Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-12423

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00232EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-12421

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.0032EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/04/29 12:13 a.m.26 views

CVE-2025-46689

Ververica Platform 2.14.0 contain an Reflected XSS vulnerability via a namespaces/default/formats URI...

6.1CVSS5.3AI score0.00232EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/29 12:13 a.m.23 views

CVE-2025-46690

Ververica Platform 2.14.0 allows low-privileged users to access SQL connectors via a direct namespaces/default/formats request...

8.8CVSS5.4AI score0.0032EPSS
Exploits1References1
NVD
NVD
added 2025/04/27 10:15 p.m.21 views

CVE-2025-46689

Ververica Platform 2.14.0 contain an Reflected XSS vulnerability via a namespaces/default/formats URI...

6.1CVSS0.00232EPSS
Exploits1References3
OSV
OSV
added 2025/04/27 10:15 p.m.5 views

CVE-2025-46689

Ververica Platform 2.14.0 contain an Reflected XSS vulnerability via a namespaces/default/formats URI...

6.1CVSS5.8AI score0.00232EPSS
Exploits1References3
OSV
OSV
added 2025/04/27 10:15 p.m.5 views

CVE-2025-46690

Ververica Platform 2.14.0 allows low-privileged users to access SQL connectors via a direct namespaces/default/formats request...

8.8CVSS5.8AI score0.0032EPSS
Exploits1References3
NVD
NVD
added 2025/04/27 10:15 p.m.14 views

CVE-2025-46690

Ververica Platform 2.14.0 allows low-privileged users to access SQL connectors via a direct namespaces/default/formats request...

8.8CVSS0.0032EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/04/27 12:0 a.m.30 views

CVE-2025-46689

Ververica Platform 2.14.0 contain an Reflected XSS vulnerability via a namespaces/default/formats URI...

5.4CVSS0.00232EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/04/27 12:0 a.m.10 views

CVE-2025-46689

Ververica Platform 2.14.0 contain an Reflected XSS vulnerability via a namespaces/default/formats URI...

5.4CVSS5.3AI score0.00232EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/04/27 12:0 a.m.6 views

CVE-2025-46690

Ververica Platform 2.14.0 allows low-privileged users to access SQL connectors via a direct namespaces/default/formats request...

5CVSS5.4AI score0.0032EPSS
Exploits1References3
CVE
CVE
added 2025/04/27 12:0 a.m.58 views

CVE-2025-46690

Summary: Ververica Platform 2.14.0 allows low-privileged users to access SQL connectors by directly requesting namespaces/default/formats. The issue is described across multiple sources (Red Hat, CNNVD, CVE listings) with the same vector. The root cause is insufficient access control on the names...

8.8CVSS5.8AI score0.0032EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/04/27 12:0 a.m.59 views

CVE-2025-46689

CVE-2025-46689 affects Ververica Platform 2.14.0 with a Reflected XSS vulnerability exposed via the URI path namespaces/default/formats . The issue involves user-controlled input in that path, allowing an attacker to trigger script execution in a victim’s browser when the vulnerable page is loade...

6.1CVSS5.5AI score0.00232EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2025/04/27 12:0 a.m.5 views

Ververica Platform 安全漏洞

Ververica Platform is an integration platform from Ververica for stateful stream processing and stream analytics using open source Apache Flink. A security vulnerability exists in Ververica Platform version 2.14.0, which stems from the vulnerability of the namespaces/default/formats URI to...

6.1CVSS6.2AI score0.00232EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/04/27 12:0 a.m.3 views

Ververica Platform 安全漏洞

Ververica Platform is an integration platform from Ververica for stateful stream processing and stream analytics using open source Apache Flink. A security vulnerability exists in Ververica Platform version 2.14.0 that originates from a low-privileged user being able to access the SQL connector b...

8.8CVSS7.3AI score0.0032EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/04/27 12:0 a.m.5 views

PT-2025-18019 · Ververica · Ververica Platform

Name of the Vulnerable Software and Affected Versions: Ververica Platform version 2.14.0 Description: The issue is a Reflected XSS vulnerability. It can be exploited via a "namespaces/default/formats" URI. Recommendations: For Ververica Platform version 2.14.0, consider restricting access to the...

6.1CVSS5.6AI score0.00232EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2025/04/27 12:0 a.m.5 views

PT-2025-18020 · Ververica · Ververica Platform

Name of the Vulnerable Software and Affected Versions: Ververica Platform version 2.14.0 Description: The issue allows low-privileged users to access SQL connectors via a direct "namespaces/default/formats" request. Recommendations: For Ververica Platform version 2.14.0, consider restricting acce...

8.8CVSS7AI score0.0032EPSS
Exploits1References9
Cvelist
Cvelist
added 2025/04/27 12:0 a.m.18 views

CVE-2025-46690

Ververica Platform 2.14.0 allows low-privileged users to access SQL connectors via a direct namespaces/default/formats request...

5CVSS0.0032EPSS
Exploits1References3
Rows per page
Query Builder