Lucene search
K

64 matches found

Vulnrichment
Vulnrichment
added 2026/06/11 6:47 p.m.9 views

CVE-2025-46315

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.1. An app may be able to access protected user data...

5.4AI score0.0027EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.13 views

AlmaLinux 10 : kernel (ALSA-2026:19569)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:19569 advisory. kernel: net: afcan: do not leave a dangling sk pointer in cancreate CVE-2024-56603 kernel: net/sched: Make cakeenqueue return NETXMITCN when past...

9.8CVSS7.2AI score0.93235EPSS
Exploits45References15
CVE
CVE
added 2026/06/05 4:9 p.m.50 views

CVE-2026-48111

7-Zip versions 9.21–26.00 contain an off-by-one out-of-bounds read in the UEFI DEPEX/PEI DEPEX handling path (ParseDepedencyExpression in UefiHandler.cpp). The code validates an attacker-controlled opcode with > instead of >= against a 10-entry kExpressionCommands array, allowing an opcode ...

7.1CVSS5.4AI score0.00225EPSS
Exploits1References1Affected Software1
EUVD
EUVD
added 2026/06/05 1:51 p.m.12 views

EUVD-2026-34837

7-Zip is a file archiver with a high compression ratio. Versions 9.34 through 26.00 contain a heap memory disclosure via SquashFS fragment offset integer overflow on 32-bit builds. 32-bit integer overflow in the SquashFS ReadBlock function allows an attacker-controlled node.Offset value to bypass...

4.3CVSS5.7AI score0.00324EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2026/06/04 11:4 p.m.8 views

CVE-2026-11029

Insufficient validation of untrusted input in Drag and Drop in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

9.6CVSS5.5AI score0.00233EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.18 views

PT-2026-40828

Name of the Vulnerable Software and Affected Versions OPNsense versions prior to 26.1.7 Description A logic flaw in the lockout handler allows an unauthenticated attacker to continuously reset the authentication failure counter for their IP address. By interjecting a crafted username containing a...

5.3CVSS5.8AI score0.00318EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.15 views

PT-2026-46971

Name of the Vulnerable Software and Affected Versions 7-Zip versions 9.11 through 26.00 Description A heap out-of-bounds read of up to 3 bytes exists in the UDF disc image handler's File Identifier Descriptor parser. In the CFileId::Parse function, an alignment-padding loop reads data to reach a...

4.3CVSS5.6AI score0.00189EPSS
Exploits1References32
CVE
CVE
added 2026/02/18 2:57 p.m.46 views

CVE-2025-15579

CVE-2025-15579 describes an insecure deserialization vulnerability in OpenText Directory Services (versions 10.5–26.1) that enables Object Injection due to deserialization of untrusted data. The underlying issue is the deserialization process, which can lead to remote code execution, denial of se...

9.5CVSS6.2AI score0.00328EPSS
Exploits0References1
Fedora
Fedora
added 2026/02/11 1:0 a.m.5 views

[SECURITY] Fedora 42 Update: rust-onefetch-2.26.1-7.fc42

Command-line Git information tool...

7.5CVSS5.4AI score0.00443EPSS
Exploits1
CVE
CVE
added 2026/01/29 8:46 a.m.21 views

CVE-2026-23566

CVE-2026-23566 affects TeamViewer DEX Client (formerly 1E Client) Content Distribution Service (NomadBranch.exe) on Windows, with vulnerability in the UDP network handler that allows an adjacent-network attacker to inject, tamper with, or forge entries in the Nomad Branch.log. Suspected impact is...

6.5CVSS5.9AI score0.00168EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/29 12:0 a.m.12 views

PT-2026-5257

Name of the Vulnerable Software and Affected Versions TeamViewer DEX Client former 1E Client versions prior to 26.1 Description A flaw exists due to insufficient validation of user-supplied data within the Content Distribution Service NomadBranch.exe of the TeamViewer DEX Client. This allows a...

6.5CVSS5.4AI score0.00696EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : emacs-26.1-9.el8 (AXSA:2023-5965:05)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5965:05 advisory. emacs: ctags local command execution vulnerability CVE-2022-45939 Tenable has extracted the preceding description block directly from the MiracleLinux securi...

7.8CVSS5.7AI score0.00635EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/16 5:6 p.m.4 views

CVE-2025-43508

A logging issue was addressed with improved data redaction. This issue is fixed in macOS Tahoe 26.1. An app may be able to access sensitive user data...

5.5CVSS5.4AI score0.00147EPSS
Exploits0References2
NVD
NVD
added 2025/12/12 9:15 p.m.6 views

CVE-2025-43437

An information disclosure issue was addressed with improved privacy controls. This issue is fixed in iOS 26.1 and iPadOS 26.1. An app may be able to fingerprint the user...

3.3CVSS0.00115EPSS
Exploits0References1
OSV
OSV
added 2025/12/12 9:15 p.m.5 views

CVE-2025-43466

An injection issue was addressed with improved validation. This issue is fixed in macOS Tahoe 26.1. An app may be able to access sensitive user data...

5.5CVSS5.7AI score0.00197EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/12 8:56 p.m.6 views

EUVD-2025-203135

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Tahoe 26.1. A standard user may be able to view files made from a disk image belonging to an administrator...

5.7AI score0.00112EPSS
Exploits0References2
CVE
CVE
added 2025/12/12 8:56 p.m.17 views

CVE-2025-43437

CVE-2025-43437 describes an information disclosure where an app may fingerprint a user, due to privacy control weaknesses. The vulnerability is fixed in iOS 26.1 and iPadOS 26.1. Affected: Apple iOS and iPadOS prior to 26.1. Remediation: upgrade to iOS 26.1 / iPadOS 26.1 or later. Public details ...

3.3CVSS5.2AI score0.00115EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2025/12/12 8:56 p.m.3 views

CVE-2025-43437

An information disclosure issue was addressed with improved privacy controls. This issue is fixed in iOS 26.1 and iPadOS 26.1. An app may be able to fingerprint the user...

5.2AI score0.00115EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/12 12:0 a.m.7 views

PT-2025-50992

Name of the Vulnerable Software and Affected Versions iOS versions prior to 26.1 iPadOS versions prior to 26.1 Description An issue exists where an application may be able to fingerprint a user, leading to an information disclosure. This impacts user privacy. Recommendations Update to iOS version...

3.3CVSS6.2AI score0.00115EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/12/12 12:0 a.m.4 views

Apple macOS 安全漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS Tahoe versions prior to 26.1, which stems from an insufficient sandbox restriction that could cause an application to break throug...

5.2CVSS6.2AI score0.00136EPSS
Exploits0References1
Rows per page
Query Builder