Lucene search
K

25207 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

Photon OS 5.0: Vim PHSA-2025-5.0-0672

An update of the vim package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0672. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid27530...

5.5CVSS5.7AI score0.00195EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.3 views

Photon OS 5.0: Lasso PHSA-2025-5.0-0674

An update of the lasso package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0674. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.8CVSS8AI score0.00827EPSS
Exploits4References5
OpenVAS
OpenVAS
added 2025/11/13 12:0 a.m.4 views

Google Chrome Security Update (stable-channel-update-for-desktop_11-2025-11) - MAC OS X

Google Chrome is prone to a heap corruption vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome";...

8.8CVSS6.5AI score0.00231EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.2 views

Photon OS 4.0: Curl PHSA-2025-4.0-0903

An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0903. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.5CVSS6.8AI score0.01301EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.2 views

Photon OS 4.0: Docker PHSA-2025-4.0-0899

An update of the docker package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0899. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.9CVSS9.3AI score0.13848EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.3 views

Photon OS 4.0: Lasso PHSA-2025-4.0-0903

An update of the lasso package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0903. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

9.8CVSS8AI score0.00827EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.1 views

Photon OS 4.0: Linux PHSA-2025-4.0-0905

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0905. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.8CVSS7.5AI score0.00258EPSS
Exploits0References5
OSV
OSV
added 2025/11/12 8:15 p.m.4 views

CVE-2024-48829

Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Control of Generation of Code 'Code Injection' vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution...

6.7CVSS5.8AI score0.00152EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/12 8:1 p.m.6 views

CVE-2025-46427

Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Command execution...

8.8CVSS0.01127EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/12 7:57 p.m.5 views

CVE-2025-46428

Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Neutralization of Special Elements used in a Command 'Command Injection' vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Code execution...

8.8CVSS0.01062EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/12 7:50 p.m.4 views

CVE-2024-48829

Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Control of Generation of Code 'Code Injection' vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution...

6.7CVSS0.00152EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/12 7:50 p.m.3 views

CVE-2024-48829

Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Control of Generation of Code 'Code Injection' vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution...

6.7CVSS6.1AI score0.00152EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/11/12 7:15 p.m.3 views

CVE-2024-47866

Ceph is a distributed object, block, and file storage platform. In versions up to and including 19.2.3, using the argument x-amz-copy-source to put an object and specifying an empty string as its content leads to the RGW daemon crashing, resulting in a DoS attack. As of time of publication, no...

7.5CVSS7AI score0.0039EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/11/12 6:1 p.m.3 views

CVE-2025-62217

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

7CVSS5.5AI score0.00252EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 5:7 p.m.3 views

CVE-2025-20065

Uncontrolled search path for some Display Virtualization for Windows OS software before version 1797 within Ring 2: Device Drivers may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation of...

6.7CVSS6.5AI score0.00103EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/12 3:30 a.m.3 views

EUVD-2025-106791

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in watchOS 11.4, tvOS 18.4, visionOS 2.4, iOS 18.4 and iPadOS 18.4. An app may be able to bypass ASLR...

6.5CVSS5.4AI score0.0013EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.2 views

EulerOS 2.0 SP12 : udisks2 (EulerOS-SA-2025-2343)

According to the versions of the udisks2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the Udisks daemon, where it allows unprivileged users to create loop devices using the D-BUS system. This is achieved via the...

8.5CVSS5.9AI score0.0065EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/11/12 12:0 a.m.7 views

PT-2025-46710

Name of the Vulnerable Software and Affected Versions Dell SmartFabric OS10 Software versions prior to 10.6.1.0 Description Dell SmartFabric OS10 Software versions prior to 10.6.1.0 contain an Improper Neutralization of Special Elements used in a Command 'Command Injection' issue. A low privilege...

8.8CVSS6.8AI score0.01062EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/11/11 7:58 p.m.3 views

bind: Cache poisoning attacks with unsolicited RRs

A vulnerability exists in BIND’s DNS resolver logic that makes it overly permissive when accepting resource records RRs in responses. Under certain conditions, this flaw allows attackers to inject unsolicited or forged DNS records into the cache. This can be exploited to poison the resolver cache...

8.6CVSS6AI score0.00509EPSS
Exploits1References4
EUVD
EUVD
added 2025/11/11 6:30 p.m.2 views

EUVD-2025-93529

Uncontrolled search path for some Display Virtualization for Windows OS software before version 1797 within Ring 2: Device Drivers may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable escalation of...

6.7CVSS6AI score0.00103EPSS
Exploits0References2
Rows per page
Query Builder