Lucene search
K

108 matches found

CBLMariner
CBLMariner
added 2026/06/22 9:21 p.m.5 views

CVE-2026-45846 affecting package kernel for versions less than 6.6.141.1-1

CVE-2026-45846 affecting package kernel for versions less than 6.6.141.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.5AI score0.00115EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/06/22 9:21 p.m.6 views

CVE-2026-46072 affecting package kernel for versions less than 6.6.141.1-1

CVE-2026-46072 affecting package kernel for versions less than 6.6.141.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.8AI score0.00123EPSS
Exploits0
Cvelist
Cvelist
added 2026/06/09 7:15 p.m.35 views

CVE-2026-48306 Substance3D - Sampler | Out-of-bounds Write (CWE-787)

Substance3D - Sampler versions 6.0.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00141EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/26 12:0 a.m.9 views

OpenCTI 访问控制错误漏洞

OpenCTI is an open-source network threat intelligence platform developed by OpenCTI. Versions of OpenCTI prior to 6.9.7 contained a access control vulnerability. This vulnerability stemmed from incorrect Access Control Lists ACLs when users were editing relationship additions, potentially allowin...

7.2CVSS5.8AI score0.00316EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2026/05/13 3:26 a.m.14 views

CVE-2026-43292 affecting package kernel for versions less than 6.6.138.1-1

CVE-2026-43292 affecting package kernel for versions less than 6.6.138.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.8AI score0.00122EPSS
Exploits0
EUVD
EUVD
added 2026/04/17 6:5 p.m.4 views

EUVD-2026-23462

Firebird is an open-source relational database management system. In versions prior to 6.0.0, 5.0.4, 4.0.7 and 3.0.14, when processing an opslice network packet, the server passes an unprepared structure containing a null pointer to the SDLinfo function, resulting in a null pointer dereference an...

7.5CVSS5.7AI score0.00503EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.9 views

CubeCart 安全漏洞

CubeCart is an open-source e-commerce software developed by CubeCart. Versions of CubeCart prior to 6.6.0 contained security vulnerabilities. These vulnerabilities were caused by a path traversal issue, which could allow users with administrative privileges to access directories that they shouldn...

5.1CVSS6.2AI score0.0032EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2026/03/30 4:12 p.m.3 views

CVE-2026-23368 affecting package kernel for versions less than 6.6.130.1-1

CVE-2026-23368 affecting package kernel for versions less than 6.6.130.1-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.8AI score0.00095EPSS
Exploits0
OSV
OSV
added 2026/02/26 8:53 a.m.15 views

BIT-SUPERSET-2026-23980 Apache Superset: Improper Neutralization of Special Elements used in a SQL Command

Improper Neutralization of Special Elements used in a SQL Command 'SQL Injection' vulnerability in Apache Superset allows an authenticated user with read access to conduct error-based SQL injection via the sqlExpression or where parameters. This issue affects Apache Superset: before 6.0.0. Users...

6.5CVSS5.8AI score0.00503EPSS
Exploits2References3
CBLMariner
CBLMariner
added 2026/02/09 11:37 p.m.7 views

CVE-2026-23019 affecting package kernel for versions less than 6.6.121.1-1

CVE-2026-23019 affecting package kernel for versions less than 6.6.121.1-1. An upgraded version of the package is available that resolves this issue...

5.4AI score0.00115EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/02/09 11:37 p.m.6 views

CVE-2024-49968 affecting package kernel for versions less than 6.6.121.1-1

CVE-2024-49968 affecting package kernel for versions less than 6.6.121.1-1. A patched version of the package is available...

5.5CVSS7.8AI score0.00236EPSS
Exploits0
CNNVD
CNNVD
added 2026/02/07 12:0 a.m.5 views

Wing FTP Server 跨站请求伪造漏洞

Wing FTP Server is an open-source, cross-platform FTP server software developed by Wing FTP Server. Versions of Wing FTP Server prior to 6.2.7 contained a cross-site request forgeing vulnerability. This vulnerability stemmed from cross-site request forgery within the web management interface, whi...

5.1CVSS5.7AI score0.0017EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.8 views

PT-2026-6812

Name of the Vulnerable Software and Affected Versions Wing FTP Server versions prior to 6.2.7 Description Wing FTP Server versions prior to 6.2.7 have a cross-site request forgery CSRF issue in the web administration interface. This allows attackers to delete administrative users by crafting a...

5.1CVSS5.2AI score0.0017EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2026/01/30 12:24 a.m.8 views

SUSE CVE-2026-24688

pypdf is a free and open-source pure-python PDF library. An attacker who uses an infinite loop vulnerability that is present in versions prior to 6.6.2 can craft a PDF which leads to an infinite loop. This requires accessing the outlines/bookmarks. This has been fixed in pypdf 6.6.2. If projects...

4.3CVSS5.8AI score0.00388EPSS
Exploits2References3
OSV
OSV
added 2026/01/27 4:16 p.m.4 views

CVE-2026-24873

Out-of-bounds Read vulnerability in Rinnegatamante lpp-vita.This issue affects lpp-vita: before lpp-vita r6...

7.8CVSS5.8AI score0.00118EPSS
Exploits0References1
CVE
CVE
added 2026/01/27 3:53 p.m.10 views

CVE-2026-24873

CVE-2026-24873 describes an out-of-bounds read vulnerability in Rinnegatamante lpp-vita affecting versions before lpp-vita r6. The issue is categorized as a high-severity flaw with a CVSS 3.1 score of 7.8 (LOCAL access, low attack complexity, no privileges required, user interaction needed, scope...

7.8CVSS5.9AI score0.00118EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/20 4:21 p.m.7 views

CVE-2025-11044

An Allocation of Resources Without Limits or Throttling vulnerability in the ANSL-Server component of B Automation Runtime versions prior to 6.5 and prior to R4.93 could be exploited by an unauthenti-cated attacker on the network to win a race condition, resulting in permanent denial-of-service D...

8.9CVSS5.6AI score0.00313EPSS
Exploits0References1
OSV
OSV
added 2026/01/13 4:16 p.m.7 views

AZL-74439 CVE-2025-71077 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: tpm: Cap the number of PCR banks tpm2getpcrallocation does not cap any upper limit for the number of banks. Cap the limit to eight banks so that out of bounds values coming from external I/O cause on only limited harm...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
OSV
OSV
added 2025/12/24 11:15 a.m.6 views

AZL-73066 CVE-2025-68345 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41hdareadacpi The acpigetfirstphysicalnode function can return NULL, in which case the getdevice function also returns NULL, but this value is then dereferenced without...

5.6AI score0.00206EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/17 6:14 p.m.2 views

CVE-2025-13326 Mattermost Desktop App fails to enable Hardened Runtime when packaged for Mac App Store

Mattermost Desktop App versions 6.0.0 fail to enable the Hardened Runtime on the Mattermost Desktop App when packaged for Mac App Store which allows an attacker to inherit TCC permissions via copying the binary to a tmp folder...

3.9CVSS6.5AI score0.00093EPSS
Exploits0References1
Rows per page
Query Builder