Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/06/10 3:0 p.m.11 views

CVE-2026-24065

Waves Central for macOS versions 13.0.9 through 16.5.5 contain a local privilege escalation vulnerability in the privileged helper service. The helper validates connecting XPC clients using the client process identifier PID to verify code-signing identity. Because process identifiers can be reuse...

8.1CVSS6.1AI score0.00323EPSS
Exploits1References1
OSV
OSV
added 2026/02/24 8:35 a.m.4 views

SUSE-SU-2026:20510-1 Security update for kernel-livepatch-MICRO-6-0_Update_16

This update for kernel-livepatch-MICRO-6-0Update16 fixes the following issues: Initial livepatch for Update 16 of kernel default...

5.8AI score
Exploits0References1
OSV
OSV
added 2026/02/24 8:35 a.m.3 views

SUSE-SU-2026:20476-1 Security update for kernel-livepatch-MICRO-6-0_Update_16

This update for kernel-livepatch-MICRO-6-0Update16 fixes the following issues: Initial livepatch for Update 16 of kernel default...

5.8AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/03/31 12:0 a.m.6 views

PT-2025-13909 · Apple · Xcode +1

Name of the Vulnerable Software and Affected Versions: Xcode versions prior to 16.3 Description: A malicious app may be able to access private information due to an issue that has been addressed with improved checks. Recommendations: For versions prior to 16.3, update to Xcode 16.3 to resolve the...

5.5CVSS5.8AI score0.00248EPSS
Exploits0References6
OSV
OSV
added 2023/07/27 1:15 a.m.1 views

CVE-2023-38261

The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to execute arbitrary code with kernel privileges...

7.8CVSS7.3AI score0.00288EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/05/08 12:0 a.m.3 views

PT-2023-21453 · Apple · Ios +1

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.4 iPadOS versions prior to 16.4 Description: The issue was addressed with improved memory handling. An app may be able to execute arbitrary code with kernel privileges. Recommendations: For iOS versions prior to 16.4,...

7.8CVSS7.2AI score0.00249EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:7 a.m.7 views

SUSE CVE-2008-3112

Directory traversal vulnerability in Sun Java Web Start in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x before 1.4.218 allows remote attackers to create arbitrary files via the writeManifest method in the CacheEntry class, aka CR 6703909...

10CVSS7.1AI score0.25727EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2022/12/15 12:0 a.m.4 views

PT-2022-6612 · Apple · Ios +1

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16.2 iPadOS versions prior to 16.2 Description: The issue is related to a buffer overflow in memory due to incorrect video rendering with H.264 encoding. This can allow an attacker to execute arbitrary code with kernel...

7.8CVSS7.6AI score0.00387EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2022/11/01 12:0 a.m.4 views

PT-2022-21551 · Apple · Ios

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 16 Description: The issue allows an app to potentially execute arbitrary code with kernel privileges due to a problem that was addressed with improved memory handling. Recommendations: For iOS versions prior to 16, updat...

7.8CVSS7.5AI score0.00252EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2009/01/13 9:39 p.m.8 views

Java Web Start BasicService displays local files in the browser

Unspecified vulnerability in the BasicService for Java Web Start JWS and Java Plug-in with Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier allows untrusted downloaded applications to cause local files to be displayed in the brows...

5CVSS7AI score0.03013EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/12/04 3:45 p.m.5 views

OpenJDK Denial-Of-Service in kerberos authentication (6588160)

Unspecified vulnerability in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier, when using Kerberos authentication, allows remote attackers to cause a denial of service OS resource consumption via...

7.1CVSS7.2AI score0.04306EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/12/04 3:45 p.m.6 views

OpenJDK UTF-8 decoder accepts non-shortest form sequences (4486841)

Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier accepts UTF-8 encodings that are not the "shortest" form, which makes it easier for attackers to bypass protection mechanisms for other applications...

7.5CVSS7.2AI score0.03426EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/07/14 3:37 p.m.4 views

Java Web Start, arbitrary file creation (6703909)

Directory traversal vulnerability in Sun Java Web Start in JDK and JRE 6 before Update 7, JDK and JRE 5.0 before Update 16, and SDK and JRE 1.4.x before 1.4.218 allows remote attackers to create arbitrary files via the writeManifest method in the CacheEntry class, aka CR 6703909...

10CVSS6AI score0.25727EPSS
Exploits1References4
Rows per page
Query Builder