Lucene search
K

120936 matches found

CNNVD
CNNVD
added 2025/10/16 12:0 a.m.4 views

Apache ActiveMQ NMS 安全漏洞

Apache ActiveMQ NMS is a messaging client from the Apache Foundation. A security vulnerability exists in Apache ActiveMQ NMS version 2.3.0 and earlier, which stems from deserializing untrusted data and could lead to the execution of arbitrary code...

9.8CVSS7AI score0.02016EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/16 12:0 a.m.3 views

TencentOS Server 4: libtiff (TSSA-2025:0748)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0748 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

8.8CVSS6.3AI score0.00739EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/15 8:42 p.m.9 views

CVE-2025-61803

Substance3D - Stager versions 3.1.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.7AI score0.00188EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/15 8:41 p.m.9 views

CVE-2025-61807

Substance3D - Stager versions 3.1.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.7AI score0.00188EPSS
Exploits0References1
Snyk
Snyk
added 2025/10/15 8:29 p.m.2 views

Prototype Pollution

Overview happy-dom is a Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. It includes many web standards from WHATWG DOM and HTML. Affected versions of this package are vulnerable to Prototype Pollution via the shared process between untrusted scripts...

9.4CVSS8.4AI score0.00318EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/15 7:38 p.m.12 views

CVE-2025-61801

Dimension versions 4.1.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.7AI score0.0021EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/15 7:38 p.m.15 views

CVE-2025-54281

Adobe Framemaker versions 2020.9, 2022.7 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.6AI score0.00197EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/15 7:38 p.m.10 views

CVE-2025-61800

Dimension versions 4.1.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.7AI score0.00201EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/15 7:38 p.m.10 views

CVE-2025-54273

Substance3D - Viewer versions 0.25.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.00176EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2025/10/15 6:55 a.m.5 views

Multiple RSUPPORT products may insecurely load Dynamic Link Libraries

Overview Multiple RSUPPORT products contain multiple vulnerabilities listed below. RemoteView PC Application Console vulnerable to uncontrolled search path element CWE-427 - CVE-2025-26859 RemoteCall Remote Support Program for Operator vulnerable to uncontrolled search path element CWE-427 -...

8.5CVSS7.8AI score0.00157EPSS
Exploits0References7
NVD
NVD
added 2025/10/15 6:15 a.m.12 views

CVE-2025-26860

RemoteCall Remote Support Program for Operator versions prior to 5.1.0 contain an uncontrolled search path element vulnerability. If a crafted DLL is placed in the same folder with the affected product, it may cause an arbitrary code execution...

8.5CVSS0.00157EPSS
Exploits0References2
NVD
NVD
added 2025/10/15 6:15 a.m.11 views

CVE-2025-26859

RemoteView PC Application Console versions prior to 6.0.2 contain an uncontrolled search path element vulnerability. If a crafted DLL is placed in the same folder with the affected product, it may cause an arbitrary code execution...

8.5CVSS0.00157EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/15 6:7 a.m.9 views

CVE-2025-26861

RemoteCall Remote Support Program for Operator versions prior to 5.3.0 contain an uncontrolled search path element vulnerability. If a crafted DLL is placed in the same folder with the affected product, it may cause an arbitrary code execution...

8.5CVSS0.00157EPSS
Exploits0References2
CVE
CVE
added 2025/10/15 6:7 a.m.14 views

CVE-2025-26861

CVE-2025-26861 affects RemoteCall Remote Support Program (for Operator). The vulnerability is an uncontrolled search path element (CWE-427) in versions prior to 5.3.0, which could allow arbitrary code execution if a crafted DLL is placed in the same folder as the affected product. Public sources ...

8.5CVSS7.3AI score0.00157EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/15 6:7 a.m.3 views

CVE-2025-26861

RemoteCall Remote Support Program for Operator versions prior to 5.3.0 contain an uncontrolled search path element vulnerability. If a crafted DLL is placed in the same folder with the affected product, it may cause an arbitrary code execution...

8.5CVSS7.3AI score0.00157EPSS
Exploits0References2
CVE
CVE
added 2025/10/15 6:6 a.m.17 views

CVE-2025-26860

The CVE-2025-26860 entry concerns RemoteCall Remote Support Program (for Operator) prior to version 5.1.0. The vulnerability is an uncontrolled search path element (CWE-427) that can allow arbitrary code execution if a crafted DLL is placed in the application’s folder. Documents confirm the root ...

8.5CVSS7.3AI score0.00157EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/15 6:6 a.m.4 views

CVE-2025-26860

RemoteCall Remote Support Program for Operator versions prior to 5.1.0 contain an uncontrolled search path element vulnerability. If a crafted DLL is placed in the same folder with the affected product, it may cause an arbitrary code execution...

8.5CVSS7.3AI score0.00157EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/15 6:6 a.m.17 views

CVE-2025-26860

RemoteCall Remote Support Program for Operator versions prior to 5.1.0 contain an uncontrolled search path element vulnerability. If a crafted DLL is placed in the same folder with the affected product, it may cause an arbitrary code execution...

8.5CVSS0.00157EPSS
Exploits0References2
CVE
CVE
added 2025/10/15 6:6 a.m.10 views

CVE-2025-26859

CVE-2025-26859 affects RSUPPORT’s RemoteView PC Application Console. Versions prior to 6.0.2 are vulnerable to an uncontrolled search path element (CWE-427) that can allow arbitrary code execution if a crafted DLL is placed in the application’s folder. The issue’s root cause is a perilous search ...

8.5CVSS7.3AI score0.00157EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/15 6:6 a.m.3 views

EUVD-2025-34518

RemoteView PC Application Console versions prior to 6.0.2 contain an uncontrolled search path element vulnerability. If a crafted DLL is placed in the same folder with the affected product, it may cause an arbitrary code execution...

8.5CVSS7.2AI score0.00157EPSS
Exploits0References4
Rows per page
Query Builder