Lucene search
K

17 matches found

Cvelist
Cvelist
added 2026/06/10 9:45 p.m.37 views

CVE-2026-46559 ImageMagick: Heap Buffer Over-Write of a single byte in the JP2 encoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an incorrect check in the JP2 will result in an heap buffer over-write of a single byte when specifying certain options. This issue has been patched in versions...

4CVSS0.00116EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/05 6:35 p.m.7 views

CVE-2026-27960

OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. In versions 6.6.0 through 6.9.12, there is a privilege escalation vulnerability that can be exploited by unauthenticated attackers to query the API as any existing user, including the default admi...

9.8CVSS5.7AI score0.0048EPSS
Exploits1References2Affected Software1
Patchstack
Patchstack
added 2026/03/10 8:24 p.m.3 views

WordPress Core <= 6.9.1 - Server-Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability discovered by sibwtf in WordPress core versions 6.9-6.9.1...

5.8AI score
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/01/28 11:24 a.m.2 views

CVE-2025-26386

Johnson Controls iSTAR Configuration Utility ICU has Stack-based Buffer Overflow vulnerability. This issue affects iSTAR Configuration Utility ICU version 6.9.7 and prior. Successful exploitation of this vulnerability could result in failure within the operating system of the machine hosting the...

7.1CVSS5.9AI score0.0039EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/01/22 12:0 a.m.8 views

i-Vu and Carrier Automated Logic WebCTRL security vulnerabilities

Carrier i-Vu and Carrier Automated Logic WebCTRL are both products of the American company Carrier. Carrier i-Vu is a building management system platform. Carrier Automated Logic WebCTRL is a building automation system. There are security vulnerabilities in versions 6.0 to 9.0 of Carrier i-Vu and...

7CVSS5.8AI score0.00158EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/06/09 12:0 a.m.5 views

PT-2023-22613 · Mim Software · Mim License Server +1

Name of the Vulnerable Software and Affected Versions: MIM software Inc MIM License Server and MIMpacs services versions 6.9 through 7.0 Description: The issue allows a remote unauthenticated attacker to execute arbitrary code via the RMI Registry service. Recommendations: For versions 6.9 throug...

8.8CVSS8.5AI score0.00843EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/01/05 12:0 a.m.6 views

Aruba Networks ClearPass Policy Manager 操作系统命令注入漏洞

Aruba Networks ClearPass Policy Manager is an Aruba Networks application that provides a secure access management system for wireless networks. An operating system command injection vulnerability exists in Aruba Networks ClearPass Policy Manager. An attacker could use this vulnerability to run...

7.2CVSS7.3AI score0.01437EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/01/05 12:0 a.m.3 views

Aruba Networks ClearPass Policy Manager 操作系统命令注入漏洞

Aruba Networks ClearPass Policy Manager is an Aruba Networks application that provides a secure access management system for wireless networks. An operating system command injection vulnerability exists in Aruba Networks ClearPass Policy Manager. An attacker could use this vulnerability to run...

7.2CVSS7.3AI score0.01437EPSS
Exploits0References2
OSV
OSV
added 2022/11/25 3:15 p.m.6 views

CVE-2022-38767

An issue was discovered in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet sent by a Radius server, may cause Denial of Service during the IP Radius access procedure...

7.5CVSS5.8AI score0.01028EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/10/25 12:0 a.m.4 views

Abode Iota 操作系统命令注入漏洞

Abode Iota is a reliable Diy home security system from Abode. An operating system command injection vulnerability exists in Abode Iota All-In-One Security Kit versions 6.9X and 6.9Z. An attacker could execute arbitrary commands by exploiting this vulnerability...

10CVSS8.8AI score0.03073EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/05/16 8:15 p.m.6 views

CVE-2022-23660

A remote authentication bypass vulnerability was discovered in Aruba ClearPass Policy Manager versions: 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability...

10CVSS7.3AI score0.02557EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/05/16 12:0 a.m.5 views

Aruba ClearPass Policy Manager 操作系统命令注入漏洞

Aruba ClearPass Policy Manager is an application from Aruba, Inc. that provides a secure access management system for wireless networks. web management of Aruba ClearPass Policy Manager versions 6.10.4 and earlier, 6.9.9 and earlier, and 6.8.9-HF2 and earlier interface is vulnerable to remote...

9.1CVSS8.6AI score0.02084EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/10/15 3:15 p.m.3 views

CVE-2021-40997

A remote authentication bypass vulnerability was discovered in Aruba ClearPass Policy Manager versions: ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8.9-HF1. Aruba has released patches for...

9.8CVSS7.3AI score0.01704EPSS
Exploits0References2
OSV
OSV
added 2021/10/15 2:15 p.m.5 views

CVE-2021-37738

A remote disclosure of sensitive information vulnerability was discovered in Aruba ClearPass Policy Manager versions: ClearPass Policy Manager 6.10.x prior to 6.10.2 - - ClearPass Policy Manager 6.9.x prior to 6.9.7-HF1 - - ClearPass Policy Manager 6.8.x prior to 6.8.9-HF1. Aruba has released...

7.5CVSS5.8AI score0.01243EPSS
Exploits0References1
OSV
OSV
added 2021/07/08 4:15 p.m.3 views

CVE-2021-34610

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager versions: Prior to 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager that address this security vulnerability...

7.2CVSS6AI score0.03024EPSS
Exploits0References1
OSV
OSV
added 2019/08/21 6:15 p.m.5 views

CVE-2019-11551

In Code42 Enterprise and Crashplan for Small Business through Client version 6.9.1, an attacker can craft a restore request to restore a file through the Code42 app to a location they do not have privileges to write...

5.5CVSS6.1AI score0.00254EPSS
Exploits0References1
CNVD
CNVD
added 2015/08/25 12:0 a.m.2 views

OpenSSH sshd monitor component input validation vulnerability

OpenSSH OpenBSD Secure Shell on non-OpenBSD platforms is a set of connectivity tools for secure access to remote computers running on non-OpenBSD BSD-based UNIX implementations platforms maintained by the OpenBSD Project. A security vulnerability exists in the monitor component of OpenSSH 6.9 and...

1.9CVSS7.9AI score0.00378EPSS
Exploits0References1
Rows per page
Query Builder