Lucene search
K

9 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/20 4:43 a.m.3 views

CVE-2026-33012

Micronaut Framework is a JVM-based full stack Java framework designed for building modular, easily testable JVM applications. Versions 4.7.0 through 4.10.16 used an unbounded ConcurrentHashMap cache with no eviction policy in its DefaultHtmlErrorResponseBodyProvider. If the application throws an...

7.5CVSS5.8AI score0.00561EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/17 12:0 a.m.16 views

PT-2026-25991

Micronaut Framework is a JVM-based full stack Java framework designed for building modular, easily testable JVM applications. Versions 4.7.0 through 4.10.16 used an unbounded ConcurrentHashMap cache with no eviction policy in its DefaultHtmlErrorResponseBodyProvider. If the application throws an...

7.5CVSS5.8AI score0.00561EPSS
Exploits0References9
OSV
OSV
added 2026/03/03 9:39 p.m.3 views

GHSA-5H2C-8V84-QPVR OpenClaw shell-env fallback trusted startup env and could execute attacker-influenced login-shell paths

Summary OpenClaw shell-env fallback trusted startup environment values and could execute attacker-influenced login-shell startup paths before loading env keys. Affected Packages / Versions - Package: openclaw npm - Affected versions: = 2026.1.5 and = 2026.2.21-2 - Fixed on main:...

5.3CVSS6.2AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/27 9:23 p.m.17 views

CVE-2026-24439

Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.195037 fail to include the X-Content-Type-Options: nosniff response header on web management interfaces. As a result, browsers that perform MIME sniffing may incorrectly interpret attacker-influenced responses as executable...

6.5CVSS5.9AI score0.00169EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2022/12/22 12:0 a.m.34 views

CVE-2022-31739

When downloading files on Windows, the % character was not escaped, which could have lead to a download incorrectly being saved to attacker-influenced paths that used variables such as %HOMEPATH% or %APPDATA%.This bug only affects Firefox for Windows. Other operating systems are unaffected.. This...

8.8CVSS8.6AI score0.00662EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/07/07 12:0 a.m.19 views

Mozilla Firefox ESR Security Advisory (MFSA2022-21) - Windows

Mozilla Firefox ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...

9.8CVSS8.2AI score0.01055EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/06/14 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2022:2062-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.26709EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/06/03 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2022:1920-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.7AI score0.01055EPSS
Exploits0References4
ALT Linux
ALT Linux
added 2022/06/03 12:0 a.m.52 views

Security fix for the ALT Linux 10 package firefox-esr version 91.10.0-alt1

June 3, 2022 Pavel Vasenkov 91.10.0-alt1 - New ESR version. - Security fixes: + CVE-2022-31736 Cross-Origin resource's length leaked + CVE-2022-31737 Heap buffer overflow in WebGL + CVE-2022-31738 Browser window spoof using fullscreen mode + CVE-2022-31739 Attacker-influenced path traversal when...

9.5AI score0.01055EPSS
Exploits0
Rows per page
Query Builder