVSS9.3AI score0.14859EPSS
Exploits5Affected Software1
RedhatCVE
RedhatCVE
added 2025/04/26 5:49 a.m.6 views

CVE-2025-23253

NVIDIA NvContainer service for Windows contains a vulnerability in its usage of OpenSSL, where an attacker could exploit a hard-coded constant issue by copying a malicious DLL in a hard-coded path. A successful exploit of this vulnerability might lead to code execution, denial of service,...

2.5CVSS7.3AI score0.00137EPSS
Exploits0References1
Snyk
Snyk
added 2025/04/26 12:0 a.m.2 views

Return of Wrong Status Code

Overview Affected versions of this package are vulnerable to Return of Wrong Status Code from the chacha20poly1305setkey function, when returning a ChaCha20 initialization error from the OpenSSL backend. An attacker can potentially impact confidentiality, integrity, and availability by exploiting...

8.1CVSS7.1AI score0.0144EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/25 8:49 p.m.5 views

CVE-2025-2769

Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Bdrive NetDrive. An attacker must first obtain the ability to execute low-privileged code on the target system i...

7.8CVSS7.2AI score0.00182EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/04/25 8:45 p.m.6 views

CVE-2025-2768

Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Bdrive NetDrive. An attacker must first obtain the ability to execute low-privileged code on the target system i...

7.8CVSS7.2AI score0.00182EPSS
Exploits0References3
NVD
NVD
added 2025/04/23 5:16 p.m.6 views

CVE-2025-2768

Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Bdrive NetDrive. An attacker must first obtain the ability to execute low-privileged code on the target system i...

7.8CVSS0.00182EPSS
Exploits0References1
NVD
NVD
added 2025/04/23 5:16 p.m.7 views

CVE-2025-2769

Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Bdrive NetDrive. An attacker must first obtain the ability to execute low-privileged code on the target system i...

7.8CVSS0.00182EPSS
Exploits0References1
OSV
OSV
added 2025/04/23 5:16 p.m.3 views

CVE-2025-2768

Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Bdrive NetDrive. An attacker must first obtain the ability to execute low-privileged code on the target system i...

7.8CVSS7.4AI score0.00182EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/23 4:51 p.m.11 views

CVE-2025-2769 Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Bdrive NetDrive. An attacker must first obtain the ability to execute low-privileged code on the target system i...

7.8CVSS0.00182EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/23 4:51 p.m.4 views

CVE-2025-2769 Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Bdrive NetDrive. An attacker must first obtain the ability to execute low-privileged code on the target system i...

7.8CVSS7.2AI score0.00182EPSS
Exploits0References1
CVE
CVE
added 2025/04/23 4:51 p.m.46 views

CVE-2025-2769

CVE-2025-2769 affects Bdrive NetDrive. The issue is an Uncontrolled Search Path Element leading to Local Privilege Escalation. The root cause is the OpenSSL configuration being loaded from an unsecured location, enabling an attacker who can run low-privileged code to escalate to SYSTEM and execut...

7.8CVSS7.2AI score0.00182EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/04/23 4:51 p.m.49 views

CVE-2025-2768

CVE-2025-2768 affects Bdrive NetDrive. Root cause: OpenSSL configuration is loaded from an unsecured location, creating an uncontrolled search path element that enables local privilege escalation. Exploitation requires the attacker to execute low-privilege code on the target system; successful ex...

7.8CVSS7.2AI score0.00182EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/04/23 4:51 p.m.12 views

CVE-2025-2768 Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Bdrive NetDrive. An attacker must first obtain the ability to execute low-privileged code on the target system i...

7.8CVSS0.00182EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/23 4:51 p.m.3 views

CVE-2025-2768 Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Bdrive NetDrive. An attacker must first obtain the ability to execute low-privileged code on the target system i...

7.8CVSS7.2AI score0.00182EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/23 12:0 a.m.2 views

Bdrive NetDrive 代码问题漏洞

Bdrive NetDrive is a network drive from Bdrive that connects to various cloud services or remote file storage. A code issue vulnerability exists in Bdrive NetDrive that stems from loading an OpenSSL configuration file from a non-secure location, which could result in local elevation of privilege...

7.8CVSS7.5AI score0.00182EPSS
Exploits0References1
NVD
NVD
added 2025/04/22 7:15 p.m.15 views

CVE-2025-23253

NVIDIA NvContainer service for Windows contains a vulnerability in its usage of OpenSSL, where an attacker could exploit a hard-coded constant issue by copying a malicious DLL in a hard-coded path. A successful exploit of this vulnerability might lead to code execution, denial of service,...

2.5CVSS0.00137EPSS
Exploits0References1
CVE
CVE
added 2025/04/22 6:45 p.m.55 views

CVE-2025-23253

CVE-2025-23253 affects NVIDIA NvContainer service for Windows, where a hard-coded path in OpenSSL usage could be exploited by copying a malicious DLL to a fixed path, potentially enabling code execution, DoS, privilege escalation, information disclosure, or data tampering. Affected product: NVIDI...

2.5CVSS7.3AI score0.00137EPSS
Exploits0References1
Rows per page
Query Builder