Lucene search
K

10 matches found

OSV
OSV
added 2026/02/27 11:53 a.m.4 views

SUSE-SU-2026:0685-1 Security update for valkey

This update for valkey fixes the following issues: Update to version 8.0.7. Security issues fixed: - CVE-2025-67733: data tampering and denial of service via improper null character handling in Lua scripts bsc1258746. - CVE-2026-21863: denial of service via invalid clusterbus packet bsc1258788...

8.5CVSS5.8AI score0.00586EPSS
Exploits0References5
NVD
NVD
added 2025/05/05 6:15 a.m.26 views

CVE-2025-3583

The Newsletter WordPress plugin before 8.7.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS0.00274EPSS
Exploits1References1
OSV
OSV
added 2024/03/18 9:7 p.m.5 views

CVE-2024-23333 LAM vulnerable to Authenticated Remote Code Execution

LDAP Account Manager LAM is a webfrontend for managing entries stored in an LDAP directory. LAM's log configuration allows to specify arbitrary paths for log files. Prior to version 8.7, an attacker could exploit this by creating a PHP file and cause LAM to log some PHP code to this file. When th...

7.9CVSS7.7AI score0.17868EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/01/16 12:0 a.m.3 views

PT-2024-14933 · Hypr · Hypr Workforce Access

Name of the Vulnerable Software and Affected Versions: HYPR Workforce Access versions prior to 8.7 Description: The issue is related to an Improper Link Resolution Before File Access, also known as 'Link Following', which allows User-Controlled Filename. This affects HYPR Workforce Access on MacO...

7.8CVSS7.4AI score0.00165EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.5 views

HYPR Backlink Vulnerability

HYPR is a security application from HYPR that implements password-less security. A security vulnerability exists in HYPR Workforce Access prior to version 8.7 that stems from an incorrectly resolved file access link that allows a user to take control of a file name...

7.8CVSS6.7AI score0.00165EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/10/04 12:0 a.m.2 views

SAMSUNG Mobile devices security vulnerability

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc. from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices version 8.7.00.1, which stems from improper authorization of Samsung Assistant PushMsgReceive...

5.4CVSS6.7AI score0.0024EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:53 a.m.4 views

SUSE CVE-2016-20012

OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE...

5.3CVSS8.2AI score0.05039EPSS
Exploits1References3
CNVD
CNVD
added 2018/07/24 12:0 a.m.3 views

Unspecified Vulnerability in Oracle Sun Systems Products Suite Sun ZFS Storage Appliance Kit Component (CNVD-2019-36189)

Oracle Sun Systems Products Suite is a suite of Sun systems products from Oracle Corporation.Sun ZFS Storage Appliance Kit AK is one of the ZFS storage appliance kits. A security vulnerability exists in the HTTP data path subsystems subcomponent of the Sun ZFS Storage AK prior to version 8.7.18...

4.3CVSS5AI score0.01476EPSS
Exploits0References1
OSV
OSV
added 2018/07/18 1:29 p.m.4 views

CVE-2018-2921

Vulnerability in the Sun ZFS Storage Appliance Kit AK component of Oracle Sun Systems Products Suite subcomponent: User Interface. The supported version that is affected is Prior to 8.7.18. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

5.8CVSS7.3AI score0.0211EPSS
Exploits0References3
CNVD
CNVD
added 2016/11/03 12:0 a.m.6 views

BMC Server Automation Authentication Bypass Vulnerability

BMC Server Automation is a suite of platforms for managing, controlling, and enforcing configuration changes in data centers from BMC Software, USA. An authentication bypass vulnerability exists in BMC Server Automation version 8.7 Patch 2 and earlier. An attacker could exploit this vulnerability...

5.3CVSS5.9AI score0.08368EPSS
Exploits5References1
Rows per page
Query Builder