Lucene search
K

40443 matches found

BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.5 views

The vulnerability of the Adobe Experience Manager content and media data management system lies in the insufficient protection of the website structure, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

5.5CVSS5.9AI score0.003EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.7 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

5.5CVSS5.9AI score0.00279EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.5 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

5.5CVSS5.9AI score0.00279EPSS
Exploits0References2Affected Software1
SUSE CVE
SUSE CVE
added 2025/06/24 11:25 p.m.1 views

SUSE CVE-2025-3415

Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing integration was not properly protected and could be exposed to users with Viewer permission. Fixed in versions 10.4.19+security-01, 11.2.10+security-01, 11.3.7+security-01, 11.4.5+security-01,...

4.3CVSS6.9AI score0.0089EPSS
Exploits0References12
NVD
NVD
added 2025/06/24 8:15 p.m.6 views

CVE-2025-52471

ESF-IDF is the Espressif Internet of Things IOT Development Framework. An integer underflow vulnerability has been identified in the ESP-NOW protocol implementation within the ESP Wi-Fi component of versions 5.4.1, 5.3.3, 5.2.5, and 5.1.6 of the ESP-IDF framework. This issue stems from insufficie...

9.8CVSS0.00741EPSS
Exploits0References7
OSV
OSV
added 2025/06/24 12:34 p.m.1 views

CGA-PPCG-8388-36P2

Bulletin has no description...

3.7CVSS7.2AI score0.00694EPSS
Exploits0
ICS
ICS
added 2025/06/24 12:30 p.m.6 views

Hitachi Energy Relion 670/650 and SAM600-IO Series (Update A)

SUMMARY Hitachi Energy is aware of a vulnerability that affects the Relion 670/650 and SAM600-IO series IED device versions that are listed in this document. An authenticated attacker successfully exploiting this vulnerability via FTP access can cause the device to reboot due to improper disk...

8.7CVSS6.8AI score0.00316EPSS
Exploits0References9
ICS
ICS
added 2025/06/24 12:30 p.m.6 views

Hitachi Energy MSM

SUMMARY Hitachi Energy is aware of the vulnerability CVE-2020-11022 that affects MSM versions as listed below. If an attacker successfully exploits this vulnerability, it could impact the confidentiality, integrity or availability of MSM. Please consult the Recommended Immediate Actions Section...

6.9CVSS7.1AI score0.99019EPSS
Exploits7References9
OSV
OSV
added 2025/06/24 10:3 a.m.3 views

RHSA-2025:9392 Red Hat Security Advisory: tigervnc security update

Bulletin has no description...

7.8CVSS7.2AI score0.00299EPSS
Exploits0References31
The Hacker News
The Hacker News
added 2025/06/24 9:16 a.m.5 views

U.S. House Bans WhatsApp on Official Devices Over Security and Data Protection Issues

The U.S. House of Representatives has formally banned congressional staff members from using WhatsApp on government-issued devices, citing security concerns. The development was first reported by Axios. The decision, according to the House Chief Administrative Officer CAO, was motivated by worrie...

6.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2025/06/24 6:58 a.m.11 views

kernel: ndisc: use RCU protection in ndisc_alloc_skb()

A vulnerability was found in the Linux kernel's IPv6 Neighbor Discovery NDISC subsystem, which manages network neighbor information. The issue arises from improper synchronization mechanisms when allocating socket buffers skbuff in the ndiscallocskb function. Specifically, the function can be...

7.8CVSS7.2AI score0.00228EPSS
Exploits0References5
Nvidia
Nvidia
added 2025/06/24 12:0 a.m.7 views

Security Bulletin: NVIDIA AIStore on Kubernetes - June 2025

NVIDIA has released a software update for NVIDIA® AIStore on Kubernetes. To protect your system, download and install this software update from the AIStore on Kubernetes Github Go to NVIDIA Product Security...

5CVSS7.1AI score0.00194EPSS
Exploits0Affected Software1
Nvidia
Nvidia
added 2025/06/24 12:0 a.m.8 views

Security Bulletin: NVIDIA Megatron LM - June 2025

NVIDIA has released a software update for NVIDIA® Megatron LM. To protect your system, clone or update this software to version 0.12.1 or later from Releases · NVIDIA/Megatron-LM on GitHub. Go to NVIDIA Product Security...

7.8CVSS7.1AI score0.0027EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/24 12:0 a.m.7 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...

5.5CVSS5.2AI score0.00305EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/24 12:0 a.m.6 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...

5.5CVSS5.2AI score0.00227EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/24 12:0 a.m.5 views

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...

5.5CVSS5.2AI score0.00275EPSS
Exploits0References2Affected Software1
ICS
ICS
added 2025/06/24 12:0 a.m.5 views

Hitachi Energy Relion 670/650 and SAM600-IO Series

SUMMARY Hitachi Energy is aware of a vulnerability that affects the Relion 670/650 and SAM600-IO series IED device versions that are listed in this document. An authenticated attacker successfully exploiting this vulnerability via FTP access can cause the device to reboot due to improper disk...

7.1CVSS5.7AI score0.00346EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/06/23 10:0 p.m.13 views

CVE-2025-6526 70mai M300 HTTP Server insufficiently protected credentials

A vulnerability, which was classified as problematic, has been found in 70mai M300 up to 20250611. This issue affects some unknown processing of the component HTTP Server. The manipulation leads to insufficiently protected credentials. The attack can only be done within the local network. The...

3.1CVSS0.00501EPSS
Exploits1References4
OSV
OSV
added 2025/06/23 10:3 a.m.6 views

RHSA-2025:9306 Red Hat Security Advisory: tigervnc security update

Bulletin has no description...

7.8CVSS6.2AI score0.00299EPSS
Exploits0References31
OSV
OSV
added 2025/06/23 5:41 a.m.3 views

BIT-GHOST-2024-34451

Ghost through 5.85.1 allows remote attackers to bypass an authentication rate-limit protection mechanism by using many X-Forwarded-For headers with different values. NOTE: the vendor's position is that Ghost should be installed with a reverse proxy that allows only trusted X-Forwarded-For headers...

9.1CVSS9.4AI score0.00766EPSS
Exploits1References4
Rows per page
Query Builder