Lucene search
K

89 matches found

Malwarebytes
Malwarebytes
added 2026/04/01 2:27 p.m.6 views

WhatsApp on Windows users targeted in new campaign, warns Microsoft

Microsoft researchers found a campaign that abuses WhatsApp attachments to sneak a script onto Windows machines which will lead to the attacker gaining remote control. WhatsApp offers a desktop application for Windows and macOS, which users can synchronize with their mobile devices. Desktop...

5.9AI score
Exploits0
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.8 views

RustDesk 安全漏洞

RustDesk is a remote access and control software developed by RustDesk personal developers. It is primarily written in Rust and can be used to maintain computers and other devices remotely. Versions of RustDesk 1.4.5 and earlier contain security vulnerabilities, which stem from permission abuse...

9.8CVSS5.8AI score0.00376EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.6 views

RustDesk 安全漏洞

RustDesk is a remote access and control software developed by RustDesk personal developers. It is primarily written in Rust and can be used to maintain computers and other devices remotely. Versions of RustDesk 1.4.5 and earlier contain security vulnerabilities, which stem from improper certifica...

9.1CVSS5.8AI score0.00313EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2005-4446

Malware in sbrugna...

7.5CVSS6.4AI score0.02739EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-4766

Malware in sbrugna...

6.8CVSS6.4AI score0.01857EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5955

Malware in sbrugna...

4.3CVSS5.4AI score0.00629EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-7039

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00247EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-34605

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00851EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-8849

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00326EPSS
Exploits0References4
CVE
CVE
added 2025/07/29 7:36 p.m.18 views

CVE-2025-53902

Tuleap exposes confidential artifact information to unauthorized users via email notifications. CVE-2025-53902 affects Tuleap Community Edition <16.9.99.1752585665 and Tuleap Enterprise Edition <16.8-6 and

4.3CVSS6.8AI score0.00302EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2025/07/23 6:33 a.m.4 views

GHSA-3R3J-4VRW-884J files-bucket-server vulnerable to Directory Traversal

All versions of the package files-bucket-server are vulnerable to Directory Traversal, where an attacker can traverse the file system and access files outside of the intended directory...

8.7CVSS6.8AI score0.00755EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/07/23 12:0 a.m.3 views

SonicWall SMA 100 Series 跨站脚本漏洞

SonicWall SMA 100 Series is a series of remote access software from SonicWall Corporation. A cross-site scripting vulnerability exists in SonicWall SMA 100 Series that originates from reflective cross-site scripting and could lead to arbitrary JavaScript code execution...

6.1CVSS7.4AI score0.53214EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/07/22 12:0 a.m.7 views

The vulnerability of the RemotePC software for providing remote access lies in its insecure management of privileges, allowing attackers to escalate their privileges.

The vulnerability of the RemotePC remote access software is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root level...

7.3CVSS5.5AI score
Exploits0References1
NVD
NVD
added 2025/07/02 9:15 a.m.5 views

CVE-2025-24331

The Single RAN baseband OAM service is intended to run as an unprivileged service. However, it initially starts with root privileges and assigns certain capabilities before dropping to an unprivileged level. The capabilities retained from the root period are considered extensive after the privile...

6.4CVSS0.00135EPSS
Exploits0References1
OSV
OSV
added 2025/06/19 7:15 p.m.5 views

CVE-2025-6273

A vulnerability was found in WebAssembly wabt up to 1.0.37 and classified as problematic. This issue affects the function LogOpcode of the file src/binary-reader-objdump.cc. The manipulation leads to reachable assertion. Local access is required to approach this attack. The exploit has been...

4.8CVSS7.2AI score
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/05/30 12:0 a.m.13 views

ConnectWise ScreenConnect < 25.2.4 RCE

According to its version, the ConnectWise ScreenConnect remote access software installed on the remote host is prior to 25.2.4. It is, therefore affected by a remote code execution vulnerability: - ScreenConnect versions 25.2.3 and earlier versions may be susceptible to a ViewState code injection...

8.1CVSS9.4AI score0.03292EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 12:3 a.m.7 views

CVE-2022-24906

Nextcloud Deck is a Kanban-style project & personal management tool for Nextcloud, similar to Trello. The full path of the application is exposed to unauthorized users. It is recommended that the Nextcloud Deck app is upgraded to 1.2.11, 1.4.6, or 1.5.4. There is no workaround available...

4.3CVSS6.8AI score0.01013EPSS
Exploits1References1
OSV
OSV
added 2025/05/20 7:23 p.m.5 views

GHSA-X8PV-FGXP-8V3X TYPO3 Allows Information Disclosure via DBAL Restriction Handling

Problem When performing a database query involving multiple tables through the database abstraction layer DBAL, frontend user permissions are only applied via FrontendGroupRestriction to the last table. As a result, data from additional tables included in the same query may be unintentionally...

3.7CVSS7.1AI score0.00253EPSS
Exploits0References4
OSV
OSV
added 2025/04/18 7:1 a.m.8 views

CVE-2025-40114 iio: light: Add check for array bounds in veml6075_read_int_time_ms

In the Linux kernel, the following vulnerability has been resolved: iio: light: Add check for array bounds in veml6075readinttimems The array contains only 5 elements, but the index calculated by veml6075readinttimeindex can range from 0 to 7, which could lead to out-of-bounds access. The check...

7.8CVSS6.9AI score0.00212EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/04/13 2:36 a.m.36 views

CVE-2025-0128

A denial-of-service DoS vulnerability in the Simple Certificate Enrollment Protocol SCEP authentication feature of Palo Alto Networks PAN-OS® software enables an unauthenticated attacker to initiate system reboots using a maliciously crafted packet. Repeated attempts to initiate a reboot causes t...

8.7CVSS7.1AI score0.0026EPSS
Exploits0References3
Rows per page
Query Builder