Lucene search
+L

42 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:54 p.m.8 views

CVE-2021-35945

Couchbase Server 6.5.x, 6.6.0 through 6.6.2, and 7.0.0, has a Buffer Overflow. A specially crafted network packet sent from an attacker can crash memcached...

7.5CVSS7AI score0.01058EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:28 a.m.5 views

CVE-2019-13921

A vulnerability has been identified in SIMATIC WinAC RTX F 2010 All versions SP3 Update 1. Affected versions of the software contain a vulnerability that could allow an unauthenticated attacker to trigger a denial-of-service condition. The vulnerability can be triggered if a large HTTP request is...

7.5CVSS6.9AI score0.01367EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/30 11:41 a.m.8 views

CVE-2025-24347

A vulnerability in the “Network Interfaces” functionality of the web application of ctrlX OS allows a remote authenticated low-privileged attacker to manipulate the network configuration file via a crafted HTTP request...

6.5CVSS6.8AI score0.00409EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/04/17 12:0 a.m.13 views

Oracle WebCenter Portal (April 2025 CPU)

The 12.2.1.4.0 versions of WebCenter Portal installed on the remote host are affected by a vulnerability as referenced in the April 2025 CPU advisory. - Vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware component: Discussion Forums XStream. The supported version tha...

7.5CVSS6.1AI score0.02015EPSS
Exploits0References3
NVD
NVD
added 2025/04/15 9:15 p.m.8 views

CVE-2025-21585

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MyS...

4.9CVSS0.00816EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/04/08 7:0 a.m.11 views

Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network...

7.5CVSS6.8AI score0.02285EPSS
Exploits0
NVD
NVD
added 2025/03/07 7:15 p.m.13 views

CVE-2025-26643

The UI performs the wrong action in Microsoft Edge Chromium-based allows an unauthorized attacker to perform spoofing over a network...

5.4CVSS0.00657EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2025/02/12 5:0 p.m.38 views

PAN-OS: Unauthenticated File Deletion Vulnerability on the Management Web Interface

An unauthenticated file deletion vulnerability in the Palo Alto Networks PAN-OS management web interface enables an unauthenticated attacker with network access to the management web interface to delete certain files as the “nobody” user; this includes limited logs and configuration files but doe...

2.1CVSS6.8AI score0.00608EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/06 3:16 a.m.10 views

CVE-2021-35216

Insecure Deserialization of untrusted data remote code execution vulnerability was discovered in Patch Manager Orion Platform Integration module. An Authenticated Attacker with network access via HTTP can compromise this vulnerability can result in Remote Code Execution...

9CVSS8.1AI score0.81402EPSS
Exploits0References1
Prion
Prion
added 2024/01/10 11:15 p.m.13 views

Memory corruption

An attacker with network access to the affected PLC CJ-series and CS-series PLCs, all versions may use a network protocol to read and write files on the PLC internal memory and memory card...

5CVSS7AI score0.00536EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/01/10 1:9 p.m.8 views

CVE-2023-48264

The vulnerability allows an unauthenticated remote attacker to perform a Denial-of-Service DoS attack or, possibly, obtain Remote Code Execution RCE via a crafted network request...

8.1CVSS9.6AI score0.00763EPSS
Exploits0References1
Prion
Prion
added 2023/04/18 8:15 p.m.28 views

Buffer overflow

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Difficult to exploi...

2.6CVSS4.2AI score0.01036EPSS
Exploits0References6Affected Software5
F5 Networks
F5 Networks
added 2023/02/21 7:50 p.m.54 views

K33522171: Multiple MySQL vulnerabilities

Security Advisory Description CVE-2020-14550 Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.48 and prior, 5.7.30 and prior and 8.0.20 and prior. Difficult to exploit vulnerability allows low privileged attacker with network...

7.1CVSS5.1AI score0.03485EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2022/12/30 5:13 a.m.13 views

CVE-2022-38212 Server Side Request Forgery (SSRF) vulnerability in Portal for ArcGIS (10.8.1 and 10.7.1 only)

Protections against potential Server-Side Request Forgery SSRF vulnerabilities in Esri Portal for ArcGIS versions 10.8.1 and below were not fully honored and may allow a remote, unauthenticated attacker to forge requests to arbitrary URLs from the system, potentially leading to network enumeratio...

7.5CVSS7.8AI score0.0074EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/12/29 12:0 a.m.14 views

PT-2022-24289 · Esri · Arcgis Enterprise +1

🚨 CVE-2022-38212 Protections against potential Server-Side Request Forgery SSRF vulnerabilities in Esri Portal for ArcGIS versions 10.8.1 and below were not fully honored and may allow a remote, unauthenticated attacker to forge requests to arbitrary URLs from the system, potentially leading to...

7.5CVSS7.7AI score0.00876EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2022/12/01 6:0 p.m.11 views

CVE-2022-43900 IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps security bypass

IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps 1.4.2 could provide a weaker than expected security. A local attacker can create an outbound network connection to another system. IBM X-Force ID: 240827...

5.3CVSS6.2AI score0.00168EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/04/19 9:15 p.m.57 views

CVE-2022-21454

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Group Replication Plugin. Supported versions that are affected are 5.7.37 and prior and 8.0.28 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...

6.5CVSS6.7AI score0.01407EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/04/20 8:44 p.m.28 views

CVE-2021-2180

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.33 and prior and 8.0.23 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS4.8AI score0.0278EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2020/04/15 1:29 p.m.44 views

CVE-2020-2934

Removed by vendor...

5.1CVSS5.7AI score0.032EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2020/04/14 9:33 p.m.59 views

CVE-2020-2754

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Scripting. Supported versions that are affected are Java SE: 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS2.5AI score0.04128EPSS
Exploits0References3
Rows per page
Query Builder