Lucene search
K

43 matches found

Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.18 views

PT-2026-49580

Name of the Vulnerable Software and Affected Versions Angular versions prior to 22.0.1 Angular versions prior to 21.2.17 Angular versions prior to 20.3.25 Description An information disclosure issue exists in the @angular/service-worker package. When the Service Worker fetches assets, it preserve...

8.3CVSS5.9AI score0.00226EPSS
Exploits0References6
OSV
OSV
added 2025/10/11 5:15 p.m.1 views

MAL-2025-48315 Malicious code in ing-util-analytics6 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 0b41060826542b40f0d95751fae347c33c794ec24b60f2efa39ce8b385af059b The OpenSSF Package Analysis project identified 'ing-util-analytics6' @ 15.1.27 npm as malicious. It is considered malicious because: - The...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-8193

Malware in sbrugna...

6.9CVSS6.7AI score0.00497EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-9196

Malware in sbrugna...

7.2CVSS6.9AI score0.00451EPSS
Exploits0References10
OSV
OSV
added 2025/09/26 4:50 a.m.3 views

MAL-2025-47865 Malicious code in wide-lib (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f73134e4d528333c8306a8966d02b2302f48a8375f08bfb7529fbc30bbf2b196 Any computer that has this package installed or running should be considered...

6.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-18424

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a...

6.9CVSS6.9AI score0.00497EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/06/18 3:13 p.m.2 views

Malicious code in epic-ue-saleforce-form (npm)

The package communicates with a domain associated with malicious activity...

7AI score
Exploits0
Citrix
Citrix
added 2024/07/13 12:0 a.m.13 views

Error: "The Login is from an Untrusted Domain and Cannot be used with Windows Authentication" Appears when Launching Provisioning Services Console

When launching the Provisioning Services Console, the critical error message appears, “Critical Error A database error occurred. Login failed. The login is from an untrusted domain and cannot be used with Windows authentication.”...

7.2AI score
Exploits0
CNNVD
CNNVD
added 2023/11/14 12:0 a.m.2 views

Siemens SIMATIC PCS 安全漏洞

SIMATIC PCS neo is a distributed control system DCS. Siemens SIMATIC PCS neo suffers from a loose cross-domain policy vulnerability with an untrusted domain, which can be exploited by an attacker to trick a legitimate user into triggering unwanted behavior...

8.8CVSS6.8AI score0.00618EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/11/07 12:0 a.m.4 views

Group Office CRM Code Issue Vulnerability

Group Office CRM is a software application. Share projects, calendars, files and emails with colleagues and clients online. Easy to use and fully customizable. A code issue vulnerability exists in Group Office CRM that stems from the presence of a server-side request forgery SSRF vulnerability th...

8.8CVSS7AI score0.00595EPSS
Exploits1References2
Citrix
Citrix
added 2023/09/21 12:0 a.m.10 views

PVS server cannot logon database with Error "The Login is from an Untrusted Domain and Cannot ..."

PVS server console cannot be launched with error: "The database login failed." SQL server log error: "Login failed. The login is from an untrusted domain and cannot be used with Integrated authentication." "SSPI handshake failed with error code 0x8009030c, state 14 while establishing a connection...

8AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:7 a.m.2 views

SUSE CVE-2019-18424

An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device. This occurs because passed through PCI devices may corrupt host memory after deassignment. When a PCI device is assigned to...

7.6CVSS6.2AI score0.00497EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2023/02/15 4:6 a.m.3 views

SUSE CVE-2019-19579

An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device and assignable-add is not used, because of an incomplete fix for CVE-2019-18424. XSA-302 relies on the use of libxl's...

6.9CVSS6.2AI score0.00451EPSS
Exploits0References11
BDU FSTEC
BDU FSTEC
added 2022/07/15 12:0 a.m.4 views

The vulnerability in the implementation of the CORS (Cross-Origin Resource Sharing) mechanism in Firefox browsers, Firefox ESR, and the Thunderbird email client allows a hacker to circumvent security restrictions.

The vulnerability of the CORS Cross-Origin Resource Sharing mechanism implementation in Firefox browsers, Firefox ESR, and the Thunderbird email client is related to the inclusion of functions from an unreliable controlled domain. Exploiting this vulnerability allows a malicious actor to bypass...

7.6CVSS7.7AI score0.01055EPSS
Exploits0References16Affected Software11
RedHat Linux
RedHat Linux
added 2020/06/04 1:6 p.m.6 views

keycloak: CSRF check missing in My Resources functionality in the Account Console

It was found that Keycloak's account console did not perform adequate header checks in some requests. An attacker could use this flaw to trick an authenticated user into performing operations via request from an untrusted domain...

8.8CVSS5.7AI score0.00495EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/04/10 12:0 a.m.3 views

The vulnerability in web browsers Firefox, Firefox ESR, and the email client Thunderbird, related to the inclusion of functionality from an unreliable controlling domain, allows a perpetrator to compromise data integrity.

The vulnerabilities in web browsers Firefox, Firefox ESR, and the email client Thunderbird are related to the inclusion of features from an unreliable management domain. Exploiting these vulnerabilities allows a remote attacker to compromise data integrity...

7.1CVSS7.2AI score0.01692EPSS
Exploits0References12Affected Software7
Tenable Nessus
Tenable Nessus
added 2019/12/16 12:0 a.m.66 views

SUSE SLES12 Security Update : xen (SUSE-SU-2019:3297-1)

This update for xen fixes the following issues : CVE-2019-19581: Fixed a potential out of bounds on 32-bit Arm bsc1158003 XSA-307. CVE-2019-19582: Fixed a potential infinite loop when x86 accesses to bitmaps with a compile time known size of 64 bsc1158003 XSA-307. CVE-2019-19583: Fixed improper...

9.8CVSS7.4AI score0.03133EPSS
Exploits0References45
RedhatCVE
RedhatCVE
added 2019/12/06 11:48 a.m.30 views

CVE-2019-19579

An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device and assignable-add is not used, because of an incomplete fix for CVE-2019-18424. XSA-302 relies on the use of libxl's...

7.2CVSS1.7AI score0.00497EPSS
Exploits0References3
NVD
NVD
added 2019/12/04 10:15 p.m.16 views

CVE-2019-19579

An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device and assignable-add is not used, because of an incomplete fix for CVE-2019-18424. XSA-302 relies on the use of libxl's...

7.2CVSS7.7AI score0.00451EPSS
Exploits0References8
OSV
OSV
added 2019/12/04 10:15 p.m.1 views

ALPINE-CVE-2019-19579

An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device and assignable-add is not used, because of an incomplete fix for CVE-2019-18424. XSA-302 relies on the use of libxl's...

6.8CVSS7.1AI score0.00451EPSS
Exploits0References1
Rows per page
Query Builder