Lucene search
K

1037 matches found

Rosalinux
Rosalinux
added 2025/02/24 12:28 p.m.16 views

Advisory ROSA-SA-2025-2713

Software: openblas 2000.3.15 OS: ROSA Virtualization 3.0 packageevrstring: openblas-2000.3.15 CVE-ID: CVE-2021-4048 BDU-ID: 2021-05061 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the Microsoft Visio vector graphics, diagram and flowchart editor is related to memory usage after memory has be...

9.1CVSS7.3AI score0.0262EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/02/14 12:0 a.m.23 views

Security Updates for Microsoft Visio Products C2R (February 2025)

The Microsoft Visio Products are missing a security update. It is, therefore, affected by the following vulnerabilities: - Microsoft Office is affected by a remote code execution vulnerability. CVE-2025-21345, CVE-2025-21356 Note that Nessus has not tested for these issues but has instead relied...

7.8CVSS9AI score0.00707EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/02/12 1:21 p.m.5 views

CVE-2025-1175

Reflected Cross-Site Scripting XSS vulnerability in Kelio Visio 1, Kelio Visio X7 and Kelio Visio X4, in versions between 3.2C and 5.1K. This vulnerability could allow an attacker to execute a JavaScript payload by making a POST request and injecting malicious code into the editable ‘username’...

6.1CVSS5.9AI score0.00295EPSS
Exploits0References3
NVD
NVD
added 2025/02/10 1:15 p.m.6 views

CVE-2025-1175

Reflected Cross-Site Scripting XSS vulnerability in Kelio Visio 1, Kelio Visio X7 and Kelio Visio X4, in versions between 3.2C and 5.1K. This vulnerability could allow an attacker to execute a JavaScript payload by making a POST request and injecting malicious code into the editable ‘username’...

6.1CVSS0.00295EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/10 12:42 p.m.5 views

CVE-2025-1175 Cross-Site Scripting (XSS) vulnerability in Kelio Visio

Reflected Cross-Site Scripting XSS vulnerability in Kelio Visio 1, Kelio Visio X7 and Kelio Visio X4, in versions between 3.2C and 5.1K. This vulnerability could allow an attacker to execute a JavaScript payload by making a POST request and injecting malicious code into the editable ‘username’...

6.1CVSS6AI score0.00295EPSS
Exploits0References1
CVE
CVE
added 2025/02/10 12:42 p.m.53 views

CVE-2025-1175

The vulnerability CVE-2025-1175 is a Reflected Cross-Site Scripting (XSS) in Kelio Visio 1, Kelio Visio X7, and Kelio Visio X4, affecting versions 3.2C through 5.1K. The issue occurs in the editable ‘username’ parameter of the endpoint "/PageLoginVisio.do" and can be triggered by a POST request t...

6.1CVSS6AI score0.00295EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/10 12:42 p.m.14 views

CVE-2025-1175 Cross-Site Scripting (XSS) vulnerability in Kelio Visio

Reflected Cross-Site Scripting XSS vulnerability in Kelio Visio 1, Kelio Visio X7 and Kelio Visio X4, in versions between 3.2C and 5.1K. This vulnerability could allow an attacker to execute a JavaScript payload by making a POST request and injecting malicious code into the editable ‘username’...

6.1CVSS0.00295EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/10 12:0 a.m.3 views

Kelio Visio 跨站脚本漏洞

Kelio Visio is a networked touchscreen punch terminal from Kelio that can be used for a variety of tasks. A cross-site scripting vulnerability exists in Kelio Visio, which stems from a reflective cross-site scripting vulnerability caused by injecting malicious code into the username parameter of...

6.1CVSS6.3AI score0.00295EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/02/10 12:0 a.m.5 views

PT-2025-6040 · Kelio · Kelio Visio X4 +2

Name of the Vulnerable Software and Affected Versions: Kelio Visio 1 versions 3.2C through 5.1K Kelio Visio X7 versions 3.2C through 5.1K Kelio Visio X4 versions 3.2C through 5.1K Description: The issue is a Reflected Cross-Site Scripting XSS vulnerability that could allow an attacker to execute ...

6.1CVSS6.2AI score0.00295EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/01/31 12:0 a.m.15 views

Security Updates for Microsoft Visio Products C2R (January 2025)

The Microsoft Visio Products are missing a security update. It is, therefore, affected by the following vulnerabilities: - Microsoft Office is affected by a remote code execution vulnerability. CVE-2025-21345, CVE-2025-21356 Note that Nessus has not tested for these issues but has instead relied...

7.8CVSS9AI score0.00707EPSS
Exploits0References4
CNVD
CNVD
added 2025/01/24 12:0 a.m.16 views

Microsoft Office Visio Remote Code Execution Vulnerability (CNVD-2025-02828)

Microsoft Office is a widely used office software suite that includes Word, Excel, PowerPoint, Visio, and other components that provide document editing, data analysis, presentation creation, and more. A remote code execution vulnerability exists in Microsoft Office Visio, which arises due to Use...

7.8CVSS7.9AI score0.00577EPSS
Exploits0References1
CNVD
CNVD
added 2025/01/24 12:0 a.m.23 views

Microsoft Office Visio Remote Code Execution Vulnerability (CNVD-2025-02827)

Microsoft Office is a widely used office software suite that contains a variety of applications such as Word, Excel, PowerPoint and Visio. A remote code execution vulnerability exists in Microsoft Office Visio, which arises due to the use of incompatible types when accessing resources type...

7.8CVSS7.9AI score0.00707EPSS
Exploits0References1
NVD
NVD
added 2025/01/14 6:16 p.m.17 views

CVE-2025-21356

Microsoft Office Visio Remote Code Execution Vulnerability...

7.8CVSS0.00707EPSS
Exploits0References1
OSV
OSV
added 2025/01/14 6:16 p.m.2 views

CVE-2025-21356

Microsoft Office Visio Remote Code Execution Vulnerability...

7.8CVSS7.4AI score0.00707EPSS
Exploits0References1
OSV
OSV
added 2025/01/14 6:16 p.m.0 views

CVE-2025-21345

Microsoft Office Visio Remote Code Execution Vulnerability...

7.8CVSS5.9AI score0.00577EPSS
Exploits0References1
NVD
NVD
added 2025/01/14 6:16 p.m.24 views

CVE-2025-21345

Microsoft Office Visio Remote Code Execution Vulnerability...

7.8CVSS0.00577EPSS
Exploits0References1
CVE
CVE
added 2025/01/14 6:4 p.m.161 views

CVE-2025-21356

CVE-2025-21356 concerns Microsoft Office Visio. Connected sources describe a remote code execution vulnerability in Visio due to type obfuscation and a heap-based buffer overflow when accessing resources, enabling arbitrary code execution on a user’s system. Affected product is Microsoft Visio (O...

7.8CVSS7.8AI score0.00707EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2025/01/14 6:4 p.m.16 views

CVE-2025-21356 Microsoft Office Visio Remote Code Execution Vulnerability

...

7.8CVSS0.00707EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/14 6:4 p.m.18 views

CVE-2025-21356 Microsoft Office Visio Remote Code Execution Vulnerability

...

7.8CVSS6.9AI score0.00707EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/14 6:4 p.m.17 views

CVE-2025-21345 Microsoft Office Visio Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.00577EPSS
Exploits0References1
Rows per page
Query Builder