Lucene search
K

12634 matches found

OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-33594 Malicious code in socket-test-vulnerable (npm)

The package socket-test-vulnerable was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.3 views

MAL-2025-29680 Malicious code in process-compress-nu-code-socket (npm)

The package process-compress-nu-code-socket was found to contain malicious code...

7.2AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.4 views

MAL-2025-33593 Malicious code in socket-tau-psi-daemon-upsilon (npm)

The package socket-tau-psi-daemon-upsilon was found to contain malicious code...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.6 views

Malicious code in client-connector-socket.io (npm)

The package client-connector-socket.io was found to contain malicious code...

7AI score
Exploits0
Cvelist
Cvelist
added 2025/08/14 4:28 p.m.10 views

CVE-2025-20134 Cisco Adaptive Security Appliance and Firepower Threat Defense Software SSL/TLS Certificate Denial of Service Vulnerability

A vulnerability in the certificate processing of Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service DoS...

8.6CVSS0.00371EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 4:28 p.m.62 views

CVE-2025-20134

CVE-2025-20134 affects Cisco Secure Firewall ASA/FTD software. The issue stems from improper parsing of SSL/TLS certificates in the certificate processing stack, which can be triggered by sending crafted DNS packets that match a static NAT rule with DNS inspection enabled. An unauthenticated, rem...

8.6CVSS6.7AI score0.00371EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 1:39 p.m.16 views

CVE-2025-9036

Rockwell Automation FactoryTalk Action Manager (v1.0.0 Runtime) is affected by a vulnerability in its runtime event system that permits unauthenticated local access to a reusable API token. The token is broadcast over a WebSocket and can be intercepted by any local client listening on the connect...

8.5CVSS7.1AI score0.0015EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/08/12 8:35 a.m.3 views

openjdk: Enhance TLS protocol support (Oracle CPU 2025-07)

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15, 21.0.7 and 24.0....

4.8CVSS7.2AI score0.00381EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2022-50172

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mt76: mt76x02u: fix possible memory leak in mt76x02umcusendmsg Free the skb if mt76ubulkmsg fails in mt76x02umcusendmsg routine. CVE-2022-50172 Note that Nessus...

5.5CVSS6.3AI score0.00197EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-3977

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free flaw was found in the Linux kernel MCTP Management Component Transport Protocol functionality. This issue occurs when a user simultaneously cal...

7.8CVSS6.5AI score0.0025EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2024-26864

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: tcp: Fix refcnt handling in inethashconnect. syzbot reported a warning in...

5.9CVSS5.8AI score0.00761EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/12 12:0 a.m.3 views

Microsoft Windows Ancillary Function Driver for WinSock 资源管理错误漏洞

Microsoft Windows Ancillary Function Driver for WinSock is a helper function driver for Winsock from Microsoft Corporation USA. A resource management error vulnerability exists in Microsoft Windows Ancillary Function Driver for WinSock. An attacker could exploit the vulnerability to elevate...

7CVSS6.3AI score0.00413EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-52636

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: libceph: just wait for more data to be available on the socket A short read may occur while...

5.5CVSS5.8AI score0.00225EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-20268

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds access flaw was found in the Linux kernel's implementation of the eBPF code verifier in the way a user running the eBPF script calls...

7.8CVSS6.5AI score0.00321EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-26636

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - llc: make llcuisendmsg more robust against bonding changes syzbot was able to trick llcuisendmsg, allocating an skb with no headroom, but subsequently trying to...

5.5CVSS6.6AI score0.0024EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38154

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Avoid using sksocket after free when sending The sk-sksocket is not locked or...

7.8CVSS6.1AI score0.00154EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-18509

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before 4.11. By setting a specific socket option, an attacker can control a pointer in kernel la...

7.8CVSS7.1AI score0.00839EPSS
Exploits1References2
OSV
OSV
added 2025/08/11 1:52 p.m.4 views

BIT-LIBPYTHON-2024-12254 Unbounded memory buffering in SelectorSocketTransport.writelines()

Starting in Python 3.12.0, the asyncio.SelectorSocketTransport.writelines method would not "pause" writing and signal to the Protocol to drain the buffer to the wire once the write buffer reached the "high-water mark". Because of this, Protocols would not periodically drain the write buffer...

8.7CVSS7.2AI score0.0188EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2025/08/11 11:24 a.m.7 views

kernel: wifi: ath12k: fix invalid access to memory

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix invalid access to memory In ath12kdprxmsducoalesce, rxcb is fetched from skb and boolean iscontinuation is part of rxcb. Currently, after freeing the skb, the rxcb-iscontinuation accessed again which is wrong...

7.1CVSS6.8AI score0.00153EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/08/11 9:43 a.m.1 views

kernel: ipv6: mcast: extend RCU protection in igmp6_send()

In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: extend RCU protection in igmp6send igmp6send can be called without RTNL or RCU being held. Extend RCU protection so that we can safely fetch the net pointer and avoid a potential UAF. Note that we no longer can use...

7.8CVSS6.8AI score0.07007EPSS
Exploits0References5
Rows per page
Query Builder