Lucene search
K

9293 matches found

Cvelist
Cvelist
added 2025/07/03 11:34 a.m.7 views

CVE-2025-27461 CVE-2025-27461

During startup, the device automatically logs in the EPC2 Windows user without requesting a password...

7.6CVSS0.00217EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/07/03 11:34 a.m.2 views

CVE-2025-27461 CVE-2025-27461

During startup, the device automatically logs in the EPC2 Windows user without requesting a password...

7.6CVSS7.1AI score0.00217EPSS
Exploits0References6
CVE
CVE
added 2025/07/03 11:34 a.m.20 views

CVE-2025-27461

CVE-2025-27461 affects the Endress+Hauser MEAC300-FNADE4 emissions data management device. The root cause is startup-time automatic login of the EPC2 Windows user without a password, effectively bypassing authentication and enabling full access where the device is physically reachable. The CVE is...

7.6CVSS6.5AI score0.00217EPSS
Exploits0References6Affected Software1
CNNVD
CNNVD
added 2025/07/03 12:0 a.m.2 views

Endress+Hauser MEAC300-FNADE4 安全漏洞

The Endress+Hauser MEAC300-FNADE4 is a cost-effective emissions data management computer from Endress+Hauser Vietnam. A security vulnerability exists in the Endress+Hauser MEAC300-FNADE4 that originates from automatically logging in an EPC2 Windows user at startup without entering a password. An...

7.6CVSS6.7AI score0.00217EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/03 12:0 a.m.2 views

PT-2025-27790 · Unknown · Epc2 Windows

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue allows the device to automatically log in the EPC2 Windows user during startup without requesting a password. Recommendations: At the moment, there is no information about a newer...

7.6CVSS6AI score0.00217EPSS
Exploits0References10
NVD
NVD
added 2025/07/02 2:15 p.m.6 views

CVE-2025-34072

A data exfiltration vulnerability exists in Anthropic’s deprecated Slack Model Context Protocol MCP Server via automatic link unfurling. When an AI agent using the Slack MCP Server processes untrusted data, it can be manipulated to generate messages containing attacker-crafted hyperlinks embeddin...

9.3CVSS0.00371EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/07/02 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the lack of an automatic downclocking mechanism for GPUs, which could lead to hardware overheating and damag...

5.5CVSS6.1AI score0.00136EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/06/28 12:0 a.m.6 views

Fedora 41 : podman (2025-ce164bcfee)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-ce164bcfee advisory. Automatic update for podman-5.5.2-1.fc41. security fix for CVE-2025-6032 Changelog for podman Tue Jun 24 2025 Packit - 5:5.5.2-1 - Update to 5.5.2 upstream...

8.3CVSS7.8AI score0.00397EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/26 12:0 a.m.5 views

Fedora 42 : podman (2025-d6689393a3)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-d6689393a3 advisory. Automatic update for podman-5.5.2-1.fc42. security fix for CVE-2025-6032 Changelog for podman Tue Jun 24 2025 Packit - 5:5.5.2-1 - Update to 5.5.2 upstream...

8.3CVSS7.8AI score0.00397EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/25 12:0 a.m.6 views

Amazon Linux 2 : thunderbird (ALAS-2025-2896)

The version of thunderbird installed on the remote host is prior to 128.11.1-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2896 advisory. A crafted HTML email using mailbox:/// links can trigger automatic, unsolicited downloads of .pdf files to the user's deskto...

6.5CVSS7.1AI score0.00466EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2025/06/23 12:0 a.m.3 views

Automatic Selection of Protections to Mitigate Risks against Software Applications

This paper introduces a novel approach for the automated selection of software protections to mitigate MATE risks against critical assets within software applications. We formalize the key elements involved in protection decision-making - including code artifacts, assets, security requirements,...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/21 12:0 a.m.3 views

Efficient Retail Video Annotation: a Robust Key Frame Generation Approach for Product and Customer Interaction Analysis

Accurate video annotation plays a vital role in modern retail applications, including customer behavior analysis, product interaction detection, and in-store activity recognition. However, conventional annotation methods heavily rely on time-consuming manual labeling by human annotators,...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/21 12:0 a.m.7 views

Fedora 42 : libblockdev (2025-af7ba2696c)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-af7ba2696c advisory. Automatic update for libblockdev-3.3.1-1.fc42. Changelog for libblockdev Wed Jun 18 2025 Packit - 3.3.1-1 - Update to version 3.3.1 Tenable has...

7CVSS7.9AI score0.00423EPSS
Exploits18References2
Packet Storm News
Packet Storm News
added 2025/06/20 12:0 a.m.24 views

SafeGenBench: a Benchmark Framework for Security Vulnerability Detection in LLM-Generated Code

The code generation capabilities of large language modelsLLMs have emerged as a critical dimension in evaluating their overall performance. However, prior research has largely overlooked the security risks inherent in the generated code. In this work, we introduce SafeGenBench, a benchmark...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/19 12:0 a.m.5 views

Fedora 43 : salt (2025-551aed076e)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-551aed076e advisory. Automatic update for salt-3007.4-2.fc43. Changelog Thu Jun 19 2025 Robby Callicotte - 3007.4-2 - Updated sources Thu Jun 19 2025 Robby Callicotte -...

9.6CVSS5.6AI score0.00959EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/06/18 10:54 a.m.9 views

CVE-2022-49937 media: mceusb: Use new usb_control_msg_*() routines

In the Linux kernel, the following vulnerability has been resolved: media: mceusb: Use new usbcontrolmsg routines Automatic kernel fuzzing led to a WARN about invalid pipe direction in the mceusb driver: ------------ cut here ------------ usb 6-1: BOGUS control dir, pipe 80000380 doesn't match...

0.00148EPSS
Exploits0References4
OSV
OSV
added 2025/06/18 10:54 a.m.3 views

CVE-2022-49937 media: mceusb: Use new usb_control_msg_*() routines

In the Linux kernel, the following vulnerability has been resolved: media: mceusb: Use new usbcontrolmsg routines Automatic kernel fuzzing led to a WARN about invalid pipe direction in the mceusb driver: ------------ cut here ------------ usb 6-1: BOGUS control dir, pipe 80000380 doesn't match...

5.5CVSS5.8AI score0.00148EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2025/06/17 9:27 a.m.21 views

Important: Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.6.0 release

Red Hat build of OpenTelemetry 3.6.0 has been released Breaking changes: Nothing Deprecations: Nothing Technology Preview features: Cumulative-to-Delta Processor Enhancements: The following Technology Preview features reach General Availability: Kafka Exporter Attributes Processor Resource...

8.7CVSS6.7AI score0.00804EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/06/13 7:21 a.m.5 views

CVE-2025-5395

The WordPress Automatic Plugin plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'core.php' file in all versions up to, and including, 3.115.0. This makes it possible for authenticated attackers, with Author-level access and above, to...

8.8CVSS8.8AI score0.00628EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/11 12:50 p.m.5 views

CVE-2025-5986

A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: A crafted HTML email using mailbox:/// links can trigger automatic, unsolicited downloads of .pdf files to the user's desktop or home directory without prompting, even if auto-saving is...

6.5CVSS6.2AI score0.00466EPSS
Exploits0References3
Rows per page
Query Builder