Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-25477

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00338EPSS
Exploits0References2
OSV
OSV
added 2025/02/05 7:27 a.m.10 views

BIT-SUPERSET-2023-42504 Apache Superset: Lack of rate limiting allows for possible denial of service

An authenticated malicious user could initiate multiple concurrent requests, each requesting multiple dashboard exports, leading to a possible denial of service. This issue affects Apache Superset: before 3.0.0...

6.5CVSS5.8AI score0.0114EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/09/05 12:0 a.m.4 views

PT-2023-24472

Name of the Vulnerable Software and Affected Versions Bookreen versions prior to 3.0.0 Description The issue affects Unisign Bookreen, allowing OS Command Injection due to an Unrestricted Upload of File with Dangerous Type vulnerability. Recommendations For versions prior to 3.0.0, update to...

7.2CVSS7AI score0.01168EPSS
Exploits0References9
Github Security Blog
Github Security Blog
added 2022/05/24 5:21 p.m.5 views

Mattermost Server is vulnerable to XSS via a Legal or Support setting

An issue was discovered in Mattermost Server before 3.0.0. It allows XSS via a Legal or Support setting...

6.1CVSS6.2AI score0.00685EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/08/16 7:55 a.m.3 views

CVE-2021-23422

This affects the package bikeshed before 3.0.0. This can occur when an untrusted source file containing Inline Tag Command metadata is processed. When an arbitrary OS command is executed, the command output would be included in the HTML output...

7.8CVSS5.4AI score0.00789EPSS
Exploits0References3
OSV
OSV
added 2021/03/31 2:15 p.m.2 views

DEBIAN-CVE-2021-3478

There's a flaw in OpenEXR's scanline input file functionality in versions before 3.0.0-beta. An attacker able to submit a crafted file to be processed by OpenEXR could consume excessive system memory. The greatest impact of this flaw is to system availability...

5.5CVSS6.7AI score0.0096EPSS
Exploits0References1
OSV
OSV
added 2021/03/30 6:15 p.m.2 views

DEBIAN-CVE-2021-3476

A flaw was found in OpenEXR's B44 uncompression functionality in versions before 3.0.0-beta. An attacker who is able to submit a crafted file to OpenEXR could trigger shift overflows, potentially affecting application availability...

5.3CVSS6.6AI score0.01848EPSS
Exploits0References1
CNVD
CNVD
added 2020/11/05 12:0 a.m.3 views

Cisco Identity Services Engine Elevation of Privilege Vulnerability

Cisco Identity Services Engine ISE is a next-generation identity and access control policy platform that enables organizations to enforce compliance, enhance infrastructure security, and streamline their service operations. An elevation of privilege vulnerability exists in the Microsoft Active...

7.2CVSS7.2AI score0.00302EPSS
Exploits0References1
Rows per page
Query Builder