Lucene search
K

1959 matches found

Vulnrichment
Vulnrichment
added 2026/04/16 10:27 p.m.7 views

CVE-2024-58343

Vision Helpdesk before 5.7.0 patched in 5.6.10 allows attackers to read user profiles via modified serialized cookie data to visclientid...

4.3CVSS5.8AI score0.00168EPSS
Exploits0References2
CVE
CVE
added 2026/04/16 10:27 p.m.8 views

CVE-2024-58343

CVE-2024-58343 affects Vision Helpdesk versions prior to 5.7.0, with a patch available in 5.6.10. The issue allows attackers to read user profiles by tampering serialized cookie data in vis_client_id. The CVSS v3.1 base score is 4.3 (MEDIUM) with network attack vector, low attack complexity, and ...

4.3CVSS5.8AI score0.00168EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/16 12:0 a.m.8 views

PT-2026-33372

CVE-2024-58343 Vision Helpdesk before 5.7.0 patched in 5.6.10 allows attackers to read user profiles via modified serialized cookie data to vis client id. https://t.co/8Cf7DKLrcr...

4.3CVSS5.8AI score0.00168EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/16 12:0 a.m.11 views

Vision Helpdesk 安全漏洞

Vision Helpdesk is a customer service software developed by Vision Helpdesk Company in India. Versions of Vision Helpdesk prior to 5.7.0 contained security vulnerabilities, which were caused by improper handling of serialized cookie data. This vulnerability could lead to the reading of user...

4.3CVSS5.8AI score0.00168EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/04/09 12:0 a.m.4 views

Follow My Eyes: Backdoor Attacks on VLM-Based Scanpath Prediction

Scanpath prediction models forecast the sequence and timing of human fixations during visual search, driving foveated rendering and attention-based interaction in mobile systems where their integrity is a first-class security concern. We present the first study of backdoor attacks against VLM-bas...

5.8AI score
Exploits0
CVE
CVE
added 2026/04/06 3:33 p.m.16 views

CVE-2025-47400

CVE-2025-47400 concerns a cryptographic issue caused by copying data to a destination buffer without validating the destination size, resulting in a buffer over-read in the Computer Vision component. The CVSS (3.1) vectors indicate Local attack vector, Low attack complexity, Low privileges, with ...

7.1CVSS6AI score0.00095EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/04/06 3:33 p.m.28 views

CVE-2025-47400 Buffer Over-read in Computer Vision

Cryptographic issue while copying data to a destination buffer without validating its size...

7.1CVSS0.00095EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/06 3:33 p.m.1 views

CVE-2025-47400 Buffer Over-read in Computer Vision

Cryptographic issue while copying data to a destination buffer without validating its size...

7.1CVSS6AI score0.00095EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/04/06 12:0 a.m.3 views

SE-Enhanced ViT and BiLSTM-Based Intrusion Detection for Secure IIoT and IoMT Environments

With the rapid growth of interconnected devices in Industrial and Medical Internet of Things IIoT and MIoT ecosystems, ensuring timely and accurate detection of cyber threats has become a critical challenge. This study presents an advanced intrusion detection framework based on a hybrid...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/04/04 12:0 a.m.3 views

Perceptual Gaps: ASCII Art and Overlapping Audio As CAPTCHA

As multimodal large language models LLMs advance, traditional CAPTCHAs have become obsolete at distinguishing humans from bots. To address this shift, this paper aims to investigate the possibility of using tasks for which humans have evolved highly specialised neural processing. We introduce two...

6AI score
Exploits0
Cvelist
Cvelist
added 2026/04/03 9:5 p.m.16 views

CVE-2017-20237 Hirschmann Industrial HiVision Authentication Bypass Remote Code Execution

Hirschmann Industrial HiVision versions prior to 06.0.07 and 07.0.03 contains an authentication bypass vulnerability in the master service that allows unauthenticated remote attackers to execute arbitrary commands with administrative privileges. Attackers can invoke exposed interface methods over...

9.8CVSS0.00961EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.9 views

Belden Hirschmann Industrial HiVision 授权问题漏洞

Belden Hirschmann Industrial HiVision is an industrial network management software platform developed by the American company Belden. Versions of Belden Hirschmann Industrial HiVision prior to 06.0.06 and 07.0.01 contained vulnerabilities related to authorization. These vulnerabilities stemmed fr...

7.1CVSS5.8AI score0.00237EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.8 views

Belden Hirschmann Industrial HiVision 授权问题漏洞

Belden Hirschmann Industrial HiVision is an industrial network management software platform developed by the American company Belden. Versions of Belden Hirschmann Industrial HiVision prior to 06.0.07 and 07.0.03 contained vulnerabilities related to authorization. These vulnerabilities stemmed fr...

9.8CVSS6.1AI score0.00961EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/03/31 11:27 p.m.4 views

SUSE CVE-2026-28857

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.4, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, visionOS 26.4. Processing maliciously crafted web content may lead to an unexpected process crash...

6.5CVSS5.8AI score0.00572EPSS
Exploits0References10
Packet Storm News
Packet Storm News
added 2026/03/29 12:0 a.m.4 views

Hidden Ads: Behavior Triggered Semantic Backdoors for Advertisement Injection in Vision Language Models

Vision-Language Models VLMs are increasingly deployed in consumer applications where users seek recommendations about products, dining, and services. We introduce Hidden Ads, a new class of backdoor attacks that exploit this recommendation-seeking behavior to inject unauthorized advertisements...

5.9AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/03/27 6:31 p.m.8 views

azure-ai-generative (>=1.0.0b1 <=1.0.0b3), azure-ai-resources (>=1.0.0b1 <=1.0.0b9) +30 more potentially affected by CVE-2025-15381 via mlflow-skinny (>=3.0.0 <=3.11.0rc0)

mlflow-skinny PYPI version =3.0.0, =1.0.0b1, =1.0.0b1, =0.1.0, =0.1.0, =2.5.0, =0.0.13, =7.1.1, =0.2.0, =0.2.1 and more Source cves: CVE-2025-15381 Source advisory: SNYK:PYTHON-MLFLOWSKINNY-15870197...

8.1CVSS7.4AI score0.00331EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/03/27 2:26 p.m.8 views

CVE-2021-27195

Improper Authorization vulnerability in Netop Vision Pro up to and including to 9.7.1 allows an attacker to replay network traffic...

5.9CVSS6.8AI score0.00771EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/27 2:26 p.m.7 views

CVE-2021-27193

Incorrect default permissions vulnerability in the API of Netop Vision Pro up to and including 9.7.1 allows a remote unauthenticated attacker to read and write files on the remote machine with system privileges resulting in a privilege escalation...

9.8CVSS7.2AI score0.0148EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:17 p.m.5 views

CVE-2026-32373

Missing Authorization vulnerability in Cozy Vision SMS Alert Order Notifications sms-alert allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SMS Alert Order Notifications: from n/a through = 3.9.0...

5.4CVSS5.8AI score0.00209EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:16 p.m.3 views

CVE-2026-28870

An information leakage was addressed with additional validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4, tvOS 26.4, visionOS 26.4, watchOS 26.4. An app may be able to access sensitive user data...

5.5CVSS5.8AI score0.0016EPSS
Exploits0References1
Rows per page
Query Builder