Lucene search
K

5784 matches found

Cisco
Cisco
added 2025/09/03 4:0 p.m.9 views

Cisco Unified Communications Manager Cross-Site Request Forgery Vulnerability

A vulnerability in the web-based management interface of Cisco Unified Communications Manager Unified CM Software and Cisco Unified CM Session Management Edition SME Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack on an affected device...

4.3CVSS7AI score0.00167EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/27 4:0 p.m.7 views

Cisco Integrated Management Controller Virtual Keyboard Video Monitor Stored Cross-Site Scripting Vulnerability

A vulnerability in the Virtual Keyboard Video Monitor vKVM connection handling of Cisco Integrated Management Controller IMC could allow an authenticated, remote attacker with low privileges to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability is...

5.4CVSS6AI score0.00205EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/27 4:0 p.m.9 views

Cisco NX-OS Software Sensitive Log Information Disclosure Vulnerability

A vulnerability in the logging feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches, Cisco Nexus 9000 Series Switches in standalone NX-OS mode, Cisco UCS 6400 Fabric Interconnects, Cisco UCS 6500 Series Fabric Interconnects, and Cisco UCS 9108 100G Fabric Interconnects could allow...

5.5CVSS6.3AI score0.00126EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/27 4:0 p.m.12 views

Cisco Nexus 3000 and 9000 Series Switches Protocol Independent Multicast Version 6 Denial of Service Vulnerability

A vulnerability in the Protocol Independent Multicast Version 6 PIM6 feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, low-privileged, remote attacker to trigger a crash of the PIM6 process, resulting in a denia...

5CVSS7.3AI score0.00324EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/27 4:0 p.m.6 views

Cisco Nexus Dashboard Path Traversal Vulnerability

A vulnerability in the backup restore functionality of Cisco Nexus Dashboard could allow an authenticated, remote attacker to conduct a path traversal attack on an affected device. This vulnerability is due to insufficient validation of the contents of a backup file. An attacker with valid...

6.5CVSS7.3AI score0.0055EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/27 4:0 p.m.5 views

Cisco NX-OS Software Command Injection Vulnerability

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute a command injection attack on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid user credentials on the affected device. This...

4.4CVSS7.5AI score0.03221EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/27 4:0 p.m.7 views

Cisco Nexus 3000 and 9000 Series Switches Intermediate System-to-Intermediate System Denial of Service Vulnerability

A vulnerability in the Intermediate System-to-Intermediate System IS-IS feature of Cisco NX-OS Software for Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, adjacent attacker to cause the IS-IS process to unexpectedly...

7.4CVSS7.2AI score0.00266EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/22 12:0 a.m.6 views

PT-2025-34314

Name of the Vulnerable Software and Affected Versions: Liferay Portal versions 7.4.0 through 7.4.3.132 Liferay DXP versions 2025.Q1.0 through 2025.Q1.4 Liferay DXP versions 2024.Q4.0 through 2024.Q4.7 Liferay DXP versions 2024.Q3.1 through 2024.Q3.13 Liferay DXP versions 2024.Q2.0 through...

6.5CVSS6.5AI score0.00288EPSS
Exploits0References14
Microsoft KB
Microsoft KB
added 2025/08/21 7:0 a.m.48 views

July 8, 2025—KB5062557 (OS Build 17763.7558)

July 8, 2025—KB5062557 OS Build 17763.7558 Windows Secure Boot certificate expirationImportant: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. Microsoft has been updating these certificates on consumer and non-managed business devices for the past...

8.8CVSS7.1AI score0.06859EPSS
Exploits5
Microsoft KB
Microsoft KB
added 2025/08/21 7:0 a.m.25 views

July 8, 2025—KB5062560 (OS Build 14393.8246)

July 8, 2025—KB5062560 OS Build 14393.8246 Windows Secure Boot certificate expirationImportant: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. Microsoft has been updating these certificates on consumer and non-managed business devices for the past...

8.8CVSS7.2AI score0.01916EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.4 views

TencentOS Server 3: java-21-openjdk (TSSA-2025:0691)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0691 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.6CVSS6.6AI score0.01058EPSS
Exploits1References5
Cisco
Cisco
added 2025/08/20 4:0 p.m.6 views

Cisco Identity Services Engine Arbitrary File Upload Vulnerability

A vulnerability in the GUI of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker with administrative privileges to upload files to an affected device. This vulnerability is due to improper validation of the file copy function. An attacker could exploit this...

4.9CVSS7.2AI score0.0028EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/17 7:14 p.m.17 views

CVE-2025-43490

A potential security vulnerability has been identified in the HPAudioAnalytics service included in the HP Hotkey Support software, which might allow escalation of privilege. HP is releasing software updates to mitigate the potential vulnerability...

8.4CVSS7.6AI score0.0015EPSS
Exploits0References1
NVD
NVD
added 2025/08/15 7:15 p.m.7 views

CVE-2025-43490

A potential security vulnerability has been identified in the HPAudioAnalytics service included in the HP Hotkey Support software, which might allow escalation of privilege. HP is releasing software updates to mitigate the potential vulnerability...

8.4CVSS0.0015EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/15 6:40 p.m.4 views

CVE-2025-43490 HP Hotkey Support – Escalation of Privilege

A potential security vulnerability has been identified in the HPAudioAnalytics service included in the HP Hotkey Support software, which might allow escalation of privilege. HP is releasing software updates to mitigate the potential vulnerability...

8.4CVSS7.5AI score0.0015EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/15 6:40 p.m.12 views

CVE-2025-43490 HP Hotkey Support – Escalation of Privilege

A potential security vulnerability has been identified in the HPAudioAnalytics service included in the HP Hotkey Support software, which might allow escalation of privilege. HP is releasing software updates to mitigate the potential vulnerability...

8.4CVSS0.0015EPSS
Exploits0References1
Hewlett-Packard
Hewlett-Packard
added 2025/08/15 12:0 a.m.18 views

HP Hotkey Support – Escalation of Privilege

A potential security vulnerability has been identified in the HPAudioAnalytics service included in the HP Hotkey Support software, which might allow escalation of privilege. HP is releasing software updates to mitigate the potential vulnerability. HP has identified affected platforms and...

8.4CVSS6.6AI score0.0015EPSS
Exploits0Affected Software221
Cisco
Cisco
added 2025/08/14 4:0 p.m.6 views

Cisco Secure Firewall Management Center Software Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center FMC Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of...

6.1CVSS6.3AI score0.00273EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/14 4:0 p.m.6 views

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 3100 and 4200 Series TLS 1.3 Cipher Denial of Service Vulnerability

A vulnerability in the TLS 1.3 implementation for a specific cipher for Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software for Cisco Firepower 3100 and 4200 Series devices could allow an authenticated, remote attacker to consume...

7.7CVSS7.3AI score0.00577EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/14 4:0 p.m.9 views

Cisco IOS, IOS XE, Secure Firewall Adaptive Security Appliance, and Secure Firewall Threat Defense Software IKEv2 Denial of Service Vulnerabilities

Multiple vulnerabilities in the Internet Key Exchange Version 2 IKEv2 feature of Cisco IOS Software, Cisco IOS XE Software, Cisco Secure Firewall Adaptive Security Appliance ASA Software, and Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to...

8.6CVSS7.4AI score0.0063EPSS
Exploits0References1
Rows per page
Query Builder