Lucene search
K

15 matches found

EUVD
EUVD
added 2026/06/21 5:15 a.m.12 views

EUVD-2026-38144

A vulnerability was found in AOMEI Dynamic Disk Manager up to 10.10.1. This issue affects some unknown processing in the library ddmdrv.sys of the component Kernel Driver. Performing a manipulation results in improper access controls. The attack must be initiated from a local position. The exploi...

8.5CVSS5.3AI score0.00113EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/05/15 7:57 p.m.19 views

CVE-2026-42031

CKAN is an open-source DMS data management system for powering data hubs and data portals. Prior to 2.10.10 and 2.11.5, a vulnerability in datastoresearchsql allowed attackers to inject SQL in order to gain access to private resources and PostgreSQL system information This vulnerability is fixed ...

9.8CVSS5.9AI score0.01815EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 7:17 p.m.18 views

CVE-2026-42031

CKAN is an open-source DMS data management system for powering data hubs and data portals. Prior to 2.10.10 and 2.11.5, a vulnerability in datastoresearchsql allowed attackers to inject SQL in order to gain access to private resources and PostgreSQL system information This vulnerability is fixed ...

9.8CVSS0.01815EPSS
Exploits0References1
OSV
OSV
added 2025/10/16 9:30 a.m.8 views

GHSA-6Q7M-P8CC-998R Mattermost has a Missing Authorization vulnerability

Mattermost versions 10.11.x = 10.11.1, 10.10.x = 10.10.2, 10.5.x = 10.5.10 fail to verify a user has permission to join a Mattermost team using the original invite token which allows any attacked to join any team on a Mattermost server regardless of restrictions via manipulating the OAuth state...

8.1CVSS6.9AI score0.00388EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/10/16 12:0 a.m.7 views

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. A security vulnerability in Mattermost versions 10.11.1 and prior to 10.11.x, 10.10.2 and prior to 10.10.x, and 10.5.10 and prior to 10.5.x stems from a failure to validate that a user has the privileg...

8.1CVSS6.5AI score0.00314EPSS
Exploits0References1
CVE
CVE
added 2025/09/15 10:6 a.m.25 views

CVE-2025-9076

Mattermost Server (10.10.x, affected

6.5CVSS6.3AI score0.00242EPSS
Exploits0References1Affected Software1
Github Security Blog
Github Security Blog
added 2025/08/21 6:31 p.m.8 views

Mattermost has Potential Server Crash due to Unvalidated Import Data

Mattermost versions 10.8.x = 10.8.3, 10.5.x = 10.5.8, 9.11.x = 9.11.17, 10.10.x = 10.10.0, 10.9.x = 10.9.3 fail to validate import data which allows a system admin to crash the server via the bulk import feature...

4.9CVSS7AI score0.00299EPSS
Exploits0References4Affected Software4
CNNVD
CNNVD
added 2025/08/21 12:0 a.m.6 views

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. A security vulnerability exists in Mattermost versions 10.8.3 and prior to 10.8.x, 10.5.8 and prior to 10.5.x, 10.10.0 and prior to 10.10.x, and 10.9.3 and prior to 10.9.x, which stems from an un-clean...

4.3CVSS6.3AI score0.00698EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/21 12:0 a.m.7 views

PT-2025-34258 · Mattermost · Mattermost

Name of the Vulnerable Software and Affected Versions: Mattermost versions 10.8.x through 10.8.3 Mattermost versions 10.5.x through 10.5.8 Mattermost versions 10.10.x through 10.10.0 Mattermost versions 10.9.x through 10.9.3 Description: The application fails to sanitize file names, potentially...

4.3CVSS7.2AI score0.00698EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-52970

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MariaDB Server 10.4 through 10.5., 10.6 through 10.6., 10.7 through 10.11., 11.0 through 11.0., and 11.1 through 11.4. crashes in...

4.9CVSS6.6AI score0.00423EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/11/02 10:15 p.m.4 views

CVE-2023-39051

An information leak in VISION MEAT WORKS Track Diner 10/10mbl v13.6.1 allows attackers to obtain the channel access token and send crafted messages...

7.5CVSS7.1AI score0.0062EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/10/31 2:31 a.m.4 views

SUSE CVE-2020-1721

A flaw was found in the Key Recovery Authority KRA Agent Service in pki-core 10.10.5 where it did not properly sanitize the recovery ID during a key recovery request, enabling a reflected cross-site scripting XSS vulnerability. An attacker could trick an authenticated victim into executing...

6.1CVSS6AI score0.00981EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:43 a.m.7 views

SUSE CVE-2017-10689

In previous versions of Puppet Agent it was possible to install a module with world writable permissions. Puppet Agent 5.3.4 and 1.10.10 included a fix to this vulnerability...

5CVSS8.9AI score0.00363EPSS
Exploits0References5
OSV
OSV
added 2017/12/31 12:0 a.m.5 views

UBUNTU-CVE-2017-10689

In previous versions of Puppet Agent it was possible to install a module with world writable permissions. Puppet Agent 5.3.4 and 1.10.10 included a fix to this vulnerability...

5.5CVSS6.3AI score0.00363EPSS
Exploits0References5
CNVD
CNVD
added 2015/08/18 12:0 a.m.18 views

Apple Mac OS X Fake Time Vulnerability

Apple OS X is a BSD-based operating system distributed by Apple. A security vulnerability exists in Apple OS X versions prior to 10.10.5, which can be exploited by a local attacker to forge time via an access panel...

2.1CVSS6.4AI score0.00339EPSS
Exploits0References1
Rows per page
Query Builder