Lucene search
K

677 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2021-12386

Malware in sbrugna...

6CVSS6.3AI score0.00751EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-5833

Malware in sbrugna...

7.2CVSS6.6AI score0.0032EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-23177

Malware in sbrugna...

4.5CVSS6.6AI score0.00225EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-28190

Malicious code in bioql PyPI...

9.8CVSS6.4AI score0.0049EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-28189

Malicious code in bioql PyPI...

7.8CVSS6.4AI score0.00243EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-47243

Malicious code in bioql PyPI...

6.5CVSS5.7AI score0.0063EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-0535

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information disclosure vulnerability in the HTC sound codec driver could enable a local malicious application to access data outside of its permission levels...

4.7CVSS5.7AI score0.00872EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

EulerOS 2.0 SP10 : screen (EulerOS-SA-2025-2113)

According to the versions of the screen package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : For a short time they PTY is set to mode 666, allowing any user on the system to connect to the screen session.CVE-2025-46802 A minor information...

6CVSS6.1AI score0.00213EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/06/03 2:45 a.m.2 views

SUSE CVE-2025-4598

A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original's privileged process coredump, allowing the attacker to read sensitive data, such as /etc/shadow content, loaded by the origina...

4.7CVSS6.3AI score0.00641EPSS
Exploits1References16
OSV
OSV
added 2025/05/30 2:15 p.m.4 views

AZL-66704 CVE-2025-4598 affecting package kernel for versions less than 5.15.186.1-1

A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a non-SUID binary to access the original's privileged process coredump, allowing the attacker to read sensitive data, such as /etc/shadow content, loaded by the origina...

4.7CVSS5.7AI score0.00641EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/05/26 12:0 a.m.6 views

GNU Screen 安全漏洞

Gnu Screen is a terminal multiplexing tool developed by the GNU project that allows users to create multiple virtual terminal sessions in the same physical terminal and supports session resumption, window switching and multi-user sharing. Gnu Screen suffers from a competitive condition...

5.7CVSS6.5AI score0.00167EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 3:1 a.m.5 views

CVE-2023-21361

In Bluetooth, there is a possibility of code-execution due to a use after free. This could lead to paired device escalation of privilege in the privileged Bluetooth process with no additional execution privileges needed. User interaction is not needed for exploitation...

8.8CVSS7.2AI score0.00147EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:36 p.m.9 views

CVE-2021-25444

An IV reuse vulnerability in keymaster prior to SMR AUG-2021 Release 1 allows decryption of custom keyblob with privileged process...

5.5CVSS6.8AI score0.00757EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:2 p.m.8 views

CVE-2021-1027

In setTransactionState of SurfaceFlinger, there is possible arbitrary code execution in a privileged process due to improper casting. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS7.7AI score0.00113EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:21 p.m.7 views

CVE-2021-25490

A keyblob downgrade attack in keymaster prior to SMR Oct-2021 Release 1 allows attacker to trigger IV reuse vulnerability with privileged process...

6CVSS6.7AI score0.00751EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/05/15 4:7 p.m.6 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/04/29 12:0 a.m.17 views

Mozilla Thunderbird < 138.0

The version of Thunderbird installed on the remote Windows host is prior to 138.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-31 advisory. - Memory safety bugs present in Firefox 137, Thunderbird 137, Firefox ESR 128.9, and Thunderbird 128.9. Some of thes...

9.1CVSS7.3AI score0.00538EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2024-45339

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When logs are written to a widely-writable directory the default, an unprivileged attacker may predict a privileged process's log file path and pre-create a...

7.1CVSS7.2AI score0.00281EPSS
Exploits0References3
OSV
OSV
added 2025/03/04 12:15 p.m.4 views

CVE-2025-22225

VMware ESXi contains an arbitrary write vulnerability. A malicious actor with privileges within the VMX process may trigger an arbitrary kernel write leading to an escape of the sandbox...

8.2CVSS5.9AI score0.00963EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2017-0627

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information disclosure vulnerability in the kernel UVC driver could enable a local malicious application to access data outside of its permission levels. Thi...

4.7CVSS6AI score0.01489EPSS
Exploits0References3
Rows per page
Query Builder