Lucene search
+L

523 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/13 12:0 a.m.10 views

Adobe Bridge 14.x < 14.1.7 / 15.x < 15.0.4 Multiple Vulnerabilities (APSB25-44)

The version of Adobe Bridge installed on the remote macOS or Mac OS X host is prior to 14.1.7 or 15.0.4. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb25-44 advisory. - Bridge versions 15.0.3, 14.1.6 and earlier are affected by an Integer Overflow or Wraparound...

7.8CVSS6.5AI score0.00273EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/05/13 12:0 a.m.13 views

Amazon Linux 2 : kernel (ALASKERNEL-5.15-2025-071)

The version of kernel installed on the remote host is prior to 5.15.180-123.192. It is, therefore, affected by a vulnerability as referenced in the ALAS2KERNEL-5.15-2025-071 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: do not clean up repair bio if submit...

7.8CVSS6.4AI score0.00276EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/05/13 12:0 a.m.15 views

Amazon Linux AMI : ghostscript (ALAS-2025-1978)

The version of ghostscript installed on the remote host is prior to 8.70-24.35. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1978 advisory. PS interpreter - check the type of the Pattern Implementation NOTE:...

7.8CVSS7.9AI score0.00388EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2025/05/12 12:0 a.m.9 views

Debian: Security Advisory (DLA-4159-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.1AI score0.00637EPSS
Exploits0References2
OSV
OSV
added 2025/05/01 5:15 p.m.5 views

CVE-2025-44843

TOTOLINK CA600-PoE V5.3c.6665B20180820 was found to contain a command injection vulnerability in the CloudSrvUserdataVersionCheck function via the url parameter. This vulnerability allows attackers to execute arbitrary commands via a crafted request...

6.5CVSS6.1AI score0.01003EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/05/01 12:0 a.m.4 views

TOTOLINK CA600-PoE 安全漏洞

TOTOLINK CA600-PoE is an outdoor wireless AP/CPE device from China Gion Electronics TOTOLINK. TOTOLINK CA600-PoE suffers from a command injection vulnerability that stems from the CloudSrvUserdataVersionCheck function url parameter failing to correctly filter constructed command special character...

6.5CVSS7.5AI score0.01003EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/05/01 12:0 a.m.4 views

TOTOLINK CA600-PoE 安全漏洞

TOTOLINK CA600-PoE is an outdoor wireless AP/CPE device from China Gion Electronics TOTOLINK. TOTOLINK CA600-PoE suffers from a command injection vulnerability that stems from the CloudSrvUserdataVersionCheck function version parameter failing to correctly filter the constructor command special...

6.5CVSS7.5AI score0.00903EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2025/04/18 12:0 a.m.6 views

Debian: Security Advisory (DLA-4129-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS7.5AI score0.00563EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/04/18 12:0 a.m.8 views

Fedora: Security Advisory (FEDORA-2025-472776e5dc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.7CVSS4.1AI score0.00486EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/04/14 12:0 a.m.11 views

Debian: Security Advisory (DSA-5901-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.3CVSS6.5AI score0.00389EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.11 views

Moodle < 3.9.22 Multiple Vulnerabilities

According to its self-reported version, the Moodle install hosted on the remote host is prior to 3.9.22, 3.11.x prior to 3.11.15, 4.0.x prior to 4.0.9 or 4.1.x prior to 4.1.4. It is, therefore, affected by multiple vulnerabilities. - An issue in the logic used to check 0.0.0.0 against the cURL...

7.5CVSS8.4AI score0.00825EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.7 views

Moodle 4.4.x < 4.4.6 Multiple Vulnerabilities

According to its self-reported version, the Moodle install hosted on the remote host is prior to 4.1.16 or 4.3.x prior to 4.3.10 or 4.4.x prior to 4.4.6 or 4.5.x prior to 4.5.2. It is, therefore, affected by multiple vulnerabilities. - An SQL injection risk was identified in the module list filte...

10CVSS7AI score0.00749EPSS
Exploits1References30
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.5 views

Moodle 4.4.x < 4.4.7 Hidden Grades Shown Without Permission

According to its self-reported version, the Moodle install hosted on the remote host is prior to 4.1.17 or 4.3.x prior to 4.3.11 or 4.4.x prior to 4.4.7 or 4.5.x prior to 4.5.3. It is, therefore, affected by an insufficient capability checks in some grade reports resulted in some hidden grades...

5.3CVSS7.2AI score0.0028EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.7 views

Moodle 4.5.x < 4.5.3 Hidden Grades Shown Without Permission

According to its self-reported version, the Moodle install hosted on the remote host is prior to 4.1.17 or 4.3.x prior to 4.3.11 or 4.4.x prior to 4.4.7 or 4.5.x prior to 4.5.3. It is, therefore, affected by an insufficient capability checks in some grade reports resulted in some hidden grades...

5.3CVSS7.2AI score0.0028EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.6 views

Moodle 3.11.x < 3.11.15 XSS Risk on groups page

According to its self-reported version, the Moodle install hosted on the remote host is 3.11.x prior to 3.11.15, 4.0.x prior to 4.0.9, 4.1.x prior to 4.1.4 or 4.2.x prior to 4.2.1. It is, therefore, affected by a Cross-Site Scripting in content on the groups page. Note that the scanner has not...

6.1CVSS6.8AI score0.00677EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/04/09 12:0 a.m.10 views

Fedora: Security Advisory (FEDORA-2025-31036092ea)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.8CVSS3.8AI score0.00241EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/04/08 12:0 a.m.22 views

Adobe Premiere Pro < 24.6.5 / 25.0 < 25.2 Arbitrary code execution (APSB25-28)

The version of Adobe Premiere Pro installed on the remote Windows host is prior to 24.6.5, 25.2. It is, therefore, affected by a vulnerability as referenced in the APSB25-28 advisory. - Heap-based Buffer Overflow CWE-122 potentially leading to Arbitrary code execution CVE-2025-27196 Note that...

7.8CVSS9.1AI score0.00372EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/04/02 12:0 a.m.9 views

Webmin < 2.110 Cross-Site Scripting

According to its self-reported version, the Webmin install hosted on the remote host is prior to 2.110. It is, therefore, affected by a Cross Site Scripting XSS vulnerability in the 'Execute cron job as' tab Input field CVE-2023-52046. Note that the scanner has not tested for these issues but has...

4.8CVSS6.2AI score0.00566EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2025/04/02 12:0 a.m.14 views

VLC Media Player < 3.0.20 DoS Vulnerability (Apr 2025) - Windows

VLC Media Player is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/28 12:0 a.m.19 views

Mozilla Firefox ESR < 128.8.1

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 128.8.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2025-19 advisory. - Following the recent Chrome sandbox escape CVE-2025-2783, various Firefox developers identified a similar patte...

10CVSS8.2AI score0.08404EPSS
Exploits6References2
Rows per page
Query Builder