Lucene search
K

150 matches found

Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.6 views

PT-2026-28067

Kiteworks is a private data network PDN. In Kiteworks Secure Data Forms prior to version 9.2.1, the manager of a form could potentially exploit an Unrestricted Upload of File with Dangerous Type due to a missing validation. Upgrade Kiteworks to version 9.2.1 or later to receive a patch...

5.5CVSS5.8AI score0.00988EPSS
Exploits0References2
NVD
NVD
added 2026/03/17 11:16 p.m.5 views

CVE-2026-22727

Unprotected internal endpoints in Cloud Foundry Capi Release 1.226.0 and below, and CF Deployment v54.9.0 and below on all platforms allows any user who has bypassed the firewall to potentially replace droplets and therefore applications allowing them to access secure application information...

7.5CVSS0.00199EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/17 12:0 a.m.11 views

PT-2026-25958

Unprotected internal endpoints in Cloud Foundry Capi Release 1.226.0 and below, and CF Deployment v54.9.0 and below on all platforms allows any user who has bypassed the firewall to potentially replace droplets and therefore applications allowing them to access secure application information...

7.5CVSS5.8AI score0.00199EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2026/02/26 12:0 a.m.3 views

A High-Throughput AES-GCM Implementation on GPUs for Secure, Policy-Based Access to Massive Astronomical Catalogs

The era of large astronomical surveys generates massive image catalogs requiring efficient and secure access, particularly during pre-publication periods where data confidentiality and integrity are paramount. While Findable, Accessible, Interoperable, and Reusable FAIR principles guide the...

6.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/17 10:2 a.m.5 views

CVE-2025-62862

Ampere AmpereOne AC03 devices before 3.5.9.3, AmpereOne AC04 devices before 4.4.5.2, and AmpereOne M devices before 5.4.5.1 allow an incorrectly formed SMC call to UEFI-MM Boot Error Record Table driver that could result in 1 an out-of-bounds read which leaks Secure-EL0 information to a process...

4.6CVSS6.8AI score0.00105EPSS
Exploits0References1
CVE
CVE
added 2025/12/16 12:0 a.m.8 views

CVE-2025-62862

CVE-2025-62862 concerns AmpereOne AC03 (before 3.5.9.3), AC04 (before 4.4.5.2), and M (before 5.4.5.1). The root cause is an incorrectly formed SMC call to the UEFI-MM Boot Error Record Table driver, enabling (1) out-of-bounds reads that may leak Secure-EL0 information to Non-Secure state, or (2)...

4.6CVSS6.4AI score0.00105EPSS
Exploits0References2Affected Software1
Mageia
Mageia
added 2025/11/12 5:8 p.m.8 views

Updated unbound packages fix security vulnerability

Several multi-vendor cache poisoning vulnerabilities have been discovered in caching resolvers for non-DNSSEC protected data. Unbound is vulnerable for some of these cases that could lead to domain hijacking CVE-2025-11411...

7.1CVSS6.7AI score0.00311EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2003-0030

Malware in sbrugna...

10CVSS6.4AI score0.04751EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2015-7607

Malware in sbrugna...

6.1CVSS6.3AI score0.01498EPSS
Exploits3References6
RedhatCVE
RedhatCVE
added 2025/05/22 11:31 p.m.5 views

CVE-2022-1726

Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to 1.20.2. Disclosing session cookies, disclosing secure session data, exfiltrating data to third-parties...

6.8CVSS6AI score0.00717EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/05/19 5:30 a.m.2 views

Malicious code in secure-data-checker (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9b4c358b5a571c99b8b2f4b94a39729183ea9d5498e9407722a73f366bacd2b0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSV
OSV
added 2025/05/19 5:30 a.m.1 views

MAL-2025-4021 Malicious code in secure-data-checker (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9b4c358b5a571c99b8b2f4b94a39729183ea9d5498e9407722a73f366bacd2b0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/05/19 12:0 a.m.4 views

DeFeed: Secure Decentralized Cross-Contract Data Feed in Web 3.0 for Connected Autonomous Vehicles

Smart contracts have been a topic of interest in blockchain research and are a key enabling technology for Connected Autonomous Vehicles CAVs in the era of Web 3.0. These contracts enable trustless interactions without the need for intermediaries, as they operate based on predefined rules encoded...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/28 12:0 a.m.2 views

The Dark Side of Digital Twins: Adversarial Attacks on AI-Driven Water Forecasting

Digital twins DTs are improving water distribution systems by using real-time data, analytics, and prediction models to optimize operations. This paper presents a DT platform designed for a Spanish water supply network, utilizing Long Short-Term Memory LSTM networks to predict water consumption...

7AI score
Exploits0
Cvelist
Cvelist
added 2025/04/18 7:1 a.m.22 views

CVE-2025-38575 ksmbd: use aead_request_free to match aead_request_alloc

In the Linux kernel, the following vulnerability has been resolved: ksmbd: use aeadrequestfree to match aeadrequestalloc Use aeadrequestfree instead of kfree to properly free memory allocated by aeadrequestalloc. This ensures sensitive crypto data is zeroed before being freed...

0.00219EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/12/28 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a mutual exclusion lock protection issue with SDB memory allocation in the s390/cpumsf subsystem...

6.3CVSS5.8AI score0.00159EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2024/08/16 7:0 a.m.5 views

s390/pkey: Wipe sensitive data on failure

...

4.1CVSS7.3AI score0.0022EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/06/21 3:52 a.m.3 views

SUSE CVE-2021-47614

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix a user-after-free in addpbleprm When irdmahmcsdone fails, 'chunk' is freed while its still on the PBLE info list. Add the chunk entry to the PBLE info list only after successful setting of the SD in irdmahmcsdone...

6.7CVSS6.5AI score0.00217EPSS
Exploits0References8
HackRead
HackRead
added 2024/04/02 10:33 a.m.10 views

Top 3 Cybersecurity Tools to Protect Business Data

By Uzair Amir Discover the top three cybersecurity tools designed to safeguard your business data from online threats and breaches, ensuring secure data transfer. This is a post from HackRead.com Read the original post: Top 3 Cybersecurity Tools to Protect Business Data...

7.2AI score
Exploits0
Wallarm Lab
Wallarm Lab
added 2023/10/24 4:54 a.m.15 views

Application Layer Gateway (ALG) Explained: What it is & Why You Need it ?

Snippet When you hear "Application Layer Gateway," or ALG for short, think of it as a network traffic conductor. It's the unsung hero that examines data packets, making sure they follow specific rules and get to where they're supposed to go—securely and efficiently. Quick Facts Definition In the...

7.5AI score
Exploits0
Rows per page
Query Builder