Lucene search
K

2259 matches found

Wiz blog
Wiz blog
added 2024/12/09 12:0 p.m.9 views

Authorized Agility: Wiz adds Code Security in the FedRAMP offering (Wiz for Gov)

Wiz is excited to announce the addition of Wiz Code into our Wiz for Gov offering, enabling organizations to visualize attack paths from cloud-to-code and bring guardrails into the software development lifecycle...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2024/12/02 2:11 p.m.6 views

A Guide to Securing AI App Development: Join This Cybersecurity Webinar

Artificial Intelligence AI is no longer a far-off dream—it's here, changing the way we live. From ordering coffee to diagnosing diseases, it's everywhere. But while you're creating the next big AI-powered app, hackers are already figuring out ways to break it. Every AI app is an opportunity—and a...

7.3AI score
Exploits0
HackRead
HackRead
added 2024/11/29 3:32 p.m.10 views

How Python Software Development Enhances Cyber Defense

Python has emerged as a powerful ally in combating rising cybersecurity threats and tracking cybercrime through tools leveraging…...

7.3AI score
Exploits0
CNVD
CNVD
added 2024/11/29 12:0 a.m.3 views

Denial of Service Vulnerability in XunRuiCMS of Sichuan Xunruiyun Software Development Co.

XunRuiCMS is a content management framework based on CodeIgniter4. Sichuan XunRuiCloud Software Development Co., Ltd. XunRuiCMS has a denial-of-service vulnerability that can be exploited by an attacker to cause the contents of a file to be emptied, resulting in a denial of service...

7AI score
Exploits0
CNNVD
CNNVD
added 2024/11/22 12:0 a.m.5 views

Panda Security Dome 安全漏洞

Panda Security Dome is an antivirus product for ransomware and spyware from the Spanish company Panda Security. A security vulnerability exists in Panda Security Dome that stems from a lack of proper permission settings for folders created by the Hydra Sdk Windows service, which could allow a loc...

7.8CVSS7AI score0.00209EPSS
Exploits0References1
OSV
OSV
added 2024/11/18 10:15 p.m.5 views

CVE-2024-21287

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain component: Software Development Kit, Process Extension. The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracl...

7.5CVSS7.3AI score0.01496EPSS
Exploits0References2
NVD
NVD
added 2024/11/07 4:15 a.m.14 views

CVE-2024-10946

A vulnerability classified as critical has been found in Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System up to 2.0.1. This affects an unknown part of the file...

7.2CVSS0.00537EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/11/07 3:31 a.m.43 views

CVE-2024-10947 Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System BatchOrder sql injection

A vulnerability classified as critical was found in Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System up to 2.0.1. This vulnerability affects unknown code of the file /interlib/order/BatchOrder?cmdACT=adminorder&xsl=adminOrderOrderList.xsl. The...

5.8CVSS7.7AI score0.00537EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/11/07 3:31 a.m.19 views

CVE-2024-10946 Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System SysLib sql injection

A vulnerability classified as critical has been found in Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System up to 2.0.1. This affects an unknown part of the file...

5.8CVSS0.00537EPSS
Exploits1References4
OSV
OSV
added 2024/10/25 5:16 p.m.21 views

RLSA-2024:8117 Moderate: java-1.8.0-openjdk security update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function CVE-2023-48161 JDK: Array indexing integer overflow 8328544 CVE-2024-21210 JD...

7.1CVSS6AI score0.01157EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2024/10/21 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2024:3717-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS5.2AI score0.00395EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/10/16 3:58 p.m.36 views

Moderate: Red Hat Security Advisory: java-17-openjdk security update

An update for java-17-openjdk is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions, Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, Red Hat Enterprise Linux 8.6 Telecommunications...

7.1CVSS6.7AI score0.01157EPSS
Exploits1References6
OSV
OSV
added 2024/10/16 12:31 p.m.3 views

MAL-2024-9503 Malicious code in api-extractor-model (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
AlmaLinux
AlmaLinux
added 2024/10/16 12:0 a.m.33 views

Moderate: java-1.8.0-openjdk security update

The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security Fixes: giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function CVE-2023-48161 JDK: Array indexing integer overflow 8328544 CVE-2024-21210 JD...

7.1CVSS7AI score0.01157EPSS
Exploits1References12
OpenVAS
OpenVAS
added 2024/10/14 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2024:3596-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS7AI score0.01249EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2024/10/10 12:0 a.m.15 views

SUSE: Security Advisory (SUSE-SU-2024:3586-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.00548EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2024/10/10 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2024:3570-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.62269EPSS
Exploits14References5
NVD
NVD
added 2024/10/08 6:15 p.m.4 views

CVE-2024-35215

NULL pointer dereference in IP socket options processing of the Networking Stack in QNX Software Development Platform SDP versions 7.1 and 7.0 could allow an attacker with local access to cause a denial-of-service condition in the context of the Networking Stack process...

6.2CVSS0.00162EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/08 5:35 p.m.12 views

CVE-2024-35215

NULL pointer dereference in IP socket options processing of the Networking Stack in QNX Software Development Platform SDP versions 7.1 and 7.0 could allow an attacker with local access to cause a denial-of-service condition in the context of the Networking Stack process...

6.2CVSS0.00162EPSS
Exploits0References1
CVE
CVE
added 2024/10/08 5:35 p.m.38 views

CVE-2024-35215

The CVE-2024-35215 issue affects QNX Software Development Platform (SDP) 7.0 and 7.1, where a NULL pointer dereference in the IP socket options processing of the Networking Stack can allow a local attacker to cause a denial-of-service in the Networking Stack process. This is the explicit root cau...

6.2CVSS6.7AI score0.00162EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder