Lucene search
K

65 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:57 p.m.10 views

CVE-2020-0019

In the Broadcom Nexus firmware, there is an insecure default password. This could lead to local information disclosure in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-171413798...

5.5CVSS6.2AI score0.00166EPSS
Exploits0References1
OSV
OSV
added 2025/05/07 7:11 p.m.7 views

RLSA-2024:7000 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: CVE-2023-6040 CVE-2024-26595 CVE-2024-26600 CVE-2021-46984 CVE-2023-52478 CVE-2023-52476 CVE-2023-52522 CVE-2021-47101 CVE-2021-47097 CVE-2023-52605 CVE-2024-26638 CVE-2024-26645 CVE-2024-26665...

7.8CVSS6.7AI score0.01028EPSS
Exploits2References138
Positive Technologies
Positive Technologies
added 2025/03/31 12:0 a.m.1 views

PT-2025-13872

Name of the Vulnerable Software and Affected Versions macOS versions prior to 13.7.5 macOS Sequoia versions prior to 15.4 macOS Sonoma versions prior to 14.7.5 Description The issue allows a malicious JAR file to bypass Gatekeeper checks due to improper handling of executable types. Recommendatio...

5.5CVSS6.5AI score0.00166EPSS
Exploits0References14
Malwarebytes
Malwarebytes
added 2025/03/28 4:46 p.m.20 views

Vulnerability in most browsers abused in targeted attacks

Researchers found a vulnerability in Chrome that was abused in the wild against organizations in Russia. Google has released an update for its Chrome browser which includes patches for this vulnerability. The update brings the Stable channel to versions 134.0.6998.178 for Windows. Other operating...

8.3CVSS7.8AI score0.08404EPSS
Exploits6
UbuntuCve
UbuntuCve
added 2025/03/25 9:15 p.m.9 views

CVE-2025-27832

An issue was discovered in Artifex Ghostscript before 10.05.0. The NPDL device has a Compression buffer overflow for contrib/japanese/gdevnpdl.c...

9.8CVSS7AI score0.00806EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2023-1855

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free flaw was found in xgenehwmonremove in drivers/hwmon/xgene-hwmon.c in the Hardware Monitoring Linux Kernel Driver xgene-hwmon. This flaw could...

6.3CVSS6.7AI score0.00237EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/05 1:0 p.m.6 views

CVE-2024-25612

Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS8.1AI score0.0124EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 2:1 a.m.22 views

RLSA-2025:0065 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: i40e: fix race condition by adding filter's intermediate sync state CVE-2024-53088 kernel: mptcp: cope racing subflow creation in mptcprcvspaceadjust CVE-2024-53122 For more details about...

5.5CVSS5.8AI score0.00199EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2024/12/17 12:0 a.m.10 views

CVE-2024-55919

Improper input validation on generic SSO login...

5.8AI score
Exploits0References3
Cvelist
Cvelist
added 2024/11/05 10:46 p.m.19 views

CVE-2024-47460 Unauthenticated Command Injection Vulnerability in the CLI Service Accessed by the PAPI Protocol

Command injection vulnerability in the underlying CLI service could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI Aruba's Access Point management protocol UDP port 8211. Successful exploitation of this vulnerability results in the ability ...

9CVSS0.014EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/08 12:0 a.m.5 views

Microsoft Windows NT OS Kernel 安全漏洞

Microsoft Windows NT OS Kernel is the core of the Windows operating system from Microsoft Corporation USA and is responsible for managing system resources, providing hardware abstraction, and ensuring system security and stability. A security vulnerability exists in Microsoft Windows NT OS Kernel...

7.4CVSS6.3AI score0.00495EPSS
Exploits0References2
CNVD
CNVD
added 2024/09/29 12:0 a.m.10 views

Unspecified vulnerability in Linux kernel (CNVD-2024-40293)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not checking whether the denominator is zero. No details of the vulnerability are provided at this time...

5.5CVSS6.5AI score0.00235EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/08/20 4:15 a.m.8 views

CVE-2024-38810

Missing Authorization When Using @AuthorizeReturnObject in Spring Security 6.3.0 and 6.3.1 allows attacker to render security annotations inaffective...

7.5CVSS6.6AI score0.00432EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/08/01 12:0 a.m.9 views

The vulnerability of the TCP/IP Connectivity Utilities component in IBM i operating systems allows attackers to enhance their privileges.

The vulnerability of the TCP/IP Connectivity Utilities component in IBM i operating systems is related to access control errors. Exploiting this vulnerability allows attackers to enhance their privileges...

7.8CVSS5.5AI score0.00171EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/05/14 3:42 p.m.3 views

CVE-2024-4046

Cracking vulnerability in the OS security module Impact: Successful exploitation of this vulnerability will affect availability...

5.5CVSS5.8AI score0.00127EPSS
Exploits0References2
CNVD
CNVD
added 2024/04/01 12:0 a.m.8 views

Dell PowerScale OneFS Incorrect Privilege Management Vulnerability

Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. An incorrect privilege management vulnerability exists in Dell PowerScale OneFS, which can be exploited by a local, high-privilege attacker to cause privilege...

6.7CVSS6.8AI score0.00158EPSS
Exploits0References1
CNVD
CNVD
added 2024/03/01 12:0 a.m.10 views

Google Android suffers from an unspecified vulnerability (CNVD-2025-00873)

Google Android is a Linux-based open source operating system from Google. A security vulnerability exists in Google Android that stems from a logic error in the removePersistentDot method code of the SystemStatusAnimationSchedulerImpl.kt file, where a race condition may exist. No detailed...

8.4CVSS6.8AI score0.00099EPSS
Exploits0References1
Schneier on Security
Schneier on Security
added 2023/12/12 12:1 p.m.15 views

New Windows/Linux Firmware Attack

Interesting attack based on malicious pre-OS logo images: LogoFAIL is a constellation of two dozen newly discovered vulnerabilities that have lurked for years, if not decades, in Unified Extensible Firmware Interfaces responsible for booting modern devices that run Windows or Linux…. The...

8.4AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/11/10 12:0 a.m.7 views

The vulnerability of the Management Central component of the IBM i operating system, which allows attackers to escalate their privileges.

The vulnerability of the Management Central component of the IBM i operating system is related to insecure management of privileges. Exploiting this vulnerability can allow attackers to enhance their privileges and gain access to components of the operating system...

7.8CVSS7.2AI score0.00145EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/07/25 12:0 a.m.18 views

Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1791)

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute arbitrary commands with elevated privileges on the underlying operating system of an affected device. The vulnerability is due to insufficient validation of...

7.2CVSS6.9AI score0.00507EPSS
Exploits0References3
Rows per page
Query Builder