Lucene search
K

72 matches found

CNNVD
CNNVD
added 2026/03/07 12:0 a.m.10 views

Gravitl Netmaker 安全漏洞

Gravitl Netmaker is a platform developed by the American company Gravitl, which uses WireGuard to create and manage fast, secure, and dynamic virtual overlay networks. It is used to create and control automated virtual networks. Versions of Gravitl Netmaker prior to 1.5.0 contained security...

8.6CVSS7.3AI score0.00366EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 9:0 a.m.6 views

CVE-2023-29048

A component for parsing OXMF templates could be abused to execute arbitrary system commands that would be executed as the non-privileged runtime user. Users and attackers could run system commands with limited privilege to gain unauthorized access to confidential information and potentially viola...

8.8CVSS7.9AI score0.0133EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-4499

Malware in sbrugna...

3.5CVSS6.4AI score0.00807EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-10412

Malware in sbrugna...

8.1CVSS6.5AI score0.00808EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-41305

Malicious code in bioql PyPI...

8.1CVSS8AI score0.00354EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-3428

Malicious code in bioql PyPI...

5.5CVSS6.3AI score0.01652EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-1195

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.01051EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-41304

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00308EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-26873

Malicious code in bioql PyPI...

6.1CVSS6.7AI score0.00267EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2025/09/27 12:51 a.m.7 views

CVE-2025-59932 FlagForgeCTF Unauthenticated Resource Modification/Deletion

Flag Forge is a Capture The Flag CTF platform. From versions 2.0.0 to before 2.3.1, the /api/resources endpoint previously allowed POST and DELETE requests without proper authentication or authorization. This could have enabled unauthorized users to create, modify, or delete resources on the...

8.6CVSS6.5AI score0.00346EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/27 12:51 a.m.14 views

CVE-2025-59932 FlagForgeCTF Unauthenticated Resource Modification/Deletion

Flag Forge is a Capture The Flag CTF platform. From versions 2.0.0 to before 2.3.1, the /api/resources endpoint previously allowed POST and DELETE requests without proper authentication or authorization. This could have enabled unauthorized users to create, modify, or delete resources on the...

8.6CVSS0.00346EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/27 12:0 a.m.14 views

Flag Forge 访问控制错误漏洞

Flag Forge is an easy-to-use CTF platform open-sourced by FlagForge. An access control error vulnerability exists in Flag Forge versions 2.0.0 through prior to 2.3.1, which stems from a lack of proper authentication and authorization in the /api/resources endpoint, which could result in an...

8.6CVSS6.7AI score0.00346EPSS
Exploits0References2
NVD
NVD
added 2025/09/04 11:15 p.m.5 views

CVE-2025-55305

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. In versions below 35.7.5, 36.0.0-alpha.1 through 36.8.0, 37.0.0-alpha.1 through 37.3.1 and 38.0.0-alpha.1 through 38.0.0-beta.6, ASAR Integrity Bypass via resource modification. This only impac...

6.1CVSS0.00267EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2025/09/04 11:5 p.m.1 views

CVE-2025-55305 Electron is vulnerable to Code Injection via resource modification

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. In versions below 35.7.5, 36.0.0-alpha.1 through 36.8.0, 37.0.0-alpha.1 through 37.3.1 and 38.0.0-alpha.1 through 38.0.0-beta.6, ASAR Integrity Bypass via resource modification. This only impac...

6.1CVSS6.1AI score0.00267EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/09/04 11:5 p.m.9 views

CVE-2025-55305 Electron is vulnerable to Code Injection via resource modification

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. In versions below 35.7.5, 36.0.0-alpha.1 through 36.8.0, 37.0.0-alpha.1 through 37.3.1 and 38.0.0-alpha.1 through 38.0.0-beta.6, ASAR Integrity Bypass via resource modification. This only impac...

6.1CVSS0.00267EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/09/04 12:0 a.m.3 views

Electron 安全漏洞

Electron is Electron open source a user to write cross-platform desktop application JavaScript framework. The framework is based on nodejs and Chromium and can be used to write cross-platform desktop applications using HTML, CSS. Electron has a security vulnerability that stems from a resource...

6.1CVSS6.8AI score0.00267EPSS
Exploits0References9
CNVD
CNVD
added 2025/06/17 12:0 a.m.3 views

ABB Multiple Catalog Traversal Vulnerability

ABB ASPECT-Enterprise is a scalable building energy management and control solution.ABB NEXUS Series is a monitoring and control management system.ABB MATRIX Series is an embedded IoT ASPECT control engine designed to provide flexible field control for medium to large field control applications. ...

7.5CVSS7.1AI score0.00391EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/24 5:18 p.m.11 views

CVE-2024-48850

Absolute File Traversal vulnerabilities in ASPECT allows access and modification of unintended resources. This issue affects ASPECT-Enterprise: through 3.08.03; NEXUS Series: through 3.08.03; MATRIX Series: through 3.08.03...

7.5CVSS7.2AI score0.00391EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 8:51 a.m.14 views

CVE-2024-45097

IBM Aspera Faspex 5.0.0 through 5.0.9 could allow a user to bypass intended access restrictions and conduct resource modification...

7.1CVSS6.7AI score0.00308EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:44 a.m.8 views

CVE-2024-45098

IBM Aspera Faspex 5.0.0 through 5.0.9 could allow a user to bypass intended access restrictions and conduct resource modification...

8.1CVSS6.7AI score0.00354EPSS
Exploits0References1
Rows per page
Query Builder