Lucene search
K

219 matches found

Cvelist
Cvelist
added 2026/04/08 5:26 p.m.21 views

CVE-2025-30650 Junos OS: Privileged local user can gain access to a Linux-based FPC as root

A Missing Authentication for Critical Function vulnerability in command processing of Juniper Networks Junos OS allows a privileged local attacker to gain access to Linux-based line cards as root. This issue affects systems running Junos OS using Linux-based line cards. Affected line cards includ...

8.4CVSS0.00137EPSS
Exploits0References2
CVE
CVE
added 2026/04/08 5:26 p.m.28 views

CVE-2025-30650

CVE-2025-30650 concerns Junos OS on Linux-based line cards. A Missing Authentication for Critical Function in command processing allows a privileged local user to gain root access to the Linux-based FPC. Affected line cards include: MPC7–MPC11; LC2101/LC2103; LC480/LC4800/LC9600; MX304 (built-in ...

8.4CVSS5.8AI score0.00137EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/08 5:26 p.m.4 views

CVE-2025-30650 Junos OS: Privileged local user can gain access to a Linux-based FPC as root

A Missing Authentication for Critical Function vulnerability in command processing of Juniper Networks Junos OS allows a privileged local attacker to gain access to Linux-based line cards as root. This issue affects systems running Junos OS using Linux-based line cards. Affected line cards includ...

8.4CVSS5.8AI score0.00137EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.9 views

Juniper Junos OS Vulnerability (JSA107863)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA107863 advisory. - A Missing Authentication for Critical Function vulnerability in command processing of Juniper Networks Junos OS allows a privileged local attacker to gain access to...

8.4CVSS5.9AI score0.00137EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/01 12:0 a.m.7 views

Himmelblau 安全漏洞

Himmelblau is an open-source Azure Entra ID authentication module developed by Himmelblau. There is a security vulnerability in Himmelblau, which stems from conditional local privilege escalation due to name conflicts in edge scenarios. If the mapped CN or short name matches the name of a...

7CVSS5.8AI score0.00158EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/03/26 3:13 p.m.4 views

CVE-2025-22850

Time-of-check time-of-use race condition in the UEFI PdaSmm module for some IntelR reference platforms may allow an information disclosure. System software adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local...

5.6CVSS5.8AI score0.00083EPSS
Exploits0References1
NVD
NVD
added 2026/03/10 11:16 p.m.4 views

CVE-2025-22850

Time-of-check time-of-use race condition in the UEFI PdaSmm module for some IntelR reference platforms may allow an information disclosure. System software adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local...

5.6CVSS0.00083EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/10 10:49 p.m.4 views

CVE-2025-22850

Time-of-check time-of-use race condition in the UEFI PdaSmm module for some IntelR reference platforms may allow an information disclosure. System software adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local...

5.6CVSS5.7AI score0.00083EPSS
Exploits0References2
CVE
CVE
added 2026/03/10 10:49 p.m.7 views

CVE-2025-20073

CVE-2025-20073 describes an information disclosure vulnerability in the UEFI DXE module for some Intel reference platforms. The issue is caused by improper buffer restrictions, which could allow a local privilege user with high complexity to cause data exposure without user interaction. Impact is...

1.8CVSS5.9AI score0.00095EPSS
Exploits0References1
OSV
OSV
added 2026/03/04 4:16 p.m.5 views

CVE-2026-22285

Dell Device Management Agent DDMA, versions prior to 26.02, contain a Plaintext Storage of Password vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Unauthorized Access...

4.4CVSS5.8AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/16 7:30 p.m.9 views

CVE-2025-27560

Loop with unreachable exit condition 'infinite loop' for some IntelR Platform within Ring 0: Kernel may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This result may potentially occur via local acces...

6.7CVSS5.4AI score0.00113EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.11 views

CVE-2025-32467

Use of uninitialized variable for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local access wh...

5.6CVSS0.00098EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/10 4:25 p.m.3 views

CVE-2025-27560

Loop with unreachable exit condition 'infinite loop' for some IntelR Platform within Ring 0: Kernel may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This result may potentially occur via local acces...

6.7CVSS5.4AI score0.00113EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.6 views

AMD EPYC 9005 Series 安全漏洞

The AMD EPYC 9005 Series is a series of processors developed by Advanced Microelectronics Devices, Inc. AMD. There are security vulnerabilities in the AMD EPYC 9005 Series. These vulnerabilities stem from improper handling of error conditions during host failures, which may allow privileged local...

1.8CVSS5.8AI score0.00115EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.5 views

PT-2026-7301

Name of the Vulnerable Software and Affected Versions TDX Module versions prior to tdx1.5 Description A race condition exists within the hypervisor in Ring 0 for some TDX Module versions prior to tdx1.5, potentially leading to a denial of service. An authorized adversary with privileged user...

5.6CVSS5.2AI score0.00074EPSS
Exploits0References3
NVD
NVD
added 2026/02/04 7:16 a.m.7 views

CVE-2026-20982

Path traversal in ShortcutService prior to SMR Feb-2026 Release 1 allows privileged local attacker to create file with system privilege...

6.8CVSS0.00295EPSS
Exploits1References1
EUVD
EUVD
added 2026/02/04 6:14 a.m.3 views

EUVD-2026-5393

Path traversal in ShortcutService prior to SMR Feb-2026 Release 1 allows privileged local attacker to create file with system privilege...

6.8CVSS5.4AI score0.00295EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/02/04 6:14 a.m.6 views

CVE-2026-20982

Path traversal in ShortcutService prior to SMR Feb-2026 Release 1 allows privileged local attacker to create file with system privilege...

6.8CVSS5.4AI score0.00295EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/02/04 6:14 a.m.28 views

CVE-2026-20982

Path traversal in ShortcutService prior to SMR Feb-2026 Release 1 allows privileged local attacker to create file with system privilege...

6.8CVSS0.00295EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.7 views

PT-2026-6092

Name of the Vulnerable Software and Affected Versions Adobe ShortcutService versions prior to SMR Feb-2026 Release 1 Description A path traversal issue exists in ShortcutService. A privileged local attacker can create a file with system privileges. Recommendations Update Adobe ShortcutService to...

6.8CVSS5.5AI score0.00295EPSS
Exploits1References3
Rows per page
Query Builder