Lucene search
K

24 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.17 views

RHEL 9 : kpatch-patch-5_14_0-570_17_1, kpatch-patch-5_14_0-570_39_1, kpatch-patch-5_14_0-570_66_1, and kpatch-patch-5_14_0-570_94_1 (RHSA-2026:23468)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:23468 advisory. This is a kernel live patch module which can be loaded by the kpatch command line utility to modify the code of a running kernel. This patc...

7.8CVSS5.6AI score0.03663EPSS
Exploits17References6
Tenable Nessus
Tenable Nessus
added 2026/03/26 12:0 a.m.4 views

SUSE SLES15 Security Update : kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5) (SUSE-SU-2026:1000-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1000-1 advisory. This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.97 fixes various security issues The following security issues were fixed: -...

7.8CVSS6.7AI score0.00278EPSS
Exploits0References34
OSV
OSV
added 2026/02/06 10:8 a.m.8 views

RHSA-2026:2109 Red Hat Security Advisory: kpatch-patch-5_14_0-427_100_1, kpatch-patch-5_14_0-427_44_1, kpatch-patch-5_14_0-427_55_1, kpatch-patch-5_14_0-427_68_2, and kpatch-patch-5_14_0-427_84_1 security update

Bulletin has no description...

7CVSS4.9AI score0.00173EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.11 views

PT-2026-7943

Name of the Vulnerable Software and Affected Versions Solspace Freeform plugin for Craft CMS versions 5.0 through 5.14.6 Description A low-privilege authenticated user with form creation/editing permissions can inject arbitrary HTML and JavaScript code into the Craft Control Panel builder and...

5.1CVSS5.5AI score0.00253EPSS
Exploits1References10
Cvelist
Cvelist
added 2025/11/19 4:40 p.m.21 views

CVE-2025-64757 Astro Development Server is Vulnerable to Arbitrary Local File Read

Astro is a web framework. Prior to version 5.14.3, a vulnerability has been identified in the Astro framework's development server that allows arbitrary local file read access through the image optimization endpoint. The vulnerability affects Astro development environments and allows remote...

3.5CVSS0.00402EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/11/07 8:56 p.m.6 views

CVE-2025-64326

Weblate is a web based localization tool. In versions 5.14 and below, Weblate leaks the IP address of the project member inviting the user to the project in the audit log. The audit log includes IP addresses from admin-triggered actions, which can be viewed by invited users. This issue is fixed i...

3.5CVSS6.7AI score0.00181EPSS
Exploits0References1
NVD
NVD
added 2025/11/06 9:15 p.m.16 views

CVE-2025-64326

Weblate is a web based localization tool. In versions 5.14 and below, Weblate leaks the IP address of the project member inviting the user to the project in the audit log. The audit log includes IP addresses from admin-triggered actions, which can be viewed by invited users. This issue is fixed i...

3.5CVSS0.00181EPSS
Exploits0References2
OSV
OSV
added 2025/11/06 9:15 p.m.4 views

PYSEC-2025-230

Weblate is a web based localization tool. In versions 5.14 and below, Weblate leaks the IP address of the project member inviting the user to the project in the audit log. The audit log includes IP addresses from admin-triggered actions, which can be viewed by invited users. This issue is fixed i...

3.5CVSS5.8AI score0.00181EPSS
Exploits0References2
CVE
CVE
added 2025/11/06 8:55 p.m.14 views

CVE-2025-64326

Weblate (web-based localization tool) versions 5.14 and earlier leak the inviting user’s IP address in the audit log, which can be viewed by invited project members. The root cause is exposure of IPs in admin-triggered actions within the audit log. The issue is fixed in Weblate 5.14.1. Affected p...

3.5CVSS6.3AI score0.00181EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/07 12:55 p.m.8 views

EUVD-2025-32549

python-socketio vulnerable to arbitrary Python code execution RCE through malicious pickle deserialization in certain multi-server deployments...

6.4CVSS7.2AI score0.00446EPSS
Exploits0References3
OSV
OSV
added 2025/09/06 8:45 a.m.6 views

CLSA-2025-1757148344 Update of kernel

Rebased FIPS patches to 5.14.0-570.35.1...

5.8AI score
Exploits0References1
OSV
OSV
added 2025/07/10 11:19 p.m.8 views

CLSA-2025-1752189542 Update of kernel

Rebased FIPS patches to 5.14.0-570.25.1...

5.8AI score
Exploits0References1
OSV
OSV
added 2023/08/25 12:15 p.m.5 views

CVE-2023-32598

Unauth. Reflected Cross-Site Scripting XSS vulnerability in A. R. Jones Featured Image Pro Post Grid plugin = 5.14 versions...

6.1CVSS7.3AI score0.00382EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/08/25 12:0 a.m.7 views

WordPress plugin Featured Image Pro Post Grid 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

7.1CVSS6.9AI score0.00382EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/08/08 12:0 a.m.5 views

Zoom Client Security Vulnerability

Zoom Client is a video conferencing client application from Zoom USA that supports multiple platforms. A security vulnerability previously existed in Zoom Client version 5.14.10, which stemmed from a client-side implementation issue with server-side security...

6.1CVSS6.8AI score0.00931EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/11 12:0 a.m.6 views

Zoom Rooms 安全漏洞

Zoom Rooms is a software-based conferencing system from Zoom USA. A system that allows web conferencing on fixed endpoints, similar to traditional video conferencing systems. A security vulnerability exists in Zoom Rooms prior to version 5.14.5 that stems from improper privilege management. It...

7.8CVSS7.3AI score0.00171EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/06/13 12:0 a.m.5 views

Zoom Client 缓冲区错误漏洞

Zoom Client is a video conferencing client application from Zoom USA that supports multiple platforms. A security vulnerability exists in Zoom for Windows clients prior to version 5.14.0, which stems from an incorrect operation limit in the memory buffer...

8.3CVSS6.5AI score0.00953EPSS
Exploits0References2
NCSC
NCSC
added 2023/06/13 12:0 a.m.17 views

Vulnerabilities fixed in Zoom

Zoom has fixed vulnerabilities in the Zoom client for Windows and macOS. A malicious party could exploit the vulnerabilities to cause a denial-of-service, to grant themselves elevated privileges granted or gain access to sensitive information. Zoom has released updates to fix the vulnerabilities ...

8.8CVSS7AI score0.00983EPSS
Exploits0
CNVD
CNVD
added 2023/06/06 12:0 a.m.3 views

Dell EMC SCG Policy Manager Information Disclosure Vulnerability

Dell EMC SCG Policy Manager is a secure connectivity gateway policy manager from Dell, Inc. An information disclosure vulnerability exists in Dell EMC SCG Policy Manager version 5.14, which stems from insufficient protection of sensitive information in the upgrade path from SRS to SCG, and can be...

6.5CVSS6.4AI score0.00338EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:4 a.m.3 views

SUSE CVE-2020-0570

Uncontrolled search path in the QT Library before 5.14.0, 5.12.7 and 5.9.10 may allow an authenticated user to potentially enable elevation of privilege via local access...

7.3CVSS8.6AI score0.00568EPSS
Exploits1References4
Rows per page
Query Builder