89 matches found
CVE-2025-59244
External control of file name or path in Windows Core Shell allows an unauthorized attacker to perform spoofing over a network...
EUVD-2025-34320
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
PT-2025-41997
Name of the Vulnerable Software and Affected Versions Microsoft Graphics Component affected versions not specified Description A use after free issue exists in the Microsoft Graphics Component. This flaw could allow an authorized attacker to elevate privileges over a network. Recommendations At t...
EUVD-2025-24340
Malicious code in bioql PyPI...
EUVD-2025-24364
Malicious code in bioql PyPI...
EUVD-2025-24360
Malicious code in bioql PyPI...
EUVD-2024-51027
Malicious code in bioql PyPI...
EUVD-2024-51030
Malicious code in bioql PyPI...
CVE-2025-47967
Insufficient ui warning of dangerous operations in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network...
CVE-2025-55229
Improper verification of cryptographic signature in Windows Certificates allows an unauthorized attacker to perform spoofing over a network...
PT-2025-34292 · Microsoft · Azure Databricks
Name of the Vulnerable Software and Affected Versions: Azure Databricks affected versions not specified Description: Improper access control in Azure Databricks can allow an unauthorized attacker to elevate privileges over a network. Recommendations: At the moment, there is no information about a...
PT-2025-33516
Name of the Vulnerable Software and Affected Versions: Claude Code versions prior to 1.0.4 Claude Code versions prior to 1.0.24 Description: Claude Code is an agentic coding tool. Prior to version 1.0.4, it’s possible to bypass the confirmation prompts to read a file and then send file contents...
CVE-2025-25005
Improper input validation in Microsoft Exchange Server allows an authorized attacker to perform tampering over a network...
CVE-2025-49745
Improper neutralization of input during web page generation 'cross-site scripting' in Microsoft Dynamics 365 on-premises allows an unauthorized attacker to perform spoofing over a network...
CVE-2025-50171
Missing authorization in Remote Desktop Server allows an unauthorized attacker to perform spoofing over a network...
CVE-2025-49736
The ui performs the wrong action in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network...
Linux Distros Unpatched Vulnerability : CVE-2017-16914
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The stubsendretsubmit function drivers/usb/usbip/stubtx.c in the Linux Kernel before version 4.14.8, 4.9.71, 4.1.49, and 4.4.107 allows attackers to cause a...
CVE-2025-38397
In the Linux kernel, the following vulnerability has been resolved: nvme-multipath: fix suspicious RCU usage warning When I run the NVME over TCP test in virtme-ng, I get the following "suspicious RCU usage" warning in nvmempathaddsysfslink: ''' 5.024557 T44 nvmet: Created nvm controller 1 for...
VulnCheck KEV: CVE-2025-53771
Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network...
CVE-2024-12655
A vulnerability, which was classified as problematic, has been found in FabulaTech USB over Network 6.0.6.1. Affected by this issue is the function 0x220420 in the library ftusbbus2.sys of the component IOCT Handler. The manipulation leads to null pointer dereference. It is possible to launch the...