Lucene search
K

8 matches found

CNNVD
CNNVD
added 2025/10/10 12:0 a.m.15 views

happy-dom 代码注入漏洞

happy-dom is a JavaScript implementation of a web browser without a graphical user interface by the individual developer David Ortner. A code injection vulnerability exists in happy-dom version 19 and earlier, which stems from insufficient isolation of the Node.js VM Context environment and could...

7.2CVSS7.8AI score0.00599EPSS
Exploits0References2
OSV
OSV
added 2024/06/21 2:15 p.m.2 views

CVE-2024-6240

Improper privilege management vulnerability in Parallels Desktop Software, which affects versions earlier than 19.3.0. An attacker could add malicious code in a script and populate the BASHENV environment variable with the path to the malicious script, executing on application startup. An attacke...

10CVSS5.9AI score0.00317EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/07/11 12:0 a.m.3 views

Avast AntiVirus 安全漏洞

Avast Antivirus is a suite of antivirus software from the Czech company Avast. A security vulnerability exists in versions prior to Avast AntiVirus v.19.7 that stems from the presence of a buffer overflow vulnerability that allows a local attacker to cause a denial of service via a crafted reques...

5.5CVSS6.1AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:1 a.m.2 views

SUSE CVE-2020-8295

A wrong check in Nextcloud Server 19 and prior allowed to perform a denial of service attack when resetting the password for a user...

7.5CVSS7.4AI score0.01807EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/01/20 12:0 a.m.6 views

Cisco SD-WAN vManage Software SQL注入漏洞

Cisco SD-WAN Solution is a suite of network extension solutions from Cisco, of which vManage is the console. A SQL injection vulnerability exists in the Web management interface of Cisco SD-WAN vManage versions prior to 19.2.3. The vulnerability stems from the Web management interface not properl...

9.1CVSS6.9AI score0.01391EPSS
Exploits0References4
OSV
OSV
added 2020/04/15 2:15 p.m.5 views

CVE-2020-2514

Vulnerability in the Oracle Application Express component of Oracle Database Server. The supported version that is affected is Prior to 19.2. Easily exploitable vulnerability allows low privileged attacker having End User Role privilege with network access via HTTPS to compromise Oracle Applicati...

4.6CVSS6.1AI score0.00749EPSS
Exploits0References1
OSV
OSV
added 2019/08/26 7:15 p.m.3 views

CVE-2019-7998

Adobe Photoshop CC versions 19.1.8 and earlier and 20.0.5 and earlier have an out of bound write vulnerability. Successful exploitation could lead to arbitrary code execution...

9.8CVSS7.5AI score0.06433EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/22 12:0 a.m.2 views

Avast Antivirus Local Denial of Service Vulnerability

Avast Antivirus is a suite of antivirus software from the Czech company Avast. A security vulnerability exists in Avast Antivirus versions prior to 19.4. The vulnerability can be exploited to bypass the Avast self-protection mechanism and rename important binary files e.g. AvastSvc.exe file,...

4.4CVSS6.8AI score0.00543EPSS
Exploits1References1
Rows per page
Query Builder