Lucene search
K

483 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003142)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003142 advisory. Linux kernel version after commit bdcf0a423ea1 - 4.15-rc4+, 4.14.8+, 4.9.76+, 4.4.111+ contains a Incorrect Access Control vulnerability in NFS server nfsd that can...

7.4CVSS6.7AI score0.01411EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003342)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003342 advisory. Linux kernel version after commit bdcf0a423ea1 - 4.15-rc4+, 4.14.8+, 4.9.76+, 4.4.111+ contains a Incorrect Access Control vulnerability in NFS server nfsd that can...

7.4CVSS6.7AI score0.01411EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.5 views

Astra Linux – Vulnerability in Chromium

Leakage of side-channel information in Storage in Google Chrome prior to 141.0.7390.54 allowed a remote attacker to perform arbitrary read/write operations through a crafted HTML page. Chromium security severity: Medium...

6.5CVSS7.9AI score0.00243EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.5 views

Astra Linux – Vulnerability in Chromium

Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.6AI score0.06806EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/01/09 9:20 a.m.5 views

CVE-2021-2403

Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Core. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

5.3CVSS5.3AI score0.01646EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.9 views

Amazon Linux 2023 : rsync, rsync-daemon (ALAS2023-2025-1302)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1302 advisory. A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The malicious rsync client requires at least re...

4.3CVSS5.5AI score0.00283EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/12/08 3:1 p.m.4 views

CVE-2025-13639

Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Low...

8.1CVSS6.2AI score0.00225EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/12/05 12:44 a.m.3 views

SUSE CVE-2025-10158

A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The malicious rsync client requires at least read access to the remote rsync module in order to trigger the issue...

4.3CVSS6.9AI score0.00283EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2025/12/05 12:0 a.m.2 views

Microsoft Edge (Chromium) < 143.0.3650.66 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 143.0.3650.66. It is, therefore, affected by multiple vulnerabilities as referenced in the December 4, 2025 advisory. - Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote...

8.8CVSS6.7AI score0.00393EPSS
Exploits0References27
RedhatCVE
RedhatCVE
added 2025/12/03 2:2 p.m.5 views

CVE-2025-58479

Out-of-bounds read in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory...

7.5CVSS6.8AI score0.00234EPSS
Exploits1References1
EUVD
EUVD
added 2025/12/02 9:31 p.m.5 views

EUVD-2025-200312

Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Low...

6.1AI score0.00225EPSS
Exploits0References3
CVE
CVE
added 2025/12/02 7:0 p.m.29 views

CVE-2025-13639

Summary: CVE-2025-13639 is an issue in the WebRTC implementation of Google Chrome/Chromium. Affected component: WebRTC in Chrome/Chromium prior to version 143.0.7499.41. Impact: Remote attacker could cause arbitrary read/write via a crafted HTML page (confidentiality and integrity impact; availab...

8.1CVSS6.2AI score0.00225EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/12/02 7:0 p.m.8 views

CVE-2025-13639

Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Low...

0.00225EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/02 7:0 p.m.2 views

CVE-2025-13639

Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Low...

6.2AI score0.00225EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/02 12:0 a.m.5 views

Sprecher Automation SPRECON-E-C和Sprecher Automation SPRECON-E-P 安全漏洞

The Sprecher Automation SPRECON-E-C and Sprecher Automation SPRECON-E-P are both an automation control and remote control device from Sprecher Automation of Austria. A security vulnerability exists in the Sprecher Automation SPRECON-E-C and Sprecher Automation SPRECON-E-P, which stems from the us...

9.8CVSS6.6AI score0.00435EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/12/02 12:0 a.m.5 views

Google Chrome 安全漏洞

Google Chrome is a web browser from Google, Inc USA. A security vulnerability exists in Google Chrome prior to version 143.0.7499.41, which stems from an improper implementation of WebRTC and could allow a remote attacker to arbitrarily read or write through specially crafted HTML pages...

8.1CVSS6AI score0.00225EPSS
Exploits0References3
OSV
OSV
added 2025/11/10 8:15 p.m.7 views

AZL-70036 CVE-2025-12429 affecting package nodejs18 18.20.3-11

Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.00267EPSS
Exploits0References1
OSV
OSV
added 2025/11/10 8:15 p.m.4 views

AZL-70033 CVE-2025-12428 affecting package nodejs18 18.20.3-11

Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.9AI score0.06806EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/11/10 8:0 p.m.2 views

CVE-2025-12429

Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: High...

5.7AI score0.00267EPSS
Exploits0References2
CVE
CVE
added 2025/11/10 8:0 p.m.45 views

CVE-2025-12429

The CVE concerns Google Chrome’s V8: an inappropriate implementation allowed arbitrary read/write via a crafted HTML page in versions prior to 142.0.7444.59. It is rated High severity with a network vector and no user interaction required. Remediation is to upgrade to 142.0.7444.59 or newer (Chro...

8.8CVSS5.7AI score0.00267EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder