Lucene search
K

25205 matches found

CVE
CVE
added 2025/11/13 10:1 p.m.16 views

CVE-2025-36096

CVE-2025-36096 concerns IBM AIX (versions 7.2/7.3) and IBM VIOS (3.1/4.1) where NIM private keys are stored insecurely in NIM environments, enabling unauthorized access via man-in-the-middle techniques. IBM’s Security Bulletin confirms this in conjunction with related CVEs (CVE-2025-36251, CVE-20...

9CVSS6.3AI score0.00264EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2025/11/13 10:1 p.m.4 views

CVE-2025-36096 AIX Insufficiently Protected Credentials

IBM AIX 7.2, and 7.3 and IBM VIOS 3.1, and 4.1 stores NIM private keys used in NIM environments in an insecure way which is susceptible to unauthorized access by an attacker using man in the middle techniques...

9CVSS6.3AI score0.00264EPSS
Exploits0References1
CVE
CVE
added 2025/11/13 10:1 p.m.21 views

CVE-2025-36251

CVE-2025-36251 : IBM AIX nimsh service SSL/TLS implementations allow a remote attacker to execute arbitrary commands due to improper process controls. Affected: AIX 7.2, AIX 7.3, and VIOS 3.1 and 4.1. This is part of a broader set of issues addressed in IBM’s security bulletin which lists related...

9.8CVSS9.1AI score0.00498EPSS
Exploits0References1Affected Software2
RedhatCVE
RedhatCVE
added 2025/11/13 8:3 p.m.6 views

CVE-2025-46427

Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution...

8.8CVSS6.7AI score0.01127EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/13 8:3 p.m.5 views

CVE-2025-46428

Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution...

8.8CVSS6.8AI score0.01062EPSS
Exploits0References1
ICS
ICS
added 2025/11/13 7:0 a.m.6 views

Siemens Spectrum Power 4

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to remotely execute code as application administrator or locally execute code as operating system administrator. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

8AI score
Exploits0References13
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.6 views

PT-2025-46835

Name of the Vulnerable Software and Affected Versions Zoom Workplace VDI Plugin versions 6.3.0 through 6.3.13 Zoom Workplace VDI Plugin versions 6.4.0 through 6.4.13 Zoom Workplace VDI Plugin versions 6.5.0 through 6.5.9 Description The installer for the Zoom Workplace VDI Plugin on macOS is...

6.6CVSS6AI score0.0011EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.5 views

PT-2025-46831

External control of file name or path in Zoom Workplace for macOS before version 6.5.10 may allow an authenticated user to conduct a disclosure of information via local access...

5CVSS6.1AI score0.00139EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.5 views

IBM AIX和IBM VIOS 安全漏洞

IBM AIX and IBM VIOS are both products of the International Business Machines IBM Corporation.IBM AIX is an open standards-based UNIX operating system developed for the IBM Power architecture.IBM VIOS is part of the PowerVm® Editions hardware feature set.IBM AIX is an open standards-based UNIX...

9CVSS6AI score0.00264EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2025/11/13 12:0 a.m.4 views

Apple macOS USD readAccessorData Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the USD library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the USD library. T...

7.8CVSS7.4AI score0.00882EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.3 views

Photon OS 4.0: Lasso PHSA-2025-4.0-0903

An update of the lasso package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0903. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.8CVSS8AI score0.00827EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.1 views

Photon OS 4.0: Linux PHSA-2025-4.0-0905

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0905. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.8CVSS7.5AI score0.00258EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.7 views

PT-2025-46923

Name of the Vulnerable Software and Affected Versions IBM AIX versions 7.2 and 7.3 IBM VIOS versions 3.1 and 4.1 Description The NIM server formerly known as NIM master service nimesis in IBM AIX and IBM VIOS may allow a remote attacker to execute arbitrary commands and traverse directories on th...

10CVSS7.1AI score0.00618EPSS
Exploits0References23
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.4 views

IBM AIX和IBM VIOS 安全漏洞

IBM AIX and IBM VIOS are both products of the International Business Machines IBM Corporation.IBM AIX is an open standards-based UNIX operating system developed for the IBM Power architecture.IBM VIOS is part of the PowerVm® Editions hardware feature set.IBM AIX is an open standards-based UNIX...

10CVSS6.6AI score0.00618EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.2 views

Photon OS 4.0: Curl PHSA-2025-4.0-0903

An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0903. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.5CVSS6.8AI score0.01301EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.1 views

Photon OS 5.0: Runc PHSA-2025-5.0-0676

An update of the runc package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0676. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.4CVSS8.2AI score0.04409EPSS
Exploits5References5
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.3 views

Photon OS 5.0: Lasso PHSA-2025-5.0-0674

An update of the lasso package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0674. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.8CVSS8AI score0.00827EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

Photon OS 5.0: Vim PHSA-2025-5.0-0672

An update of the vim package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0672. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid27530...

5.5CVSS5.7AI score0.00195EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.2 views

Photon OS 4.0: Docker PHSA-2025-4.0-0899

An update of the docker package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0899. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.9CVSS9.3AI score0.13848EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2025/11/13 12:0 a.m.4 views

Apple macOS USD importMeshJointWeights Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the USD library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the USD library. T...

7.8CVSS7.4AI score0.00198EPSS
Exploits0References1
Rows per page
Query Builder