Lucene search
K

5 matches found

OSV
OSV
added 2026/06/15 9:17 p.m.5 views

UBUNTU-CVE-2026-47261

Wasmtime is a runtime for WebAssembly. In versions prior to 24.0.9, 36.0.10, and 44.0.2, when a filesystem preopen is given DirPerms::all and FilePerms::READ without FilePerms::WRITE, this access control mechanism can be bypassed via the wasip2 descriptor.open-at or wasip1 pathopen interfaces by...

7.5CVSS5.7AI score0.00357EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-24497

Malicious code in bioql PyPI...

7.8CVSS6.4AI score0.0027EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/12 8:25 p.m.5 views

CVE-2025-49561 Animate | Use After Free (CWE-416)

Animate versions 23.0.12, 24.0.9 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.0027EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/03/27 8:4 p.m.27 views

CVE-2023-25817 Delete permissions are not saved when creating public share in Nextcloud server

Nextcloud server is an open source, personal cloud implementation. In versions from 24.0.0 and before 24.0.9 a user could escalate their permissions to delete files they were not supposed to deletable but only viewed or downloaded. This issue has been addressed andit is recommended that the...

3.5CVSS8.3AI score0.00564EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/03/27 12:0 a.m.3 views

Nextcloud 安全漏洞

Nextcloud is an open source suite of self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in versions prior to Nextcloud 24.0.9 that stems from the ability of users to escalate their privileges to delete files the...

8.1CVSS7.5AI score0.00564EPSS
Exploits0References3
Rows per page
Query Builder