Lucene search
K

31 matches found

Vulnrichment
Vulnrichment
added 2026/06/01 5:49 p.m.9 views

CVE-2026-40989 Self Routing guard bypassed via function composition

Under infinite recursion in the routing layer, request-handling can cause OOM error. Affected Spring Products and Versions: Spring Cloud Function 3.2.x: versions prior to 3.2.16 Spring Cloud Function 4.1.x: versions prior to 4.1.10 Spring Cloud Function 4.2.x: versions prior to 4.2.6 Spring Cloud...

5.7CVSS5.8AI score0.00211EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.11 views

Unity Linux 20.1070e Security Update: netty (UTSA-2026-017795)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017795 advisory. The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream. An attacker could send a large...

7.5CVSS6.9AI score0.09438EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-15911

Malware in sbrugna...

6.1CVSS6.1AI score0.00829EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.5 views

Moodle 4.3.x < 4.3.7 Multiple Vulnerabilities

According to its self-reported version, the Moodle install hosted on the remote host is 4.1.x prior to 4.1.13, 4.2.x prior to 4.2.10, 4.3.x prior to 4.3.7, or 4.4.x prior to 4.4.3. It is, therefore, affected by multiple vulnerabilities. - A lesson activity password bypass through PHP loose...

7.5CVSS7.3AI score0.00403EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.7 views

Moodle 4.1.x < 4.1.13 Multiple Vulnerabilities

According to its self-reported version, the Moodle install hosted on the remote host is 4.1.x prior to 4.1.13, 4.2.x prior to 4.2.10, 4.3.x prior to 4.3.7, or 4.4.x prior to 4.4.3. It is, therefore, affected by multiple vulnerabilities. - A lesson activity password bypass through PHP loose...

7.5CVSS7.3AI score0.00403EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2023/02/15 4:13 a.m.7 views

SUSE CVE-2019-10053

An issue was discovered in Suricata 4.1.x before 4.1.4. If the input of the function SSHParseBanner is composed only of a \n character, then the program runs into a heap-based buffer over-read. This occurs because the erroneous search for \r results in an integer underflow...

9.8CVSS7.2AI score0.01711EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/03/14 12:0 a.m.14 views

WordPress 4.1.x < 4.1.35 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A stored cross-site scripting XSS vulnerability exists via wpfilterglobalstylespost. - A prototype pollution exists via the Gutenberg wordpress/url package. Note that the...

6AI score
Exploits0References3
OpenVAS
OpenVAS
added 2021/11/11 12:0 a.m.14 views

Samba Privilege Escalation Vulnerability (CVE-2014-8143)

In Samba Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the...

8.5CVSS7.5AI score0.04264EPSS
Exploits0References1
NVD
NVD
added 2021/04/28 7:15 a.m.20 views

CVE-2021-31866

Redmine before 4.0.9 and 4.1.x before 4.1.3 allows an attacker to learn the values of internal authentication keys by observing timing differences in string comparison operations within SysController and MailHandlerController...

5.3CVSS0.01215EPSS
Exploits0References3
Prion
Prion
added 2021/04/06 8:15 a.m.15 views

Design/Logic Flaw

Redmine before 4.0.8 and 4.1.x before 4.1.2 allows attackers to discover the names of private projects if issue-journal details exist that have changes to projectid values...

5CVSS7.5AI score0.01158EPSS
Exploits0References2Affected Software2
Tenable Nessus
Tenable Nessus
added 2020/06/26 12:0 a.m.391 views

WordPress 4.1.x < 4.1.31 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A cross-site scripting XSS vulnerability exist in the block editor. - A cross-site scripting XSS vulnerability exist in media files. - An open redirect vulnerability exist...

6.8CVSS6.1AI score0.03498EPSS
Exploits0References8
IBM Security Bulletins
IBM Security Bulletins
added 2020/05/21 3:16 p.m.30 views

Security Bulletin: Vulnerabilities in Swagger affects WebSphere Application Server Liberty

Summary There are vulnerabilities in Swagger that affects WebSphere Application Server Liberty used by IBM Streams. IBM Streams has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2019-17495 DESCRIPTION: Swagger UI could allow a remote attacker to obtain sensitive information,...

9.8CVSS1AI score0.0558EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/01/09 8:32 p.m.24 views

Security Bulletin: IBM® Db2® LUW on AIX and Linux Affected by a Vulnerability in IBM® Spectrum Scale (CVE-2018-1783).

Summary Db2 LUW is affected by a vulnerability in IBM® Spectrum Scale Version 4.1.x and 4.2.x that is used by Db2® pureScale™ Feature on AIX and Linux. IBM Spectrum Scale is previously known as General Parallel File System GPFS. Vulnerability Details CVEID: CVE-2018-1783 DESCRIPTION: IBM GPFS IBM...

5.5CVSS0.1AI score0.0033EPSS
Exploits0Affected Software1
AlpineLinux
AlpineLinux
added 2019/11/22 12:1 p.m.34 views

CVE-2019-10203

PowerDNS Authoritative daemon , pdns versions 4.0.x before 4.0.9, 4.1.x before 4.1.11, exiting when encountering a serial between 2^31 and 2^32-1 while trying to notify a slave leads to DoS...

4.3CVSS5.8AI score0.01554EPSS
Exploits0
Debian CVE
Debian CVE
added 2019/11/22 12:1 p.m.42 views

CVE-2019-10203

PowerDNS Authoritative daemon , pdns versions 4.0.x before 4.0.9, 4.1.x before 4.1.11, exiting when encountering a serial between 2^31 and 2^32-1 while trying to notify a slave leads to DoS...

4.3CVSS5AI score0.01554EPSS
Exploits0
CNVD
CNVD
added 2019/05/13 12:0 a.m.4 views

Suricata Buffer Overflow Vulnerability

Suricata is a set of network intrusion detection system IDS, intrusion prevention system IPS and network security monitoring engine developed by the Open Information Security Foundation OISF and its supported vendors, which supports multi-threading, built-in IPv6, and the ability to load...

7.5CVSS7.3AI score0.01455EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2018/10/25 8:55 p.m.22 views

Security Bulletin: Vulnerability in WebSphere Liberty ORB client

Summary There's a vulnerability in WebSphere Liberty ORB client used by IBM Streams. IBM Streams has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2018-1683 DESCRIPTION: IBM WebSphere Application Server Liberty could allow a remote attacker to obtain sensitive information, cause...

7.5CVSS1.5AI score0.01964EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2017/08/18 12:0 a.m.26 views

phpMyAdmin Multiple Cross-Site Scripting Vulnerabilities (Jul 2014) - Linux

phpMyAdmin is prone to multiple cross-site scripting vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

3.5CVSS5.8AI score0.01605EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/12/17 12:0 a.m.18 views

WordPress < 3.7.6 / 3.8.x < 3.8.6 / 3.9.x < 3.9.4 / 4.1.x < 4.1.2 Multiple Vulnerabilities

Binary data 9026.prm...

4.3CVSS7.3AI score0.08467EPSS
Exploits2References7
Prion
Prion
added 2015/10/26 2:59 a.m.15 views

Command injection

IBM General Parallel File System GPFS 3.5.x before 3.5.0.27 and 4.1.x before 4.1.1.2 and Spectrum Scale 4.1.1.x before 4.1.1.2 allow local users to obtain root privileges for command execution via unspecified vectors...

7.2CVSS6.8AI score0.00585EPSS
Exploits0References4Affected Software2
Rows per page
Query Builder