Lucene search
K

33 matches found

RedHat Linux
RedHat Linux
added 2026/06/10 11:41 a.m.6 views

mysql: DML unspecified vulnerability (CPU Apr 2026)

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access v...

4.9CVSS7AI score0.00242EPSS
Exploits0References6
vulnersOsv
vulnersOsv
added 2026/05/12 3:0 p.m.9 views

@0xchain/telemetry (>=1.1.0-beta.8 <=1.1.0-beta.18), @20206205tech/nestjs-common (>=0.8.0 <=0.11.3) +958 more potentially affected by CVE-2026-44288 via protobufjs (>=8.0.0 <=8.0.1)

protobufjs NPM version =8.0.0, =1.1.0-beta.8, =0.8.0, =1.0.0, =1.1.4, =0.3.1, =0.3.1, =0.7.1, =0.7.0, =0.8.0 and more Source cves: CVE-2026-44288 Source advisory: SNYK:JS-PROTOBUFJS-16643234...

5.3CVSS5.7AI score0.00301EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.12 views

PT-2026-38595

Name of the Vulnerable Software and Affected Versions GitHub Enterprise Server versions 3.19.1 through 3.19.5 GitHub Enterprise Server versions 3.20.0 through 3.20.1 Description A reflected HTML injection issue exists in the Management Console login page. The redirect to query parameter on the...

5.9CVSS5.8AI score0.00164EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/30 5:39 a.m.3 views

EUVD-2026-26315

ICMPv6 PvD protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.2AI score0.00122EPSS
Exploits1References2
vulnersOsv
vulnersOsv
added 2026/04/29 12:33 p.m.14 views

africa.absa:inception-application (>=1.1.0 <=1.2.0), africa.absa:inception-test (>=1.1.0 <=1.2.0) +2768 more potentially affected by CVE-2026-22745 via org.springframework:spring-webflux (>=5.0.0.RELEASE <=5.3.4)

org.springframework:spring-webflux MAVEN version =5.0.0.RELEASE, =1.1.0, =1.1.0, =0.5.0, =0.5.0, =0.5.0, =j8.2.2.0, =0.0.1, =v0.3.12, =v0.3.10, =v0.3.12, =2.1.2.RELEASE, =4.1.36, =4.1.7, =4.7.1 - br.com.m4rc310:br-com-m4rc310-graphql =1.0.1 - br.com.m4rc310:br-com-m4rc310-libs =1.0.1 and more...

5.3CVSS5.7AI score0.00341EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/04/17 10:57 a.m.4 views

CVE-2026-35074

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7.0.0, LTS2025 release versions 8.3.1.0 through 8.3.1.20, LTS2024 release versions 7.13.1.0 through 7.13.1.60 contain an improper neutralization of special elements used in an OS Command Injection vulnerability. A high privileged attacker...

6.7CVSS6AI score0.00571EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2026/04/06 6:0 p.m.6 views

agent-evaluator (=0.7.8), apppy-app (>=0.1.0 <=0.24.1) +61 more potentially affected by CVE-2026-35526 via strawberry-graphql (>=0.202.1 <=0.312.0)

strawberry-graphql PYPI version =0.202.1, =0.1.0, =0.1.0, =0.3.0, =0.1.0, =0.1.0, =0.1.0, =0.0.33, =0.9.0, =25.13.0, =0.41.0, =1.2.0, =0.1.0a1, =1.1.20, =2.1.1 - dictatorgenai =0.1.0 and more Source cves: CVE-2026-35526 Source advisory: OSV:GHSA-HV3W-M4G2-5X77...

7.5CVSS5.7AI score0.00274EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/03/09 12:43 p.m.8 views

airflow-clickhouse-plugin (>=1.3.0 <=1.4.0), airflow-dagfactory (=0.19.1) +28 more potentially affected by CVE-2025-69219 via apache-airflow-providers-http (>=5.2.1 <=6.0.0)

apache-airflow-providers-http PYPI version =5.2.1, =1.3.0, =0.0.1, =0.0.9, =0.9.2, =2.9.0, =1.0.0, =0.1.34, =2.10.3, =1.7.3, =1.8.0rc2, =4.3.0, =5.1.1 and more Source cves: CVE-2025-69219 Source advisory: SNYK:PYTHON-APACHEAIRFLOWPROVIDERSHTTP-15441017...

8.8CVSS5.8AI score0.00695EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.13 views

PT-2026-6102

Name of the Vulnerable Software and Affected Versions GLPI versions 0.85 through 10.0.22 Description GLPI is an asset and IT management software package. An authenticated user can perform a SQL injection. This allows for potential unauthorized access or modification of data within the system...

8.8CVSS5.7AI score0.00264EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/01/20 9:56 p.m.2 views

CVE-2026-21978

Vulnerability in the Oracle FLEXCUBE Universal Banking product of Oracle Financial Services Applications component: Relationship Pricing. Supported versions that are affected are 14.0.0.0.0-14.8.0.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...

6.5CVSS7.2AI score0.00251EPSS
Exploits0References2Affected Software1
vulnersOsv
vulnersOsv
added 2026/01/08 9:46 p.m.2 views

aws-greengrass-nucleus (>=0.0.3 <=0.0.7) potentially affected by unknown CVE via aws-sdk-greengrassv2 (>=0.15.0 <=0.18.0)

aws-sdk-greengrassv2 CARGO version =0.15.0, =0.0.3, =0.0.7 Source cves: unknown CVE Source advisory: OSV:GHSA-G59M-GF8J-GJF5...

5.8AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/01/08 8:27 p.m.12 views

acherion (>=0.2.0 <=0.9.2), aesp (=2025.9.12) +244 more potentially affected by CVE-2026-21874 via nicegui (>=2.11.0 <=3.3.1)

nicegui PYPI version =2.11.0, =0.2.0, =1.0.0, =0.0.1, =0.1.0, =0.2.0, =0.3.0, =0.3.0, =0.0.0, =0.4.14, =1.0.0, =1.1.3 - autestoy =0.1.0 - auth-web-kit =1.2.2 and more Source cves: CVE-2026-21874 Source advisory: OSV:GHSA-MP55-G7PJ-RVM2...

5.3CVSS5.7AI score0.0051EPSS
Exploits1
OSV
OSV
added 2025/10/22 4:15 p.m.8 views

AZL-68736 CVE-2025-40778 affecting package bind for versions less than 9.20.15-1

Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.11.3-S1 through...

8.6CVSS6.5AI score0.00509EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2025/09/24 6:43 p.m.6 views

@remirror/core (>=0.2.0 <=0.11.0), @remirror/core-extensions (>=0.2.0 <=0.13.1) +42 more potentially affected by CVE-2025-57352 via min-document (>=2.17.0 <=2.19.0)

min-document NPM version =2.17.0, =0.2.0, =0.2.0, =0.4.2-ci.1569229282.9, =0.4.2-canary.2, =0.4.2-ci.1569229282.9, =0.4.2-ci.1569229282.9, =0.2.0, =0.2.0, =0.2.0, =0.4.0, =0.4.2-ci.1569229282.9, =0.2.0, =0.2.0, =0.2.0, =0.4.2-ci.1569229282.9, =0.13.1 and more Source cves: CVE-2025-57352 Source...

5.3CVSS5.8AI score0.00329EPSS
Exploits0
OSV
OSV
added 2025/09/04 11:56 p.m.5 views

CVE-2025-58362 Hono contains a flaw in URL path parsing, potentially leading to path confusion

Hono is a Web application framework that provides support for any JavaScript runtime. Versions 4.8.0 through 4.9.5 contain a flaw in the getPath utility function which could allow path confusion and potential bypass of proxy-level ACLs e.g. Nginx location blocks. The original implementation relie...

7.5CVSS6.3AI score0.00498EPSS
Exploits0References5
CVE
CVE
added 2025/08/20 8:3 a.m.19 views

CVE-2025-49410

CVE-2025-49410- WordPress Portfolio Manager Pro Plugin &lt;= 3.8 – Unauthenticated Arbitrary File Upload vulnerability. According to Patchstack and CVE records, it allows uploading a dangerous file (e.g., web shell) due to improper file handling, enabling potential remote code execution on affect...

10CVSS5.2AI score0.00452EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2025/07/07 12:30 p.m.9 views

3m (=0.1.0), aaa-ml-datasets-course (=1.0.0) +1736 more potentially affected by CVE-2025-3263 via transformers (>=2.10.0 <=4.50.3)

transformers PYPI version =2.10.0, =0.1.0, =0.1.1, =0.1.0, =0.0.3, =0.0.1, =0.0.0.dev20230804, =0.1.0, =0.3.0, =0.1.0, =0.2.5, =0.2.11 and more Source cves: CVE-2025-3263 Source advisory: OSV:GHSA-Q2WP-RJMX-X6X9...

5.3CVSS6AI score0.00431EPSS
Exploits1
CNNVD
CNNVD
added 2025/04/22 12:0 a.m.5 views

Jmix 安全漏洞

Jmix is a set of libraries and tools from Jmix, Inc. for accelerating Spring Boot data-centric application development. A security vulnerability exists in Jmix versions 1.0.0 through 1.6.1 and 2.0.0 through 2.3.4, which stems from an improper file size limitation and could result in a denial of...

6.5CVSS6.4AI score0.00563EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2024/05/02 9:30 p.m.9 views

3loc (>=0.1.0 <=0.4.0), 3scale (>=0.2.0 <=0.6.2) +657 more potentially affected by CVE-2024-34392 via libxmljs (>=0.10.0 <=1.0.11)

libxmljs NPM version =0.10.0, =0.1.0, =0.2.0, =0.3.2, =0.0.1, =4.0.1, =1.10.4, =1.8.1, =1.5.8, =1.5.1, =1.8.3, =0.1.0, =1.0.1, =1.2.0 and more Source cves: CVE-2024-34392 Source advisory: OSV:GHSA-MG49-JQGW-GCJ6...

9.8CVSS7.2AI score0.01136EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2024/04/25 6:30 p.m.10 views

br.com.labbs:quarkus-monitor-reactive-deployment (=1.0.4), com.github.mcollovati:quarkus-hilla-deployment (>=1.0.0 <=2.0.0-alpha1) +44 more potentially affected by CVE-2023-5675 via io.quarkus:quarkus-resteasy-reactive-common-deployment (>=1.11.0.Beta1 <=3.2.0.Final)

io.quarkus:quarkus-resteasy-reactive-common-deployment MAVEN version =1.11.0.Beta1, =1.0.0, =0.8.0, =0.8.0, =1.0.0, =1.0.3, =0.0.1, =1.0.1, =1.0.0, =1.0.0, =1.30.0, =1.1.1.Final, =2.13.0.CR1, =3.2.0.Final and more Source cves: CVE-2023-5675 Source advisory: OSV:GHSA-25...

6.5CVSS6.5AI score0.00458EPSS
Exploits0
Rows per page
Query Builder