Lucene search
+L

28 matches found

NVD
NVD
added 2026/06/17 10:54 a.m.10 views

CVE-2026-46896

Vulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business Suite component: Core. Supported versions that are affected are V15 and V16. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Enterprise...

9.1CVSS0.00453EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 10:54 a.m.11 views

CVE-2026-46902

Vulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business Suite component: Core. Supported versions that are affected are V15 and V16. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Enterprise...

9.8CVSS0.00473EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 10:54 a.m.10 views

CVE-2026-46895

Vulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business Suite component: Core. Supported versions that are affected are V15 and V16. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Enterprise...

9.9CVSS0.00411EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.27 views

PT-2026-50006

Name of the Vulnerable Software and Affected Versions Oracle Enterprise Command Center Framework versions V15 through V16 Description An issue exists in the Core component of the Oracle Enterprise Command Center Framework. A low privileged attacker with network access via HTTP can compromise the...

9.6CVSS5.9AI score0.00344EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.15 views

PT-2026-50005

Name of the Vulnerable Software and Affected Versions Oracle Enterprise Command Center Framework versions V15 through V16 Description An issue in the Core component of the Oracle Enterprise Command Center Framework allows an unauthenticated attacker with network access via HTTPS to compromise the...

8.1CVSS5.9AI score0.00351EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/13 8:22 p.m.13 views

CVE-2026-34684

Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00149EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.14 views

PT-2026-37884

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

4.3CVSS6.6AI score0.02272EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/04/14 7:44 p.m.33 views

CVE-2026-27312 Bridge | Heap-based Buffer Overflow (CWE-122)

Bridge versions 16.0.2, 15.1.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00259EPSS
Exploits0References1
FreeBSD Advisory
FreeBSD Advisory
added 2026/03/26 12:0 a.m.15 views

FreeBSD-SA-26:06.tcp

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-26:06.tcp Security Advisory The FreeBSD Project Topic: TCP: remotely exploitable DoS vector mbuf leak Category: core Module: tcp Announced: 2026-03-26 Credits:...

7.5CVSS5.9AI score0.01121EPSS
Exploits0
EUVD
EUVD
added 2026/03/04 9:31 a.m.8 views

EUVD-2026-9384

SEPPmail Secure Email Gateway before version 15.0.1 decrypts inline PGP messages without isolating them from surrounding unencrypted content, allowing exposure of sensitive information to an unauthorized actor...

6.9CVSS5.9AI score0.0025EPSS
Exploits0References2
CVE
CVE
added 2026/02/10 7:43 p.m.24 views

CVE-2026-21349

Lightroom Desktop vulnerable to an out-of-bounds write (CWE-787) in version 15.1 and earlier, enabling arbitrary code execution in the current user context after opening a malicious file. Affected products/versions are consistently stated across CVE sources (NVD/Red Hat). Root cause is an out-of-...

7.8CVSS6.3AI score0.00139EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/11/30 5:16 a.m.10 views

CVE-2025-66432

In Oxide control plane 15 through 17 before 17.1, API tokens can be renewed past their expiration date...

5CVSS0.00197EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/30 12:0 a.m.7 views

CVE-2025-66432

In Oxide control plane 15 through 17 before 17.1, API tokens can be renewed past their expiration date...

5CVSS0.00197EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/11/30 12:0 a.m.5 views

Oxide Control Plane 安全漏洞

Oxide Control Plane is an open source console software from Oxide Computer Company. A security vulnerability exists in Oxide Control Plane versions 15 through 17 and prior to 17.1, which stems from the possibility that API tokens may continue to be used after expiration...

5CVSS6.7AI score0.00197EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.4 views

FreePBX 路径遍历漏洞

FreePBX formerly known as Asterisk Management Portal is a suite of tools from the FreePBX project for configuring Asterisk an IP telephony system via a GUI web-based graphical interface. A path traversal vulnerability exists in FreePBX versions 15, 16, and 17, which stems from a malicious...

8.7CVSS6.7AI score0.00434EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 9:24 a.m.5 views

CVE-2024-33328

A cross-site scripting XSS vulnerability in the component main.jsp of Lumisxp v15.0.x to v16.1.x allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the pageId parameter...

6.1CVSS5.8AI score0.00448EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.3 views

IBM Personal Communications 缓冲区错误漏洞

IBM Personal Communications is a host communications and terminal emulation package for Microsoft Windows from International Business Machines IBM. Now with a full 64-bit architecture, it features Virtual Terminal VT emulation and System Network Architecture SNA application support, and provides ...

8.8CVSS6.4AI score0.00138EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/11/09 12:0 a.m.5 views

GitLab Enterprise Edition Security Vulnerability

GitLab Enterprise Edition EE is a content management system from the US-based GitLab, Inc. A security vulnerability exists in GitLab Enterprise Edition that stems from a security hole when updating a target branch. Affected products and versions: GitLab EE versions 15.3 through 16.2.8 prior, 16.3...

8.1CVSS6.8AI score0.00502EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/09/21 12:0 a.m.5 views

PT-2023-28972 · Withsecure · Withsecure Elements Endpoint Protection +5

Name of the Vulnerable Software and Affected Versions: WithSecure Client Security version 15 WithSecure Server Security version 15 WithSecure Email and Server Security version 15 WithSecure Elements Endpoint Protection versions 17 and later WithSecure Client Security for Mac version 15 WithSecure...

7.5CVSS7.2AI score0.00531EPSS
Exploits0References8
CNNVD
CNNVD
added 2023/04/25 12:0 a.m.5 views

Odoo 跨站脚本漏洞

Odoo is an Enterprise Resource Planning ERP and Customer Relationship Management CRM system from Odoo Belgium. The system is developed in Python, with PostgreSQL as the database, and includes modules for sales management, inventory management, and financial management. A security vulnerability...

6.1CVSS6.8AI score0.00657EPSS
Exploits0References5
Rows per page
Query Builder