Lucene search
K

3181 matches found

EUVD
EUVD
•added 2026/06/04 2:10 a.m.•15 views

EUVD-2026-34195

Weak Randomness / Insecure Cryptographic Primitive CWE-338 in Get-RandomPassword in BOSH-Ecosystem / windows-utilities-release allows a network attacker to estimate VM boot time and reconstruct a small candidate list to recover the Administrator password. The randomizepassword job exists solely t...

7.5CVSS5.8AI score0.00245EPSS
Exploits0References1
GithubExploit
GithubExploit
•added 2026/06/04 12:47 a.m.•77 views

wined

Windows Exploitation wined Tools The following scripts were...

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
•added 2026/06/04 12:0 a.m.•5 views

PT-2026-49124

This crate provides internal FFI utilities for the pqcrypto- ecosystem, directly wrapping C implementations from PQClean. The PQClean project is being archived in or after July 2026 see PQClean/PQClean604, after which no further security patches or bug fixes will be applied to the upstream...

5.3AI score
Exploits0References4
CNNVD
CNNVD
•added 2026/06/04 12:0 a.m.•10 views

Cloud Foundry windows-utilities-release å®‰å…Øę¼ę“ž

Cloud Foundry Windows-Utilities-Release is a collection of Windows platform maintenance tools provided by the Cloud Foundry company. There are security vulnerabilities in Cloud Foundry Foundation Windows-Utilities-Release; these vulnerabilities stem from the use of a predictable random number...

7.5CVSS5.4AI score0.00245EPSS
Exploits0References1
Positive Technologies
Positive Technologies
•added 2026/06/04 12:0 a.m.•14 views

PT-2026-46132

Weak Randomness / Insecure Cryptographic Primitive CWE-338 in Get-RandomPassword in BOSH-Ecosystem / windows-utilities-release allows a network attacker to estimate VM boot time and reconstruct a small candidate list to recover the Administrator password. The randomize password job exists solely ...

7.5CVSS5.8AI score0.00245EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
•added 2026/06/04 12:0 a.m.•15 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 : XZ Utils vulnerability (USN-8362-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by a vulnerability as referenced in the USN-8362-1 advisory. It was discovered that XZ Utils did not properly manage memory when attempting to append data ...

6.3CVSS6AI score0.00351EPSS
Exploits0References2
Snyk
Snyk
•added 2026/06/03 9:0 p.m.•8 views

Malicious Package

Overview buffer-utilities is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.5AI score
Exploits0References2
GithubExploit
GithubExploit
•added 2026/06/03 12:15 a.m.•184 views

Exploit for CVE-2026-46243

cifswitch-check A shell script to check whether a Linux syste...

7.8CVSS6AI score0.00353EPSS
Exploits4
NVD
NVD
•added 2026/06/02 9:16 p.m.•12 views

CVE-2026-45289

CloudburstMC Protocol is a protocol library for Minecraft Bedrock Edition. Prior to version 3.0.0.Beta12-20260420.182526-15, CloudburstMC Protocol is partially missing validation for FULL type authentication tokens Cloudburst/Protocol. This vulnerability impacts publicly accessible software...

5.3CVSS0.0014EPSS
Exploits0References1
Cvelist
Cvelist
•added 2026/06/02 8:36 p.m.•35 views

CVE-2026-45289 CloudburstMC Protocol: Partially missing validation for FULL type authentication tokens

CloudburstMC Protocol is a protocol library for Minecraft Bedrock Edition. Prior to version 3.0.0.Beta12-20260420.182526-15, CloudburstMC Protocol is partially missing validation for FULL type authentication tokens Cloudburst/Protocol. This vulnerability impacts publicly accessible software...

5.3CVSS0.0014EPSS
Exploits0References1
CVE
CVE
•added 2026/06/02 8:36 p.m.•28 views

CVE-2026-45289

CloudburstMC Protocol (Minecraft Bedrock Edition) has a vulnerability in the EncryptionUtils validation for FULL type auth tokens prior to version 3.0.0.Beta12-20260420.182526-15. Exploitation affects software depending on this protocol library by potentially weakening authentication payload vali...

5.3CVSS5.8AI score0.0014EPSS
Exploits0References1
EUVD
EUVD
•added 2026/06/02 8:36 p.m.•11 views

EUVD-2026-34032

CloudburstMC Protocol is a protocol library for Minecraft Bedrock Edition. Prior to version 3.0.0.Beta12-20260420.182526-15, CloudburstMC Protocol is partially missing validation for FULL type authentication tokens Cloudburst/Protocol. This vulnerability impacts publicly accessible software...

5.3CVSS5.8AI score0.0014EPSS
Exploits0References1
OSV
OSV
•added 2026/06/02 12:42 p.m.•11 views

USN-8364-1 libcommons-lang-java, libcommons-lang3-java vulnerability

It was discovered that Apache Commons Lang incorrectly handled recursion in the ClassUtils.getClass method. An attacker could possibly use this issue to cause Apache Commons Lang to crash, resulting in a denial of service...

5.3CVSS6.6AI score0.02164EPSS
Exploits0References2
OSV
OSV
•added 2026/06/02 9:17 a.m.•10 views

USN-8362-1 xz-utils vulnerability

It was discovered that XZ Utils did not properly manage memory when attempting to append data to a decoded index that contained no records. An attacker could possibly use this issue to cause XZ Utils to crash, resulting in a denial of service, or execute arbitrary code...

6.3CVSS6AI score0.00351EPSS
Exploits0References2
Positive Technologies
Positive Technologies
•added 2026/06/02 12:0 a.m.•14 views

PT-2026-45856

Name of the Vulnerable Software and Affected Versions CloudburstMC Protocol versions prior to 3.0.0.Beta12-20260420.182526-15 Description CloudburstMC Protocol, a protocol library for Minecraft Bedrock Edition, contains a flaw where validation for FULL type authentication tokens is partially...

5.3CVSS5.8AI score0.0014EPSS
Exploits0References3
Rosalinux
Rosalinux
•added 2026/06/01 12:39 p.m.•15 views

Advisory ROSA-SA-2026-3313

Component: xz 5.2.9 OS: ROSA-CHROME Unaffected versions: = xz-5.2.9-2 Affected versions: xz-5.2.9-2 CVE-ID: CVE-2026-34743 BDU-ID: None CVE-Crit: Medium CVE-DESCRIPTION: The buffer overflow vulnerability in XZ Utils allows an attacker to cause memory corruption by using the lzmaindexdecoder...

6.3CVSS6AI score0.00351EPSS
Exploits0
CVE
CVE
•added 2026/06/01 8:30 a.m.•33 views

CVE-2026-10241

Summary of CVE-2026-10241 : In jeecgboot, the server-side component is affected via the function FileDownloadUtils.download2DiskFromNet in the file path /airag/app/debug within the Cloud Instance Metadata Endpoint . The issue enables a server-side request forgery (SSRF) condition that can be trig...

6.5CVSS6.2AI score0.0027EPSS
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packages
•added 2026/06/01 12:0 a.m.•15 views

Malicious code in @redhat-cloud-services/frontend-components-config-utilities (npm)

Part of the "Mini Shai-Hulud" supply chain worm campaign that compromised the GitHub Actions OIDC trusted publisher shared by Red Hat Cloud Services npm packages. The attacker injected a preinstall hook into this and 31 other packages in the @redhat-cloud-services scope. The hook delivers a...

6AI score
Exploits0References2
Cloud Foundry
Cloud Foundry
•added 2026/06/01 12:0 a.m.•8 views

CVE-2026-41858 - Brute forceable windows admin creds | Cloud Foundry

CVSS score: 6.5 Medium CVSS:3/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Vendor CloudFoundry Foundation Versions Affected Severity is HIGH unless otherwise noted. windows-utilities-release – All versions prior to v0.23.0 Description Weak Randomness / Insecure Cryptographic Primitive CWE-338 in...

7.5CVSS5.8AI score0.00245EPSS
Exploits0
vulnersOsv
vulnersOsv
•added 2026/05/31 9:0 p.m.•8 views

@redhat-cloud-services/access-requests-frontend (>=1.2.0 <=1.2.11), @redhat-cloud-services/frontend-components (>=0.0.1 <=7.7.1) +19 more potentially affected by unknown CVE via @redhat-cloud-services/frontend-components-utilities (=7.4.0)

@redhat-cloud-services/frontend-components-utilities NPM version =7.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on @redhat-cloud-services/frontend-components-utilities and may be impacted: - @redhat-cloud-services/access-requests-frontend =1.2.0,...

5.5AI score
Exploits0
Rows per page
Query Builder