Lucene search
K

69 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/06 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2025-39701

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ACPI: pfrupdate: Fix the driver update version check The security-version-number check should be used rather than the runtime version check for driver updates...

7.8CVSS6.8AI score0.00171EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2024-1a2f1733ad)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.5AI score0.00677EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.5 views

Fedora: Security Advisory (FEDORA-2024-4e850a0f86)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.2AI score0.01033EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 7:6 p.m.17 views

CVE-2021-20173

Netgear Nighthawk R6700 version 1.0.4.120 contains a command injection vulnerability in update functionality of the device. By triggering a system update check via the SOAP interface, the device is susceptible to command injection via preconfigured values...

8.8CVSS7.5AI score0.03199EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:39 a.m.5 views

CVE-2019-19463

The Anhui Huami Mi Fit application before 4.0.11 for Android has an Unencrypted Update Check...

5.3CVSS7.1AI score0.00484EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:35 p.m.8 views

CVE-2002-2195

Buffer overflow in the version update check for Winamp 2.80 and earlier allows remote attackers who can spoof www.winamp.com to execute arbitrary code via a long server response...

5CVSS8.3AI score0.04694EPSS
Exploits1References1
OSV
OSV
added 2025/01/22 6:15 a.m.11 views

CVE-2024-12879

The WPBot Pro Wordpress Chatbot plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'qcwplatestupdatecheckpro' function in all versions up to, and including, 13.5.5. This makes it possible for authenticated attackers, with...

4.3CVSS7.3AI score0.00257EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/19 5:31 p.m.20 views

CVE-2024-53078 drm/tegra: Fix NULL vs IS_ERR() check in probe()

In the Linux kernel, the following vulnerability has been resolved: drm/tegra: Fix NULL vs ISERR check in probe The iommupagingdomainalloc function doesn't return NULL pointers, it returns error pointers. Update the check to match...

0.00186EPSS
Exploits0References2
Malwarebytes
Malwarebytes
added 2023/04/18 2:0 a.m.15 views

Spring cleaning tips for your browser

When you are resting up from the physical part of your spring cleaning and youre sitting behind your laptop or swiping left on your phone, why dont you speed up your browsing experience with a few simple actions? Lets start with your browser, as that usually has the most impact on your perception...

6.3AI score
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 3:44 a.m.3 views

SUSE CVE-2021-27212

In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service daemon exit via a short timestamp. This is related to schemainit.c and checkTime...

7.5CVSS8.8AI score0.64147EPSS
Exploits1References122
OSV
OSV
added 2022/07/13 8:44 p.m.4 views

MGASA-2022-0257 Updated pgadmin4 packages fix security vulnerability

A malicious, but authorised and authenticated user can construct an HTTP request using their existing CSRF token and session cookie to manually upload files to any location that the operating system user account under which pgAdmin is running has permission to write. CVE-2022-0959 In addition,...

6.5CVSS6.5AI score0.00931EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/06/29 12:0 a.m.6 views

The vulnerability of the update check function of the Advanced Updater package, a tool for application packaging by Caphyon Advanced Installer, allows a perpetrator to execute arbitrary code.

The vulnerability of the update check function of the Advanced Updater tool for Caphyon Advanced Installer lies in the fact that code is loaded without being checked for integrity during the processing of the CustomDetection binary with the CustomDetectionParameter parameter. Exploiting this...

9.6CVSS8AI score0.01942EPSS
Exploits2References6Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/06/06 11:15 p.m.4 views

CVE-2022-27438

Caphyon Ltd Advanced Installer 19.3 and earlier and many products that use the updater from Advanced Installer Advanced Updater are affected by a remote code execution vulnerability via the CustomDetection parameter in the update check function. To exploit this vulnerability, a user must start an...

8.1CVSS6.5AI score0.01942EPSS
Exploits2References5
NVD
NVD
added 2022/06/06 11:15 p.m.44 views

CVE-2022-27438

Caphyon Ltd Advanced Installer 19.3 and earlier and many products that use the updater from Advanced Installer Advanced Updater are affected by a remote code execution vulnerability via the CustomDetection parameter in the update check function. To exploit this vulnerability, a user must start an...

8.1CVSS0.01942EPSS
Exploits2References2
Cvelist
Cvelist
added 2022/06/06 10:21 p.m.49 views

CVE-2022-27438

Caphyon Ltd Advanced Installer 19.3 and earlier and many products that use the updater from Advanced Installer Advanced Updater are affected by a remote code execution vulnerability via the CustomDetection parameter in the update check function. To exploit this vulnerability, a user must start an...

8.6AI score0.01942EPSS
Exploits2References2
EUVD
EUVD
added 2022/06/06 10:21 p.m.6 views

EUVD-2022-31941

Caphyon Ltd Advanced Installer 19.3 and earlier and many products that use the updater from Advanced Installer Advanced Updater are affected by a remote code execution vulnerability via the CustomDetection parameter in the update check function. To exploit this vulnerability, a user must start an...

8.1CVSS8.3AI score0.01942EPSS
Exploits2References4
CNNVD
CNNVD
added 2022/06/06 12:0 a.m.5 views

Caphyon Ltd Advanced Installer 安全漏洞

Caphyon Ltd Advanced Installer is a powerful and easy-to-use Windows installer authoring tool from Caphyon Romania. It is used to install, update and configure products safely and securely. A security vulnerability exists in Caphyon Ltd Advanced Installer version 19.2, which stems from a Remote...

8.1CVSS7.8AI score0.01942EPSS
Exploits2References5
GithubExploit
GithubExploit
added 2022/06/01 8:33 a.m.687 views

Exploit for Download of Code Without Integrity Check in Caphyon Advanced_Installer

CVE-2022-27438 Caphyon Ltd Advanced Installer 19.3 "CustomDe...

8.1CVSS8.4AI score0.01942EPSS
Exploits2
Github Security Blog
Github Security Blog
added 2022/05/17 7:57 p.m.22 views

DCE extension for Typo3 Discloses Environment Information

The default configuration in the Dynamic Content Elements dce extension before 0.11.5 for TYPO3 allows remote attackers to obtain sensitive installation environment information by reading the update check request...

5.3CVSS6.6AI score0.01583EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2022/05/17 7:57 p.m.13 views

GHSA-V4VM-GJ2X-6QHM DCE extension for Typo3 Discloses Environment Information

The default configuration in the Dynamic Content Elements dce extension before 0.11.5 for TYPO3 allows remote attackers to obtain sensitive installation environment information by reading the update check request...

5.3CVSS5.1AI score0.01583EPSS
Exploits0References5
Rows per page
Query Builder