Lucene search
K

13 matches found

NVD
NVD
added 2025/12/10 11:15 p.m.4 views

CVE-2025-67505

Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another...

8.4CVSS0.00181EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/10 10:19 p.m.2 views

CVE-2025-67505 Race condition in the Okta Java SDK

Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another...

8.4CVSS6.5AI score0.00181EPSS
Exploits0References2
OSV
OSV
added 2025/12/10 10:19 p.m.5 views

CVE-2025-67505 Race condition in the Okta Java SDK

Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another...

8.4CVSS6.8AI score0.00181EPSS
Exploits0References4
CVE
CVE
added 2025/05/06 3:55 p.m.70 views

CVE-2025-22478

Dell Storage Center / Dell Storage Manager version 20.1.20 is affected by an XML External Entity (XXE) vulnerability caused by improper restriction of external entity references in XML processing. An unauthenticated attacker with adjacent network access could trigger information disclosure and da...

8.1CVSS8AI score0.00235EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2025/03/11 6:15 p.m.2 views

CVE-2025-27178

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00257EPSS
Exploits0References2
OSV
OSV
added 2025/03/11 6:15 p.m.3 views

CVE-2025-27175

InDesign Desktop versions ID20.1, ID19.5.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00258EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.4 views

Adobe InDesign 代码问题漏洞

Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. A null pointer dereference vulnerability exists in Adobe InDesign ID20.1, ID19.5.2 and earlier versions, which can be exploited by an attacker to cause a denial of service in the application...

5.5CVSS6.4AI score0.00229EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/09/18 12:15 p.m.4 views

CVE-2024-5682

Improper Restriction of Excessive Authentication Attempts vulnerability in Yordam Information Technology Yordam Library Automation System allows Interface Manipulation. This issue affects Yordam Library Automation System: before 20.1...

6.9CVSS5.8AI score0.00376EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/09/25 12:0 a.m.5 views

Accusoft ImageGear Buffer Error Vulnerability

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft Corporation, USA. A security vulnerability exists in Accusoft ImageGear version 20.1, which stems from a specially crafted, incorrectly formatted file that may result in memory corruption...

9.8CVSS6.8AI score0.00707EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/09/25 12:0 a.m.6 views

PT-2023-27299 · Accusoft · Accusoft Imagegear

Name of the Vulnerable Software and Affected Versions: Accusoft ImageGear version 20.1 Description: An out-of-bounds write issue exists in the allocate buffer for jpeg decoding functionality. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious fil...

9.8CVSS9AI score0.0097EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2023/07/31 8:15 p.m.3 views

CVE-2022-42183

Precisely Spectrum Spatial Analyst 20.01 is vulnerable to Server-Side Request Forgery SSRF...

9.1CVSS5.8AI score0.00686EPSS
Exploits1References3
OSV
OSV
added 2021/10/19 7:15 p.m.5 views

CVE-2021-0298

A Race Condition in the 'show chassis pic' command in Juniper Networks Junos OS Evolved may allow an attacker to crash the port interface concentrator daemon picd process on the FPC, if the command is executed coincident with other system events outside the attacker's control, leading to a Denial...

4.7CVSS5.9AI score0.00167EPSS
Exploits0References1
OSV
OSV
added 2021/02/05 2:15 p.m.3 views

CVE-2020-10538

An issue was discovered in Epikur before 20.1.1. It stores the secret passwords of the users as MD5 hashes in the database. MD5 can be brute-forced efficiently and should not be used for such purposes. Additionally, since no salt is used, rainbow tables can speed up the attack...

5.5CVSS5.7AI score0.0026EPSS
Exploits1References1
Rows per page
Query Builder