Lucene search
K

438 matches found

OSV
OSV
added 2025/12/08 1:49 a.m.1 views

CGA-J785-GC4J-H29V

Bulletin has no description...

7.5CVSS6.9AI score0.00459EPSS
Exploits2
OSV
OSV
added 2025/12/05 12:14 p.m.3 views

MINI-Q43G-GQ7W-M294

Bulletin has no description...

7.5CVSS6.9AI score0.00459EPSS
Exploits2
OSV
OSV
added 2025/12/02 2:15 a.m.2 views

CVE-2025-58475

Improper input validation in libsec-ril.so prior to SMR Dec-2025 Release 1 allows local privileged attackers to write out-of-bounds memory...

4.4CVSS5.8AI score
Exploits0References1
CVE
CVE
added 2025/12/02 1:24 a.m.13 views

CVE-2025-58475

The CVE-2025-58475 entry concerns improper input validation in libsec-ril.so prior to Samsung SMR Dec-2025 Release 1, which allows a local privileged attacker to write out-of-bounds memory. Affected component: libsec-ril.so (pre-December 2025 patch level). Root cause: input validation flaw leadin...

5.6CVSS6.1AI score0.00105EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/11/28 3:36 a.m.2 views

MINI-G88W-HJ6R-4WPX

Bulletin has no description...

6.5CVSS6.9AI score0.00478EPSS
Exploits0
OSV
OSV
added 2025/11/28 3:16 a.m.5 views

CVE-2025-58316

DoS vulnerability in the video-related system service module. Impact: Successful exploitation of this vulnerability may affect availability...

5.5CVSS5.8AI score0.00064EPSS
Exploits0References1
OSV
OSV
added 2025/11/24 10:12 a.m.2 views

ECHO-FE41-738D-E691

Bulletin has no description...

7.5CVSS6.9AI score0.00361EPSS
Exploits0References1
OSV
OSV
added 2025/11/21 3:59 p.m.7 views

JLSEC-2025-200 Arm Mbed TLS before 2.16.5 allows attackers to obtain sensitive information (an RSA private key) by ...

Arm Mbed TLS before 2.16.5 allows attackers to obtain sensitive information an RSA private key by measuring cache usage during an import...

5.9CVSS7.1AI score0.0163EPSS
Exploits0References8
OSV
OSV
added 2025/11/21 3:59 p.m.5 views

JLSEC-2025-213 An issue was discovered in Mbed TLS before 2.25.0 (and before 2.16.9 LTS and before 2.7.18 LTS)

An issue was discovered in Mbed TLS before 2.25.0 and before 2.16.9 LTS and before 2.7.18 LTS. A NULL algorithm parameters entry looks identical to an array of REAL size zero and thus the certificate is considered valid. However, if the parameters do not match in any way, then the certificate...

7.5CVSS7.4AI score0.0118EPSS
Exploits1References14
Packet Storm News
Packet Storm News
added 2025/11/20 12:0 a.m.2 views

GNU Transport Layer Security Library 3.8.11

GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS 12, OpenPGP, and other...

6.9AI score0.00203EPSS
Exploits0
OSV
OSV
added 2025/11/18 3:16 p.m.8 views

CVE-2025-59114

Windu CMS is vulnerable to Cross-Site Request Forgery in file uploading functionality. Malicious attacker can craft special website, which when visited by the victim, will automatically send malicious file to the server. Only version 4.1 was tested and confirmed as vulnerable. This issue was fixe...

6.5CVSS5.8AI score0.00154EPSS
Exploits0References2
OSV
OSV
added 2025/11/18 5:16 a.m.2 views

CVE-2025-48593

In btahfclientcbinit of btahfclientmain.cc, there is a possible remote code execution due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

8CVSS8AI score0.00911EPSS
Exploits4References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/21 10:58 a.m.11 views

Security Bulletin: IBM App Connect Enterprise Certified Container IntegrationServer and IntegrationRuntime operands are vulnerable to denial of service [CVE-2025-8885], [CVE-2025-8916]

Summary Bouncycastle bcprov is used by IBM App Connect Enterprise Certified Container. IBM App Connect Enterprise Certified Container IntegrationServer and IntegrationRuntime operands are vulnerable to denial of service. This bulletin provides patch information to address the reported...

6.3CVSS6.3AI score0.00505EPSS
Exploits0Affected Software1
OSV
OSV
added 2025/10/14 5:15 p.m.4 views

CVE-2025-48813

Use of a key past its expiration date in Virtual Secure Mode allows an authorized attacker to perform spoofing locally...

4.7CVSS5.7AI score0.00227EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-1430

Malware in sbrugna...

5.1CVSS6AI score0.08057EPSS
Exploits0References24
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2021-2753

Malicious code in bioql PyPI...

4.9CVSS5.4AI score0.00825EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-2752

Malicious code in bioql PyPI...

8.1CVSS8AI score0.0085EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-2750

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.0081EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2021-2751

Malicious code in bioql PyPI...

4.9CVSS5.4AI score0.00825EPSS
Exploits0References1
CVE
CVE
added 2025/09/30 1:17 p.m.31 views

CVE-2025-9231

CVE-2025-9231 describes a timing side-channel in OpenSSL’s SM2 implementation on 64-bit ARM, which could allow remote recovery of the private key under a custom provider scenario. OpenSSL TLS with SM2 certificates is not common, but the issue is considered Moderate. Connected advisories show affe...

6.5CVSS6.3AI score0.02234EPSS
Exploits0References10
Rows per page
Query Builder