Lucene search
K

1683 matches found

EUVD
EUVD
added 2026/07/01 5:47 p.m.8 views

EUVD-2022-46603

Open Babel has out-of-bounds write in MOL2 attribute/value parser...

8.1CVSS7.1AI score0.00796EPSS
Exploits1References5
OSV
OSV
added 2026/06/29 12:0 a.m.6 views

ALSA-2026:30858 Important: perl-IO-Compress security update

This distribution provides a Perl interface to allow reading and writing of compressed data created with the zlib and bzip2 libraries. IO-Compress supports reading and writing of bzip2, RFC 1950, RFC 1951, RFC 1952 i.e. gzip and zip files/buffers. The following modules used to be distributed...

7.8CVSS6.2AI score0.00292EPSS
Exploits3References4
Positive Technologies
Positive Technologies
added 2026/06/18 12:0 a.m.20 views

PT-2026-50619

Name of the Vulnerable Software and Affected Versions cifs-utils affected versions not specified Description A flaw exists in the cifs.upcall helper that fails to securely drop root privileges before performing user information lookups within a user-controlled environment. A local, low-privileged...

7.8CVSS6.1AI score0.0012EPSS
Exploits0References26
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.21 views

PT-2026-48529

Name of the Vulnerable Software and Affected Versions Prisma Access Agent for Linux affected versions not specified Description A security control bypass exists due to improper protection of an alternative path. This allows a local attacker to route network traffic outside the VPN tunnel,...

6.9CVSS7AI score0.00115EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.12 views

PT-2026-37357

Before sq-git checks if a commit can be authenticated, it first looks for hard revocations. Because parsing a policy is expensive and a project's policy rarely changes, sq-git has an optimization to only check a policy if it hasn't checked it before. It does this by maintaining a set of policies...

1.8CVSS5.8AI score
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/30 5:53 p.m.14 views

FreeRDP: FreeRDP: Heap buffer overflow allows arbitrary code execution via crafted pixel data

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol. A remote attacker could exploit a heap buffer overflow vulnerability in the resizevbarentry function. This occurs when an error in buffer resizing leads to attacker-controlled pixel data being written into an...

7.5CVSS5.5AI score0.00398EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2026/04/22 9:17 p.m.9 views

CVE-2026-41168

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

6.9CVSS5.7AI score0.00297EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/14 12:0 a.m.7 views

Microsoft Azure Monitor Agent 代码问题漏洞

Microsoft Azure Monitor Agent is a monitoring agent program from Microsoft USA. A security vulnerability exists in Microsoft Azure Monitor Agent. An attacker can exploit the vulnerability to elevate privileges...

7.8CVSS5.8AI score0.01925EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/31 12:0 a.m.8 views

Information Disclosure Vulnerability in Multiple Mozilla Products (CNVD-2026-19990)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. An information disclosure vulnerability exists in several Mozilla produc...

7.5CVSS7.3AI score0.00385EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/26 2:59 p.m.4 views

CVE-2026-31827

Alienbin is an anonymous code and text sharing web service. In 1.0.0 and earlier, the /save endpoint in server.js drops and recreates the MongoDB TTL index on the entire post collection for every new paste submission. When User B submits a paste with a short TTL e.g., 30 seconds, the TTL index is...

7.1CVSS5.9AI score0.0018EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/21 12:0 a.m.10 views

OpenClaw 安全漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw has a security vulnerability that can be exploited by an attacker to cause reuse of pairing approvals across multiple accounts...

8.1CVSS5.8AI score0.00165EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/11 12:0 a.m.6 views

Adobe Commerce 安全漏洞

Adobe Commerce is the United States of America Odobie Adobe company's a kind of merchants and brands for the world's leading digital commerce solutions. A security bypass vulnerability exists in Adobe Commerce, which can be exploited by an attacker to cause a security feature bypass...

4.3CVSS5.8AI score0.00255EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/11 12:0 a.m.10 views

Adobe Commerce 安全漏洞

Adobe Commerce is the United States of America Odobie Adobe company's a business and brand-oriented global leader in digital commerce solutions. A security bypass vulnerability exists in Adobe Commerce, which can be exploited by an attacker to cause a security feature bypass...

7.5CVSS5.8AI score0.00603EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.7 views

ImageMagick 输入验证错误漏洞

ImageMagick is ImageMagick open source set of open source image processing software. Can read, convert or write images in a variety of formats. ImageMagick suffers from an integer overflow vulnerability that can be exploited by an attacker to perform out-of-bounds operations via a specially craft...

6.5CVSS7.3AI score0.00194EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/09 12:0 a.m.6 views

Google Android Denial of Service Vulnerability (CNVD-2026-14647)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from a denial of service vulnerability that stems from improper input validation in multiple locations, which can be exploited by an attacker to cause a denial of service...

5.5CVSS5.9AI score0.00087EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/02 12:0 a.m.9 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android has a security vulnerability. An attacker can exploit the vulnerability to cause a local elevation of privilege...

8.4CVSS5.8AI score0.00108EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/02/26 3:10 p.m.20 views

CVE-2026-28296

A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vulnerability by supplying specially crafted file paths containing carriage return and line feed CRLF sequences. These unsanitized sequences allow the attacker to terminate intended FTP commands and...

4.3CVSS8.9AI score0.0036EPSS
Exploits2
CNNVD
CNNVD
added 2026/02/24 12:0 a.m.12 views

Apache Superset 安全漏洞

Apache Superset is a data visualization and data exploration platform from the Apache USA Foundation. A security bypass vulnerability exists in Apache Superset, which can be exploited by an attacker to execute sensitive SQL functions...

6.5CVSS5.9AI score0.00607EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/20 12:0 a.m.10 views

OpenClaw 命令注入漏洞

OpenClaw is openclaw open source an intelligent artificial assistant. OpenClaw suffers from a command injection vulnerability that stems from improper cleanup of workspace paths when embedded in system prompts, which can be exploited by an attacker to cause command injection...

8.6CVSS5.8AI score0.00205EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/04 12:0 a.m.8 views

OpenClaw 信息泄露漏洞

OpenClaw is openclaw open source an intelligent artificial assistant. OpenClaw has an information disclosure vulnerability that stems from the isValidMedia function allowing arbitrary file paths, which can be exploited by an attacker to cause the reading of arbitrary files and the disclosure of...

6.5CVSS6AI score0.00745EPSS
Exploits1References1
Rows per page
Query Builder