Lucene search
K

40449 matches found

Vulnrichment
Vulnrichment
added 2025/05/27 10:16 p.m.5 views

CVE-2025-2796 On affected platforms with hardware IPSec support running Arista EOS with IPsec enabled and anti-replay protection configured, EOS may exhibit unexpected behavior in specific cases. Received duplicate encrypted packets, which should be dropped under normal

On affected platforms with hardware IPSec support running Arista EOS with IPsec enabled and anti-replay protection configured, EOS may exhibit unexpected behavior in specific cases. Received duplicate encrypted packets, which should be dropped under normal anti-replay protection, will instead be...

5.3CVSS6.8AI score0.00158EPSS
Exploits0References1
CVE
CVE
added 2025/05/27 10:16 p.m.51 views

CVE-2025-2796

CVE-2025-2796 affects Arista EOS on platforms with hardware IPSec support where IPsec is enabled and anti-replay protection is configured. In certain cases, received duplicate encrypted packets that should be dropped by anti-replay protection are forwarded instead, as described by Arista’s adviso...

5.3CVSS5.2AI score0.00158EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/27 10:16 p.m.18 views

CVE-2025-2796 On affected platforms with hardware IPSec support running Arista EOS with IPsec enabled and anti-replay protection configured, EOS may exhibit unexpected behavior in specific cases. Received duplicate encrypted packets, which should be dropped under normal

On affected platforms with hardware IPSec support running Arista EOS with IPsec enabled and anti-replay protection configured, EOS may exhibit unexpected behavior in specific cases. Received duplicate encrypted packets, which should be dropped under normal anti-replay protection, will instead be...

5.3CVSS0.00158EPSS
Exploits0References1
OSV
OSV
added 2025/05/27 10:3 a.m.2 views

RHSA-2025:8140 Red Hat Security Advisory: libsoup security update

Bulletin has no description...

7.5CVSS7.4AI score0.00728EPSS
Exploits1References24
OSV
OSV
added 2025/05/27 10:3 a.m.2 views

RHSA-2025:8132 Red Hat Security Advisory: libsoup security update

Bulletin has no description...

7.5CVSS7.4AI score0.00728EPSS
Exploits1References24
Positive Technologies
Positive Technologies
added 2025/05/27 12:0 a.m.4 views

PT-2025-23040 · Arista · Arista Eos

Name of the Vulnerable Software and Affected Versions: Arista EOS affected versions not specified Description: The issue affects Arista EOS with IPsec enabled and anti-replay protection configured on platforms with hardware IPSec support. In specific cases, EOS may exhibit unexpected behavior,...

5.3CVSS6.2AI score0.00158EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/05/27 12:0 a.m.5 views

The vulnerability of the driver/platform/chrome/cros_ec_chardev.c module in the Linux operating system allows a hacker to disclose protected information.

The vulnerability of the drivers/platforms/chrome/crosecchardev.c module in the Linux operating system is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker to disclose protected information...

5.5CVSS6.3AI score0.00164EPSS
Exploits0References10Affected Software4
Nvidia
Nvidia
added 2025/05/27 12:0 a.m.11 views

Security Bulletin: NVIDIA CUDA Toolkit - May 2025

NVIDIA has released a software update for NVIDIA® CUDA® Toolkit. To protect your system, download and install the latest release from the CUDA Toolkit Downloads page. Go to NVIDIA Product Security...

7.8CVSS7.1AI score0.00263EPSS
Exploits1Affected Software1
Wired Threat Level
Wired Threat Level
added 2025/05/26 10:30 a.m.20 views

A Starter Guide to Protecting Your Data From Hackers and Corporations

Hackers. AI data scrapes. Government surveillance. Thinking about where to start when it comes to protecting your online privacy can be overwhelming. Here’s a simple guide for you—and anyone who claims they have nothing to hide...

7.2AI score
Exploits0
OSV
OSV
added 2025/05/26 10:2 a.m.2 views

RHSA-2025:8125 Red Hat Security Advisory: firefox security update

Bulletin has no description...

8.8CVSS8.4AI score0.08917EPSS
Exploits1References15
Positive Technologies
Positive Technologies
added 2025/05/26 12:0 a.m.4 views

PT-2025-28934 · Ип Кривочуров Дмитрий Анатольевич · Импорт Из Xml

Уязвимость плагина «Импорт из XML, и YML» существует из-за непринятием мер по защите структуры веб-страницы. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, провести атаку межсайтового скриптинга XSS...

5CVSS7.3AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/26 12:0 a.m.7 views

PT-2025-28936 · Ип Кривочуров Дмитрий Анатольевич · Экспорт В Excel. Выгрузка Каталога Товаров 1С-Битрикс. Создание Прайс-Листа

Уязвимость плагина «Экспорт в Excel» существует из-за непринятием мер по защите структуры веб-страницы. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, провести атаку межсайтового скриптинга XSS...

5CVSS7.3AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/05/26 12:0 a.m.11 views

The vulnerability of the configuration @EnableMethodSecurity(mode=ASPECTJ) or spring-security-aspects in the Java framework for securing Spring-based industrial applications allows attackers to bypass the authentication process.

The vulnerability of the @EnableMethodSecurity'mode=ASPECTJ configuration or the spring-security-aspects Java framework for securing Spring-based industrial applications is related to a flaw in the data protection mechanism. Exploiting this vulnerability could allow an attacker to bypass...

9.4CVSS7.1AI score0.00535EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/26 12:0 a.m.12 views

PT-2025-28937 · Ип Кривочуров Дмитрий Анатольевич · Экспорт/Импорт Товаров В Excel

Уязвимость плагина «Экспорт/Импорт товаров в Excel» существует из-за непринятием мер по защите структуры веб-страницы. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, провести атаку межсайтового скриптинга XSS...

5CVSS7.3AI score
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-7516-5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.08906EPSS
Exploits1References2
Packet Storm News
Packet Storm News
added 2025/05/25 12:0 a.m.4 views

CoTGuard: Using Chain-Of-Thought Triggering for Copyright Protection in Multi-Agent LLM Systems

As large language models LLMs evolve into autonomous agents capable of collaborative reasoning and task execution, multi-agent LLM systems have emerged as a powerful paradigm for solving complex problems. However, these systems pose new challenges for copyright protection, particularly when...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/25 12:0 a.m.3 views

Structure Disruption: Subverting Malicious Diffusion-Based Inpainting Via Self-Attention Query Perturbation

The rapid advancement of diffusion models has enhanced their image inpainting and editing capabilities but also introduced significant societal risks. Adversaries can exploit user images from social media to generate misleading or harmful content. While adversarial perturbations can disrupt...

6.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/24 8:0 p.m.13 views

CVE-2024-5962

A reflected cross-site scripting XSS vulnerability exists in the authentication endpoint of multiple WSO2 products due to missing output encoding of user-supplied input. A malicious actor can exploit this vulnerability to inject arbitrary JavaScript into the authentication flow, potentially leadi...

6.1CVSS5.9AI score0.00212EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/05/24 12:0 a.m.3 views

Anonymity-Washing

Anonymization is a foundational principle of data privacy regulation, yet its practical application remains riddled with ambiguity and inconsistency. This paper introduces the concept of anonymity-washing -- the misrepresentation of the anonymity level of sanitized'' personal data -- as a critica...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/24 12:0 a.m.5 views

A Study of Semi-Fungible Token Based Wi-Fi Access Control

Current Wi-Fi authentication methods face issues such as insufficient security, user privacy leakage, high management costs, and difficulty in billing. To address these challenges, a Wi-Fi access control solution based on blockchain smart contracts is proposed. Firstly, semi-fungible Wi-Fi tokens...

7.1AI score
Exploits0
Rows per page
Query Builder